Under the EU's General Data Protection Regulation (GDPR) personal data is defined as:
"any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person".
This privacy notice tells you how we, Heart to Home, will collect and use your personal data for sales and marketing purposes.
We collect a range of data including personal data fairly and lawfully. Personal data that we collect includes the following:
- Email address
- Delivery Address
- Billing Address (where applicable)
- Telephone number(s)
We will retain the personal data we process on behalf of our customers for as long as needed to provide our services. Heart to Home will retain this personal information as necessary to comply with our legal obligations, resolve disputes and enforce our agreements.
We take data protection extremely seriously and all data collected is stored securely.
How will Heart to Home use the personal data it collects about me?
Heart to Home will process the information you provide in a manner compatible with the EU's General Data Protection Regulation (GDPR). We will endeavour to keep your information accurate and up to date, and not keep it for longer than is necessary. Heart to Home is required to retain information in accordance with the law, such as information needed for income tax and audit purposes. How long certain kinds of personal data should be kept may also be governed by specific business-sector requirements and agreed practices. Personal data may be held in addition to these periods depending on individual business needs.
We hold and process personal data to enable us to perform the following functions:
- To confirm your identity and authenticate the information you provide
- To provide you with products and services you have requested
- To provide and improve customer support
- Maintain our accounts and records
- Promote our goods and services
- Gather feedback to further improve our products and services
Will Heart to Home share my personal data with anyone else?
We pass your personal data on to third-party service providers contracted to Heart to Home for the purpose of the service we are providing you, such as delivery. We only share as much personal data as is required for the provision of those services and you will be informed if your personal data is passed to a third party, unless we are legally required to do otherwise. Any third parties that we may share your data with are obliged to keep your details securely and to use them only for the purpose that we provide them with in order to fulfil our service to you. When they no longer need your data to fulfil this service, they will dispose of the details in line with GDPR procedures as will we.
Personal data that we collect may be transferred to countries other than where you live, such as, for example, to servers in the United States. Your personal data may be transferred to countries that do not have the same data protection laws as the country in which you initially provided the information. In such cases, we continue to protect the information with appropriate safeguards, but it may be subject to the legal jurisdiction of those countries and governmental authorities in those countries.
About Direct Marketing from Heart to Home
With your consent, we use personal data to carry out direct marketing activities. Sometimes this includes sharing data with product/service providers for their marketing activities. You have the right to object at any time to the use of your personal data for this purpose and we will cease marketing activity.
Can I find out the personal data that Heart to Home holds about me?
Heart to Home at your request, can confirm what information we hold about you and how it is processed. If Heart to Home does hold personal data about you, you can request the following information:
Identity and the contact details of the person or organisation that has determined how and why to process your data.
Contact details of the person responsible for GDPR within Heart to Home.
The purpose of the processing as well as the legal basis for processing.
If the processing is based on the legitimate interests of Heart to Home or a third party, information about those interests.
The categories of personal data collected, stored and processed.
Recipient(s) or categories of recipients that the data is/will be disclosed to.
If we intend to transfer the personal data to a third country or international organisation, information about how we ensure this is done securely. The EU has approved sending personal data to some countries because they meet a minimum standard of data protection. In other cases, we will ensure there are specific measures in place to secure your information.
How long the data will be stored.
Details of your rights to correct, erase, restrict or object to such processing.
Information about your right to withdraw consent at any time.
How to lodge a complaint with the supervisory authority.
Whether the provision of personal data is a statutory or contractual requirement, or a requirement necessary to enter into a contract, as well as whether you are obliged to provide the personal data and the possible consequences of failing to provide such data.
The source of personal data if it wasn't collected directly from you.
Any details and information of automated decision making, such as profiling, and any meaningful information about the logic involved, as well as the significance and expected consequences of such processing.
The Heart to Home website use "cookies" to help you personalise your online experience. One of the primary purposes of cookies is convenience features to save you time. You have the ability to accept or decline cookies.
Session cookies: These are used to maintain our link to you as you move throughout the site. These cookies are automatically cleared when you close your browser. They are also used to identify if you have logged in and to maintain that login.
Permanent cookies: Third-party services that we use may set cookies that persist after closing the browser. Examples of those services include but are not limited to Google, Youtube, Facebook, Twitter and AddThis. These are generally used for online advertising and marketing activities.
Refusing or disabling cookies
You will be able to navigate our site without cookies enabled. However you will not be able to make a purchase or log in to view and manage your account.
Learn how to disable cookies here: https://cookies.insites.com/disable-cookies/
To opt out of being tracked by Google Analytics across all websites visit http://tools.google.com/dlpage/gaoptout
Learn more about Facebook's cookies here https://www.facebook.com/policies/cookies/
If you have accepted a cookie from a site and later wish to remove it, you can click here to learn how to do this.
Contact details of the Data protection representative
Data Protection Officer
01256 889 397