Data protection policy

 

For the information of all our customers, in line with the General Protection Data Regulation (2018), we'd like to state our policy concerning personal data.

1.    Data held.

The personal data we hold is the name, invoice address, delivery address, telephone number and email address. The personal information of customers and suppliers are not recorded in any other way.

2.    How was this data gathered?

This data is in the form of invoices issued by our internet shop hosting site (Squarespace.com) and payment processing firm (Stripe.com). This data comes in two forms – printed (paper) and computer storage. The personal information of customers and suppliers are not recorded in any other way.

3.    Third-Party Access.

            We do NOT allow, give or sell the personal data of customer or supplier to ANY third-party body, company or organisation.

4.     Marketing.

            We do NOT use personal data we gather or hold for marketing purposes, direct or indirect.

5.    Data Storage and Use.

a)    Printed (Paper) Invoices. These are held secure for a maximum of five (5) years, for accountancy and tax examination purposes. After this period the records are destroyed.

b)    Computer invoices. These are held as copies of invoices on a removable hard drive, for administration and record-keeping purposes. These are erased after six (6) months.

6.    Data Accuracy and Access.

            At any time a customer, who has received an invoice for our products, may email us to see that the details we hold are accurate and up to date. This will be in the form of a copy of the invoice. This will be provided free of charge. We will not let anyone other than the named on the invoice apply for this information.