This Privacy Notice describes in detail the types of personal data we collect and process when you interact with us. This notice also explains our data collection and processing practices, as well as the legal bases for processing your personal data.
This Privacy Notice is designed to answer any questions you have about the way we collect and use your personal information. We’d appreciate it if you would take the time to read this carefully, as it will help you understand how Home Garden Direct uses your personal data and what rights you have in respect of it.
The law on data protection gives companies several reasons to collect and process your personal data, including:
We may collect and process your personal data with your consent, for example when you tick a box to receive email newsletters. When collecting your personal data, we’ll always make clear to you which data is necessary in connection with a particular service.
When you place an order with us, we need certain personal information to fulfill that order, such as your name and address.
In certain circumstances, we may be required by law to collect and share your data. For example, we may share information about people involved in criminal activity or fraud with law enforcement agencies.
When we have a legitimate interest to do so, we will use your data in a way which does not materially impact your rights, freedom or interests. For example, we will use your purchase history to send you or make available offers.
We also use purchasing histories to identify trends and make sure we can keep up with demand or develop new products/services. We may also use address information to send you direct mailings telling you about products and services that we think might interest you. We may contact you regarding market research.
We want to give you the best possible customer experience. To do this, we combine our data about you with other information available to us, such as your purchases and browsing behavior. We then use this to offer you promotions, products, and services that are most likely to interest you. The law allows us to do this as part of our legitimate interest in understanding our customers and providing the highest levels of service.
We will use your personal data for the following purposes:
We take all reasonable precautions to protect the security of your data. We secure access to all transactional areas of our websites and apps using encrypted ‘https’ technology. Sensitive data such as payment card information is protected by an advanced encryption standard, and access to your personal data is password-protected. Our system is regularly monitored for possible vulnerabilities and attacks, and we carry out penetration testing to identify ways to further strengthen security.
We only retain personal data for as long as is necessary for the purpose for which it was collected. At the end of that retention period, your data will either be deleted completely or anonymised, for example by aggregation with other data so that it can be used in a non-identifiable way for statistical analysis and business planning.
We may share your personal data with trusted third parties, such as delivery couriers or technicians visiting your home. For example, we may use external companies to: verify and handle complaints; comply with legal obligations; help us personalise our offers to you; and so on.
We have a policy that we apply to organisations that want to use our services, to keep your data safe and protect your privacy:
To help personalise your journey with the Home Garden Direct website we currently use the following companies who will process your personal data as part of their contracts with us:
Also:
Home Garden Direct is located in the United Kingdom and so we will transfer your data outside of the European Economic Area (EEA), including to countries such as the United States, which have different privacy laws. We may also need to share your personal data with third parties located outside of the EEA. The EEA includes all EU Member states, as well as Iceland, Liechtenstein and Norway. We may transfer personal data that we collect from you to third-party data processors located in countries that are outside of the UK. If we do this, we have procedures in place to ensure your data receives the same protection as if it were being processed in the UK. For example, our contracts with third parties stipulate the standards they must follow at all times. If you wish for more information about these contracts, please contact our Data Protection Officer. Any transfer of your personal data will follow applicable laws and we will treat the information under the guiding principles of this Privacy Notice.
You have the right to request:
You can contact us to exercise your rights under the Data Protection Act at any time by filling out an online form. If we choose not to action your request, we will explain to you the reasons for our refusal.
Your right to withdraw consent:
If we have asked you for your consent to use your personal data, you can change your mind at any time and withdraw that permission.
Where we rely on our legitimate interest
If we are processing your personal data based on our legitimate interests and you ask us to stop, we will do so unless we have a legitimate reason to continue processing your personal data
Direct marketing
You have the right to end our use of your personal data for direct marketing. We must always comply with your request.
Checking your identity
Protecting your personal information is up to you. We ask you to verify your identity before we provide any confidential information. If a third party has been authorised to act on your behalf, please have them contact us so we can verify their authority
Thanks for subscribing!
This email has been registered!