SECTION 1 - WHO WE ARE
Any queries about this policy or how we use your personal information, please contact us at firstname.lastname@example.org
SECTION 2 - INFORMATION WE MAY COLLECT FROM YOU
We may collect the following information about you:
Your name, age/date of birth, gender and other relevant demographic information;
Your contact details: postal address including billing and delivery addresses,
telephone numbers (including mobile numbers) and email address;
Your social media handles;
Purchases and orders made by you;
Your online browsing activities on our website including which items you store in your shopping cart;
Information about the device you use to browse our websites including the IP address and device type;
Your communication and marketing preferences;
Your interests, preferences, feedback, competition and survey responses;
Your correspondence and communications with us; and
Other publicly available personal data, including any which you have shared via a public platform (such as Instagram, YouTube, Twitter or public Facebook page);
If you have started to buy one of our products, but have not completed the purchase, you may have provided partial information, such as your email. In that case, we might send you an email to remind you about your interest;
If you are not comfortable in receiving further emails of this kind, we will give you a simple opportunity to opt-out. Your privacy means a lot to us and we will stop sending you these communications right away;
If you have completed a purchase, we will send you an email to ask you to review the product you bought. We want to be sure that whether you love your purchase or have a complaint, you can share your opinion with other customers.
This list is not exhaustive and in specific instances, we may need to collect additional data for the purposes set out in this policy. Some personal data is collected directly, for example when you set up an online account on our website or send an email to our Customer Support team.
Other personal data is collected indirectly, for example when you browse our websites or undertake online shopping activity. We may also collect personal data from third parties who have your consent to pass your details to us, or from publicly available sources. We may anonymise and aggregate personal data for insight and research but this will not identify anyone.
Our websites are not intended for children and we do not knowingly collect data relating to children.
SECTION 3 - HOW DO WE USE YOUR INFORMATION
Notre Fleur Ltd use your personal data:
To provide goods and services to you;
To make a tailored website available to you;
To manage any account(s) you hold with us;
To verify your identity;
For crime and fraud prevention, detection and related purposes;
With your agreement, to contact you about promotional offers, events, products and services which we think may interest you;
To show you promotional communications through online media as you browse the web;
For analysis, insight and research purposes - to better understand your needs and ensure we are giving you what you want;
If you have accepted cookies, we will share certain information with Google Analytics; To enable us to manage customer service interactions with you;
If you choose to interact with us on a public forum, such as social media, our communications may be visible to other users of the platform.
Your personal data may be disclosed or transferred to potential or actual buyers of, investors into or lenders to our business or any of our assets, or any of the advisors or representatives of the above. If so, we will ensure that appropriate confidentiality terms are in place.
To ensure you are kept up to date with the Notre Fleur experience, we use personal data for marketing purposes and may send you postal mail, texts and/or emails to update you on the latest offers and events. We may also show you online media communications through external social media platforms such as Facebook and Instagram and external digital advertisers such as Google.
You have the right to opt out of receiving promotional communications at any time, by:
Informing us that you wish to change your marketing preferences by contacting our customer support team at email@example.com
Making use of the simple “unsubscribe” link in emails or the “STOP” number for texts; and/or
Contacting us by post to Notre Fleur Ltd,
51 Queenswood Court Kings Avenue, London, England, SW4 8EB. This may not stop service messages such as order updates.
Personalisation and Automated Decision Making
If you visit our website, you may receive personalised banner advertisements whilst browsing websites of other companies. Any banner advertisements you see will relate to your browsing activity on our website from your computer or other devices.
These advertisements are provided by us via external market leading specialist providers using techniques such as pixels, web beacons , ad tags, mobile identifiers and ‘cookies’ placed on your computer or other devices.You can remove or disable cookies at any time - see “Cookies” for further information below.
We may collect data directly from you, as well as analysing your browsing and purchasing activity online and your responses to marketing communications. The results of this analysis, together with other demographic data, allow us to ensure that we contact you with information on products, services, events and offers that are tailored and relevant to you. To do so, we use software and other technology for automated decision making. We may do this to decide what marketing communications are suitable for you and this activity is based on our legitimate interests to develop and improve our products and services.
Also to provide more personalised services and experiences, we may review data held by external social media platform providers about you, for example, details on your Twitter or Facebook profiles that you have chosen to make publicly accessible such as your name, date of birth.
