PRIVACY POLICY
1. Introduction
At gardensofsouthyorkshire.com, we respect and are deeply committed to protecting your privacy. Recognizing the importance of personal data, we adhere to all applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, store, and secure your personal data when you interact with our website or services. We strive to ensure transparency, accountability, and security in all our data processing activities.
2. Scope of this Policy and Role as Data Controller
This Privacy Policy applies to all personal data collected and processed through our website, gardensofsouthyorkshire.com. As the primary controller of your data, Gardens of South Yorkshire determines the purposes and means of processing your personal information in compliance with applicable legal obligations. This policy governs interactions across our digital properties and any data shared when you contact us or use our services.
3. Categories of Data Processed
We process several categories of personal data, depending on your interaction with our site:
a. Usage Data: This includes information about how users access and use the website, such as browser type, IP address, pages viewed, time and date of visit, referring URLs, and session data.
b. Account Data: Includes information provided during account creation or sign-up such as full name, residential address, email address, and phone number.
c. Profile Data: Encompasses preferences, purchase history, on-site behavior, feedback, and settings related to your experience on gardensofsouthyorkshire.com.
d. Communication Data: Relates to personal information provided when contacting us, including support tickets, messages, response history, and correspondence records.
e. Technical Data: Covers information on the devices used to access our website, including operating system, hardware model, browser configuration, system language, and other related data.
f. Transaction Data: Includes details related to services or products purchased through our platform, such as billing information, shipping addresses, and payment confirmations. Note: We do not directly store or manage credit card numbers; transactions are handled via secure third-party payment providers.
g. Preference Data: Includes your expressed marketing consents, newsletter subscriptions, indicated product or service interests, and communication settings.
4. Legal Bases for Processing
We rely on the following lawful bases for processing your personal data:
– Consent: Where you have affirmatively agreed to the use of your data—for example, by opting into newsletters or marketing emails.
– Contractual Necessity: Where data processing is required for the performance of a contract with you, such as processing order information or account creation.
– Legal Obligation: Where we are mandated by statutory or regulatory requirements.
– Legitimate Interests: Where processing is necessary for the functioning and improvement of our services, website operation, internal analytics, user support, or system security, and such interests do not override your rights and freedoms.
5. Your Rights
Subject to applicable data protection laws, you have the right to:
– Access: You may request confirmation as to whether or not personal data concerning you is being processed and, if so, obtain access to the data.
– Rectification: You may request correction of inaccurate or incomplete personal data we hold about you.
– Erasure: You may request that we delete your personal data, subject to certain legal or contractual obligations.
– Restriction: You have the right to restrict the processing of your personal data under specific circumstances.
– Portability: Where technically feasible, and legally permitted, you may request to receive your data in a structured, commonly used format and transmit it to another controller.
To exercise any of these rights, please contact us at [email protected]. We may require verification of your identity before fulfilling your request.
6. Security Measures
We implement robust technical and organizational safeguards to ensure the confidentiality, integrity, and availability of your personal data:
– End-to-end data encryption during transmission and at rest.
– Access control protocols, ensuring only authorized personnel access personal data.
– Routine data backups and secure data storage solutions.
– Employee training programs focusing on data privacy and breach prevention.
7. International Transfers
Where personal data is transferred outside the European Economic Area (EEA) or other jurisdictions with data protection laws, we ensure appropriate safeguards are in place as required under GDPR and other applicable laws. These include the use of Standard Contractual Clauses approved by the European Commission and adherence to regional data transfer rules.
8. Data Retention
We retain personal data for only as long as necessary for the purposes for which it was collected, or as required by law. Specific retention periods include:
– Usage and Technical Data: up to 24 months
– Account and Profile Data: retained for the duration of your active account and up to 6 years thereafter
– Transaction Data: retained for 7 years for tax and audit purposes
– Communication and Preference Data: retained for 5 years from last contact or user interaction
Upon expiration of such periods, data is securely deleted or anonymized unless a legal obligation requires longer retention.
9. Cookie Policy
gardensofsouthyorkshire.com uses cookies and similar technologies to enhance your browsing experience. These may include:
a. Essential Cookies: Required for core website functionality such as secure log-in and form submissions.
b. Functional Cookies: Enable personalization features, such as remembering user preferences.
c. Analytics Cookies: Help us understand user behavior through aggregated data, facilitating improvements to the site.
d. Performance Cookies: Monitor website performance metrics including load times, responsiveness, and browsing patterns.
10. Cookie Management and Compliance
Under GDPR and CCPA obligations, we provide clear options to manage cookie usage. Upon first visit, visitors receive a cookie consent notice allowing selection of specific categories. You may modify your preferences at any time through the Cookie Settings link available on our site or adjust browser settings to manage or block cookies.
For California residents, you may exercise your rights under the CCPA, including opting out of the sale of personal information, if applicable.
11. Children’s Privacy
Our website and services are not directed to children under the age of 13. We do not knowingly collect personal data from individuals under 13 years of age. If you are a parent or legal guardian and believe that a child under your care has provided us with personal information, please contact [email protected] and we will take prompt action to delete such information.
12. Policy Updates
We reserve the right to amend this Privacy Policy to reflect legal, technical, or operational changes. Where material updates affect your rights or data use, we will notify you via appropriate means, including prominent notice on our website and, where lawful and feasible, email communication.
13. Contact Information
Should you have any questions, concerns, or requests related to this Privacy Policy or the processing of your personal data, please contact us via:
Email: [email protected]
Website: gardensofsouthyorkshire.com
We are committed to upholding your rights and ensuring compliance with all applicable privacy legislation.
Gardens of South Yorkshire complies with all applicable privacy regulations, including GDPR and CCPA. For any privacy-related inquiries or requests, please reach out to us at [email protected].