Privacy Policy for gardensofsouthyorkshire.com
Gardens of South Yorkshire (“we,” “us,” or “our”) is committed to safeguarding the privacy and personal data of all individuals who interact with our services. We recognize the value of your privacy and adhere to the highest standards of data protection in compliance with applicable laws, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”), the UK GDPR, and the California Consumer Privacy Act (“CCPA”), as amended.
This Privacy Policy describes how we collect, use, store, and protect your personal data when you visit or interact with our website at gardensofsouthyorkshire.com (the “Site”). We have implemented policies and practices to ensure the proper handling of personal information and to support your rights under data protection legislation.
1. Scope and Data Controller
This Privacy Policy applies to all visitors, users, and customers who access or use the Site or communicate with us electronically. Gardens of South Yorkshire acts as the Data Controller for the personal information we process under this policy. Where applicable, we also act as a “business” as defined under the CCPA.
For all matters concerning privacy and data protection, you may contact us at: [email protected].
2. Categories of Personal Data We Process
We collect various categories of data in the course of providing our goods, services, and support. These categories include:
a. Usage Data
Information collected automatically where you interact with the Site. This includes: browser type and version, IP address, referring pages, operating system, time zone, duration of visits, pages viewed, and interactions with site features.
b. Account Data
Information you provide when creating or managing an account on gardensofsouthyorkshire.com, including your full name, postal address, email address, and phone number.
c. Profile Data
Includes preferences, purchase history, engagement with our products and services, and behavioral data such as favorite content or sections viewed.
d. Communication Data
Records of interactions with our support team or by other communication channels, including requests for help, submitted inquiries, and past correspondence.
e. Technical Data
Technical logs and identifiers, including device model, hardware information, browser plug-in types, screen resolution, mobile network data, and other system configuration details.
f. Transaction Data
Details of purchases or orders made on gardensofsouthyorkshire.com, including payment details (handled securely via third-party processors), billing/shipping addresses, and transaction confirmation data.
g. Preference Data
Data related to your preferences, such as opt-in consents for marketing, notification settings, survey responses, and interests regarding specific products or services.
3. Legal Bases for Processing
We rely on one or more of the following lawful bases for processing your personal data:
– Consent: Where you have explicitly consented to the processing of your personal data (e.g., for marketing communications).
– Contractual Necessity: Processing is required in order to perform a contract with you or take steps at your request prior to entering into a contract.
– Legal Obligation: Processing is necessary to comply with a legal or regulatory obligation.
– Legitimate Interests: Processing is necessary for our legitimate interests, such as improving our service, ensuring security, or communicating with users, unless overridden by your data protection rights.
4. Your Data Protection Rights
Under applicable laws, you may have the following rights, subject to necessary verification:
– Right of Access: Obtain confirmation as to whether we process your personal data and access to a copy of such data.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your data where there is no valid reason for continued processing.
– Right to Restrict Processing: Request a limitation on how your data is processed under certain conditions.
– Right to Data Portability: Receive your personal data in a structured, commonly used and machine-readable format and transmit it to another controller.
– Right to Object: You may object to processing based on legitimate interests, or for direct marketing purposes.
To exercise your rights, please contact us at [email protected].
If you are a California resident, you are also entitled to ask us about:
– The categories and specific pieces of personal data we have collected.
– The categories of sources of that data.
– The business purpose for collecting your personal data.
– The categories of third parties with whom we share your data.
– Your right to opt out of “sale” of personal data, where applicable (we do not sell personal information in the sense used by the CCPA).
5. Data Security Measures
We implement appropriate technical and organizational measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. Security controls include, but are not limited to:
– End-to-end encryption for data transmission where applicable.
– Role-based access controls and password protection for internal systems.
– Regular system monitoring, intrusion detection, and threat analysis.
– Scheduled data backups and disaster recovery planning.
– Staff training on secure data handling practices.
6. International Data Transfers
Where your personal data is transferred outside the UK/EEA (European Economic Area), we ensure an adequate level of protection by applying standard contractual clauses (SCCs) or other approved mechanisms as permitted under applicable data protection laws.
7. Data Retention Policy
We retain your personal data only for as long as reasonably necessary to fulfill the purpose for which it was collected, including legal, regulatory, tax, or accounting obligations. Specific data retention periods include:
– Account and Profile Data: Retained for up to 7 years following closure of an account.
– Usage and Technical Data: Retained for up to 24 months for analytics and security purposes.
– Transaction Data: Retained for 7 years to comply with financial regulations.
– Communication Data: Retained for 3 years unless a longer period is required for dispute resolution.
We may anonymize your data (render it non-identifiable) for research or statistical purposes, in which case we may use it indefinitely without further notice.
8. Cookie Policy
We use cookies and similar technologies on gardensofsouthyorkshire.com to enhance functionality, analyze traffic, and personalize content. The types of cookies we set include:
– Essential Cookies: Required for the basic operation of our website.
– Functional Cookies: Enable enhanced features and personalization.
– Analytics Cookies: Help us measure and improve site performance.
– Performance Cookies: Track behavioral patterns for optimization.
9. Cookie Management and Compliance
In accordance with the GDPR and CCPA, you are offered clear options for managing your cookie preferences. Upon visiting the Site, you will be presented with the ability to accept, reject, or customize your cookie settings via a consent management tool. You may also modify your choices at any time through your browser settings or our cookie management interface.
10. Children’s Data
Our services are not directed to individuals under the age of 13. We do not knowingly collect personal data from children without verifiable parental consent. If you believe we have inadvertently collected information from a child, please notify us immediately by contacting [email protected], and we will take prompt steps to delete that data.
11. Changes to This Policy
We reserve the right to make changes to this Privacy Policy from time to time as necessary to reflect new technologies, regulatory updates, or operational changes. Any updates will be posted prominently on gardensofsouthyorkshire.com. We may also contact you directly if the changes materially affect your rights or the manner in which we process your data.
12. Contact Us
If you have any questions, concerns, or requests relating to this Privacy Policy or our use of your personal data, please contact:
Email: [email protected]
We are committed to ensuring full compliance with all applicable data protection regulations and industry standards. If you believe we have not met our obligations under the GDPR, UK GDPR, CCPA, or other laws, you may also have the right to lodge a complaint with a supervisory authority.
Thank you for trusting Gardens of South Yorkshire with your information.