Your Data Protection & Privacy Rights at Flower Delivery Mile End

Introduction

This Privacy Policy explains how Flower Delivery Mile End ('we', 'us', 'our') collects, uses, stores, and protects your personal information when you place orders with us from Mile End and surrounding districts. We are committed to safeguarding your privacy and handling your data in compliance with the UK General Data Protection Regulation (GDPR). By using our services, you agree to the collection and use of information in accordance with this policy.

Scope of This Policy

This Privacy Policy applies to all customers who place Flower Delivery Mile End orders for delivery within Mile End and its neighbouring areas. It applies to all information you provide when ordering flowers via our website, by phone, or in person at our location.

Information We Collect

When you interact with Flower Delivery Mile End, we may collect the following types of information:

  • Identity Information: Name, surname, and customer reference number (if applicable).
  • Contact Information: Delivery address, billing address, postcode, phone number, and (if applicable) email address.
  • Order Details: Delivery instructions, flower and product preferences, and the recipient’s name and address.
  • Payment Data: Purchase amount, card type, payment method, and related transaction details. We do not store your full card number or CVV; these are processed securely by our payment service providers.
  • Communications: Records of correspondence, including queries, feedback, and complaints.
  • Website Usage Data: Information about your visits, including IP address, browser type, device identifiers, and pages accessed, which may be collected through cookies and similar technologies.

Lawful Basis for Processing

Under GDPR, we must have a lawful basis to process your personal data. Flower Delivery Mile End relies on the following legal grounds:

  • Performance of a Contract: Most of our data processing is necessary for fulfilling your order and delivering goods, including processing payments and contacting you about delivery.
  • Legal Compliance: We process certain data to comply with our legal and financial obligations, such as record-keeping for tax purposes.
  • Legitimate Interests: We may use your data for business purposes, such as quality assurance, fraud prevention, service improvement, and managing your account, when these interests do not override your fundamental rights.
  • Consent: In cases where we require your consent (e.g., for direct marketing), we will ask for it explicitly.

How We Use Your Data

Your personal data may be used to:

  • Process and fulfill your flower delivery order, including confirmation, preparation, and delivery updates
  • Contact you about your order and answer your queries
  • Improve our products and services
  • Maintain our records, accounting, and compliance obligations
  • Protect against fraud and risky transactions
  • Send marketing communications, if you have consented to receive them

Data Retention

We will retain your personal information only for as long as necessary to fulfill the purposes it was collected for, including for the purposes of satisfying any legal, accounting, or reporting requirements. Generally, customer order data is retained for up to six years to comply with tax and contractual obligations, unless a longer retention period is required or permitted by law. Data collected for marketing purposes is retained until you withdraw your consent or unsubscribe.

Processors and Data Sharing

We use trusted third-party service providers (processors) to help us deliver our services. These may include:

  • Payment service providers to process your transactions securely
  • Delivery and logistics companies to deliver your flower orders
  • IT and security providers who host and maintain our systems and website
  • Professional advisers such as accountants and auditors for compliance purposes

When sharing your information with processors, we ensure they only use your data for the specific purpose of providing their service, in compliance with GDPR. We do not sell or share your personal data with organisations for their own marketing purposes.

International Transfers

We strive to store and process all personal data within the UK or European Economic Area (EEA). If data is transferred outside these regions, we ensure appropriate protections are in place, such as contractual clauses or other safeguards approved under GDPR.

Your Data Protection Rights

Under GDPR, you have several important rights:

  • Right to Access: You may request access to your personal data and obtain information about how it is processed.
  • Right to Rectification: You can request corrections to inaccurate or incomplete personal data.
  • Right to Erasure: You may request deletion of your data where it is no longer necessary or where processing is based on consent that you withdraw.
  • Right to Restrict Processing: You can request limits on how we use your data under certain circumstances.
  • Right to Data Portability: You have the right to receive your personal data in a structured, commonly used format and transfer it to another provider where feasible.
  • Right to Object: You may object to processing based on legitimate interests or direct marketing at any time.
  • Right to Withdraw Consent: If we process data based on consent, you may withdraw it at any time.
  • Right to Complain: You are entitled to lodge a complaint with a supervisory authority, such as the Information Commissioner’s Office (ICO) in the UK.

Protecting Your Data

We implement appropriate organisational and technical measures to secure your personal data. This includes secure servers, restricted access, regular staff training, and monitoring for unauthorised access or data breaches. Although every effort is made to ensure security, please note that no method of online transmission or storage is completely secure, so we cannot guarantee absolute security.

Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational needs. The latest version will always be made available prior to becoming effective. We encourage you to review this page periodically for the most up-to-date information on our privacy practices.

Contacting Flower Delivery Mile End

If you have any questions, concerns, or wish to exercise your data protection rights, please use our website’s contact form or get in touch through our listed business address. We are dedicated to protecting your information and ensuring your rights are upheld.