Privacy Policy for Flowers Hendon Customers

Introduction

This Privacy Policy explains how Flowers Hendon collects, uses, and safeguards the personal data of customers placing flower orders within Hendon and the surrounding districts. Flowers Hendon is committed to protecting your privacy and processing your personal data in accordance with the General Data Protection Regulation (GDPR) and applicable UK data protection laws. Please read this Policy carefully to understand your rights and how we use your information.

Who This Policy Applies To

This Privacy Policy covers all individuals who place a flower order with Flowers Hendon for delivery in Hendon and its neighbouring districts. By placing an order or interacting with our services, you acknowledge and accept the data practices described in this Policy.

What Data We Collect

To process your orders and provide the best possible service, Flowers Hendon collects the following types of personal data:

  • Contact Information: Name, delivery address, recipient name, telephone number, and postal code
  • Order Details: Items ordered, delivery instructions, card messages
  • Payment Details: Payment method, billing address (please note, we do not store full card payment information; these are processed securely via third-party payment processors)
  • Account Data: If you create an account, your username and encrypted password
  • Communication Data: Email correspondence, feedback, or any inquiries you make through our service
  • Technical Data: IP address, browser type, device information, and cookies data when you interact with our website

Lawful Basis for Processing

All personal data is processed in line with the legal bases set out in the GDPR. We rely on the following lawful bases:

  • Performance of a Contract: Most data is processed in order to fulfil your order or provide services you have requested.
  • Legitimate Interests: To improve our services, respond to your inquiries, and for fraud prevention.
  • Legal Obligations: To comply with accounting, tax, or other applicable laws.
  • Consent: Where you have explicitly given us permission, for example to send marketing communications (you may withdraw consent at any time).

How We Use Your Data

Your personal data is used for the following purposes:

  • Processing and delivering your flower orders
  • Communicating order updates or customer support messages
  • Managing payments and preventing fraud
  • Improving our services, including website functionality and customer experience
  • Complying with legal requirements
  • Sending marketing materials, where you have opted in

How Long We Retain Your Data

Flowers Hendon retains your data only for as long as necessary to fulfil the purposes outlined above:

  • Order and contact data: Retained for up to 7 years to comply with legal and financial record-keeping requirements.
  • Account data: Retained until you request deletion of your account or after a reasonable period of inactivity, in accordance with our retention policy.
  • Marketing data: Retained until you withdraw your consent or unsubscribe from our communications.
  • Technical and browsing data: Retained for up to 2 years for analytics and website security.

Data Processors and Third Parties

In order to provide our services to you, we work with carefully selected third-party processors. These include:

  • Payment Processors: Securely handle payment transactions on our behalf.
  • Delivery Partners: Handle logistics to deliver your order to the correct address.
  • IT and System Service Providers: Host our website and maintain security and backup systems.

All third-party processors are required to comply with data protection laws and may not use your data for other purposes. Personal data is not sold or shared with unauthorised third parties.

Your Rights under the GDPR

As a Flowers Hendon customer, you have the following rights regarding your personal data:

  • Right of Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can ask us to correct incomplete or inaccurate data.
  • Right to Erasure: You can request deletion of your personal data, subject to legal exceptions.
  • Right to Restrict Processing: You can ask us to limit the way we use your data.
  • Right to Object: You can object to certain types of processing, including marketing communications.
  • Right to Data Portability: You can request your data be sent to you or another provider in a structured, commonly used format.
  • Right to Withdraw Consent: Where processing is based on consent, you may withdraw it at any time.
  • Right to Lodge a Complaint: If you believe your data has not been handled appropriately, you may contact the relevant supervisory authority.

How We Protect Your Information

Flowers Hendon implements physical, technical, and organisational safeguards to ensure your personal data is secure, including:

  • Encryption of sensitive data
  • Regular security monitoring of our systems
  • Limiting access to personal data only to authorised staff
  • Training employees on data protection responsibilities

Children's Privacy

We do not knowingly collect or process personal data relating to individuals under the age of 16 without appropriate consent from a parent or guardian.

Updates to This Policy

This Privacy Policy may be updated from time to time to reflect changes in law or our business operations. The latest version will always be available on our website. Material changes will be communicated to customers where appropriate.

Contact Information

If you have questions regarding this Privacy Policy, our data handling practices, or wish to exercise any of your rights, please get in touch with our team using the contact form provided on our website.