Flower Delivery Richmond Upon Thames Privacy Policy

Introduction

At Flower Delivery Richmond Upon Thames, we highly value the privacy and security of our customers' personal data. This Privacy Policy explains in detail how we collect, use, and safeguard your personal information when you place an order for flower delivery from Richmond Upon Thames and surrounding districts. We adhere to the General Data Protection Regulation (GDPR) and other relevant data protection laws. Please read this policy carefully to understand your rights and how we process your information.

Scope of This Policy

This Privacy Policy applies to all customers who place an order with Flower Delivery Richmond Upon Thames for deliveries within Richmond Upon Thames and surrounding areas. By using our services or contacting us in relation to flower deliveries, you consent to the practices outlined in this policy.

Data We Collect

We collect and process the following categories of personal data:

  • Identity Data: Your name, and, if applicable, recipient’s name.
  • Contact Data: Delivery address, billing address, telephone number (where provided), and any alternate delivery instructions.
  • Order Data: Products ordered, delivery preferences, transaction details, payment status (we do not retain complete payment card details ourselves but facilitate this through secure payment processors).
  • Communication Data: Any inquiries, feedback, or correspondence relating to your flower delivery order.
  • Technical Data: IP address, device information, and website usage where relevant to your transaction (collected via our website for functionality and security purposes).

Lawful Basis for Processing Personal Data

We process your personal data only when we have a valid legal basis to do so, including:

  • Contractual Necessity: To process and fulfill your flower delivery order.
  • Legal Obligations: To comply with applicable laws and regulations (e.g., financial record keeping, fraud prevention).
  • Legitimate Interests: To ensure the effective operation of our business, enhance customer experience, and handle queries, provided these interests are not overridden by your individual rights.
  • Consent: Where we use your information for purposes beyond order delivery (for example, optional marketing where applicable), we will ask for your explicit consent.

How We Use Your Data

We use your personal data for the following purposes:

  • To process and deliver your flower order accurately and efficiently.
  • To communicate with you about your order, including confirmations, updates, or delivery issues.
  • To comply with our legal and regulatory obligations.
  • To respond to your inquiries, requests, or feedback regarding our products and services.
  • To improve our service delivery and website functionality.
  • If consent is given, to send you information about relevant flower arrangements, services, or special offers.

Retention of Your Data

We will retain your personal data only for as long as necessary for the purposes for which it was collected, including to fulfill your order, comply with legal requirements, resolve disputes, and enforce our agreements. Typically, order and transaction details are retained for up to six years to satisfy accounting and legal obligations. After this period, your data will be securely deleted or anonymized, so it can no longer be associated with you.

Processors and Data Sharing

We only share your personal data with trusted third parties when necessary to provide our services or to comply with legal obligations. These may include:

  • Payment Processors: Secure payment gateways process your payment details in accordance with strict security standards.
  • Delivery Partners: Reputable couriers or local florists who deliver your order, provided with only the data necessary to complete delivery.
  • Service Providers: Partners providing IT support, order management, website hosting, or data analytics services. These providers are contractually obliged to protect your data and may not use it for other purposes.
  • Legal Authorities: If required by law or to enforce legal rights, we may disclose your data to regulatory bodies or law enforcement agencies.

We do not sell, trade, or otherwise transfer your personal data to unrelated third parties. If data transfer outside the UK or EU/EEA is required, robust safeguards (such as Standard Contractual Clauses) will be applied in accordance with GDPR requirements.

Your Rights Under GDPR

Under the GDPR, you have several important rights in relation to your personal data:

  • Right of Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: If you believe any information we hold is inaccurate or incomplete, you may request corrections.
  • Right to Erasure: In certain circumstances, you may request the deletion of your personal data.
  • Right to Restrict Processing: You can ask us to restrict the use of your data under specific conditions.
  • Right to Data Portability: Where applicable, you may request to receive your personal data in a structured, commonly used, and machine-readable format.
  • Right to Object: You have the right to object to some forms of processing, including direct marketing (if applicable).
  • Right to Withdraw Consent: Where processing is based on consent, you can withdraw this at any time. Withdrawing consent does not affect the lawfulness of processing prior to withdrawal.
  • Right to Lodge a Complaint: If you are concerned about how your data has been handled, you have the right to contact your local data protection authority.

Security and Data Protection

We take appropriate technical and organizational measures to protect your personal data against unauthorized access, unlawful processing, accidental loss, destruction, or damage. Our staff are trained to handle your information securely, and all data exchanges with third parties are governed by strict agreements and security standards.

Policy Updates

We may review and update this Privacy Policy from time to time to reflect changes in the law, our practices, or the nature of our services. We encourage you to review this page regularly to stay informed about how we protect your personal data.

Contact

If you have any questions or wish to exercise your rights regarding your personal data, please contact us using the communication channels provided on our website. We are committed to responding to all valid requests within one month, in accordance with the GDPR.