We aim to update you about products and services which are of interest and relevance to you as an individual. To help us do this, we process data by profiling and segmenting, identifying what our customers like and ensuring messages we send them are relevant based on their demographics, interests, purchase behaviour, online web browsing activity and engagement with previous communications. We may also use your data to exclude you from communications which we feel are irrelevant to you. For example, we may exclude someone from resends of marketing emails when we know that person has already opened the original email sent.
Another example of how we may tailor our communications with you is that we may group individuals with similar interests using this data so we can send them product news or promotional offers that are relevant to that shared interest.
You have the right to opt out of any automated processing, including profiling, at any time by:
Informing us that you wish to opt out of automated processing by contacting our customer support team at firstname.lastname@example.org
Contacting us by post to Notre Fleur Ltd,51 Queenswood Court Kings Avenue, London, England, SW4 8EB
SECTION 4 - COOKIES
What are cookies?
Some cookies collect information about browsing and purchasing behaviour when you access our websites via the same computer or device. This includes information about pages viewed, products purchased and your journey around a website. All data passed by cookies is anonymous and will never contain individual detail such as your name, address, telephone number or payment information but may contain our customer reference number that is unique to you. For more detailed information about how cookies work, please visit www.allaboutcookies.org.
How are cookies managed?
The cookies stored on your computer or other device when you access our websites are designed by:
Notre Fleur Lts or on our behalf, and are necessary to enable you to make purchases on our websites;
Third parties who participate with us in marketing programmes;
Third parties who publish web banner advertisements for us.
What are cookies used for?
Cookies are used with our marketing partners to present you with appropriate offers and advertising as you browse other sites on the internet, based on your browsing activity while on our site. Cookies also allow us to work alongside our web analytics partner, Google Analytics, to see how you like to use our website, which pages or special functions you prefer and help us to make them better. We may match the data we capture through cookies with personal data that we already hold about you to better understand you. This helps us to continually improve the relevance of our promotional communications, your shopping experience and our products and services. The main purposes for which cookies are used are:
1. For functional purposes essential to effective operation of our websites, particularly in relation to online transactions, site navigation and preferences.
2. For marketing and advertising, particularly web banner advertisements and targeted updates through digital channels and social media.
3. To enable us to collect information about your browsing and shopping behaviour, helping us to improve your shopping experience and to monitor performance.
4. To enable us to meet our contractual obligations to make payments to third parties when a product is purchased by someone who has visited our website from a site operated by those parties.
Notre Fleur works with partners who serve advertisements or present online offers on our behalf. Most of these marketing partners use both session and persistent cookies. These cookies are used to deliver adverts more relevant to you and your interests. They are also used to limit the number of times you see an advertisement as well as help measure the effectiveness of the advertising campaign. All data collected by third party cookies is anonymous and will never contain your name, address, telephone number, email address or payment details.
What type of cookies we use?
There are two types of cookies that may be used during your visit to our site:
1. Session Cookies
Session cookies are deleted after each visit to our site. For example, when you are browsing our site, it will remember you for the duration of your visit, but the cookie will be removed from your computer as soon as you close down your internet browser. Session cookies allow you to add an item to the basket and then move through the checkout. Disallowing these cookies via your web browser will mean you are unable to place an order on this site.
2. Persistent Cookies
Persistent cookies remember you for a set period of time, allowing previously viewed products to be displayed the next time you visit our site and whether you were logged into your account.
Turning off and Deleting Cookies
Most web browsers will provide the option to turn off or disallow cookies. How you do this depends on the web browser you are using. Instructions for disabling cookies can usually be found in the browser's 'Help' menu. Note that in common with most other transactional websites, if you only disable third party cookies, you will not be prevented from making purchases on our websites but refusing the cookies we have used via your web browser will mean that you are unable to make a transactional purchase on our website. You may also find that the functionality of many other websites and services will be affected. Cookies can be deleted using your web browser. However, unless they are disallowed they will be reapplied the next time you visit a website.
If you want to disable cookies you need to change your website browser settings to reject cookies. How you can do this will depend on the browser you use.
SECTION 5 - SHARING DATA WITH THIRD PARTIES
Our store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you.Shopify is based in the US and is a participant in the EU-US Privacy Shield Framework and committed to providing best-in-class service and data protection. You can check its participation in the Privacy Shield here on the official site of The International Trade Administration (ITA), U.S. Department of Commerce.
Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall.Through Shopify, we also use other, highly specialized external providers to provide the most competitive services. For example
1. Payment: Our store is PCI-DSS compliant (a very strict industry standard with requirements for the security of credit card information), but we also use accredited companies to process your credit card information. Our payment providers are PayPal Web Payment and Shopify Pay.If you choose a direct payment gateway to complete your purchase, then Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS).
Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.For more insight, you may also want to read Shopify’s Terms of Service (https://www.shopify.com/legal/terms) or Privacy Statement (https://www.shopify.com/legal/privacy).
2. Mailchimp: Your emails are used to send out our weekly newsletter to all our customer. Each mailout includes an option to unsubscribe and stop receiving these emails in future. To do so we use a specialist software called Mailchimp.
Other Third Parties
We may also share your data with:
Other companies within our group;
To purchasers, investors, funders and advisers if we sell our business or assets or restructure whether by merger, reorganisation or otherwise;
Our legal and other professional advisers, including our auditors;
Credit reference agencies where necessary for card payments;
Governmental bodies, regulators, law enforcement agencies, courts/tribunals and insurers where we are required to do so;
To comply with our legal obligations and the administration of justice;
To exercise our legal rights (for example in court cases);
For the prevention, detection, investigation of crime or prosecution of offenders; and for the protection of our employees and customers.
SECTION 6 - LEGAL BASIS FOR USING DATA
We are required to set out the legal basis for our processing of your personal data. We collect and use customers’ personal data:
1. As necessary to perform our contract with you. As for the purposes of complying with our duties and exercising our rights under a contract for the sale of goods or services to a customer
2. As necessary for the pursuit of our legitimate interests, including:
Selling and supplying goods and services to our customers;
Promoting, marketing and advertising our products and services;
Sending promotional communications which are relevant and tailored to individual customers (including administering loyalty schemes);
Understanding our customers’ behaviour, activities, preferences, and needs;
Improving existing products and services and developing new products and services; Protecting customers, employees and other individuals and maintaining their safety, health and welfare;
Good governance, accounting and managing and auditing our operations and complying with our legal and regulatory obligations;
Preventing, investigating and detecting crime, fraud or anti-social behaviour and prosecuting offenders, including working with law enforcement agencies;
Handling customer contacts, queries, complaints or disputes;
Protecting our company, its employees and customers, by taking appropriate legal action against third parties who have committed criminal acts or are in breach of legal obligations to us;
Handling any legal claims or regulatory enforcement actions taken against us;
Fulfilling our duties to our customers, colleagues, shareholders and other stakeholders;
3. As necessary for complying with our legal obligations including:
For compliance with legal and regulatory requirements;
Where you exercise your rights under data protection laws;
To establish or defend legal rights;
4. Based on your consent for example in relation to sending direct marketing communications via email or text message.
You have the right to withdraw consent at any time. Where consent is the only legal basis for processing, we will cease to process data after consent is withdrawn.
SECTION 7- HOW DO WE PROTECT YOUR DATA?
Notre Fleur is committed to keeping your personal data safe and secure.
Our security measures include:
Encryption of data;
Regular cyber security assessments of all service providers who may handle your personal data;
Regular planning to ensure we are ready to respond to cyber security attacks and data security incidents;
Daily penetration testing of systems;
Internal policies setting out our data security rules for our personnel;
Regular training for our employees;
SECTION 8 - HOW LONG DO WE KEEP YOUR DATA?
We will keep your data as long as you have an account with us and will not retain your data for longer than necessary for the purposes set out in this policy. Various laws, accounting and regulatory requirements applicable to us require us to retain certain records for specific amounts of time. In relation to your personal data, we will hold this only for so long as we require that personal data for legal or regulatory reasons or for legitimate organisational purposes. We will not keep your data for longer than is necessary for the purposes for which we collect them.
SECTION 9 - YOUR RIGHTS
You have the following rights:
The right to request access to personal data we hold about you at any time;
The right to ask us to update and correct any out-of-date or incorrect personal data that we hold about you;
The right to object to processing of your personal data and/ or to withdraw any consent you have given us and to opt out of any marketing communications that we may send you;
The right to prevent processing that is likely to cause damage or distress to you or anyone else;
The certain rights in relation to automated decision making including profiling;
The right to request that we erase your personal data in certain circumstances (the right to be forgotten) for example when the data are no longer necessary for the purpose for which we collected them;
The right to have your personal data provided to you by us in a structured, commonly used and machine-readable format and transmitted to another data controller. This is known as the right to data portability.
If you wish to exercise any of the above rights, you can always contact us either by email to email@example.com or by post to the Notre Fleur Ltd, 51 Queenswood Court Kings Avenue, London, England, SW4 8EB.
SECTION 10- POLICY UPDATES
This document was last updated on 6th of June 2018.