Florist Temple Customer Privacy Policy

Introduction

At Florist Temple, we are committed to safeguarding the privacy of our customers. This Privacy Policy explains how we collect, use, store, and protect your personal data when you place orders with us. It also sets out your rights under the General Data Protection Regulation (GDPR). This policy applies to all customers placing orders with Florist Temple in Temple and the surrounding districts.

What Data We Collect

We collect and process the following categories of personal data to fulfill your orders and ensure a high standard of service:

  • Identification Information: Full name, billing and delivery address.
  • Contact Information: Phone number(s) (where provided) and other contact methods used for order confirmation and delivery updates.
  • Order Details: Product selection, special messages, order history, purchase amount, and preferences.
  • Payment Information: Transaction details from your payment provider. Note: We do not store full payment card numbers or CVV codes.
  • Technical Data: Device information, IP address, and, if applicable, browsing activity on our website for functionality and analytics.

Lawful Basis for Data Processing

Your personal data is processed by Florist Temple in accordance with the lawful bases defined by GDPR:

  • Performance of a Contract: We collect necessary data to process and deliver your orders, provide customer service, and manage payments.
  • Legitimate Interests: We may use your data to improve our services, ensure transaction security, and communicate offers or updates where it is in our mutual interest (and does not override your rights).
  • Legal Obligations: To comply with UK or EU laws for financial reporting, fraud prevention, and record-keeping.
  • Consent: Where required by law, for sending marketing communications and processing certain optional information, we will seek your explicit consent, which you may withdraw at any time.

Why and How We Use Your Data

We use your data for several purposes:

  • To process and fulfill your order, including confirming details and delivering flowers to you or your recipients.
  • To contact you about your order or respond to queries.
  • To address complaints, provide refunds, or resolve issues.
  • To meet statutory requirements for tax, accounting, and logistics.
  • To enhance our website, understand customer preferences, and provide a better user experience.
  • To send special offers or updates, only where you have consented or where lawful under legitimate interest.

Data Retention Periods

Your personal data will only be stored for as long as necessary to fulfill the purposes outlined in this policy:

  • Order information and related communications are typically kept for up to seven years to comply with accounting and tax regulations.
  • Data collected for marketing purposes will be retained until you withdraw consent or unsubscribe.
  • Technical or analytical data is retained for up to two years to improve site functionality, after which it is anonymized or deleted.

Upon expiry of the relevant retention period, your personal information will be deleted securely or anonymised so that it can no longer be associated with you.

Processors and Third Parties

To process and deliver your orders efficiently, we may share personal data with trusted third-party service providers (processors), including:

  • Payment processors to handle transactions securely.
  • Delivery providers for order fulfillment.
  • IT and cloud service providers needed to maintain our website and store data safely.
  • Professional advisors (such as accountants or auditors) where required by law.

All such processors only have access to the data necessary to perform their designated roles, and are contractually obliged to maintain confidentiality and data security. We do not sell your personal data to any third party.

How We Protect Your Data

We employ a range of physical, organisational, and technical measures to keep your personal data safe from accidental loss, unauthorised access, disclosure, alteration, or destruction. Some of these include encryption of data in transit and storage, restricted access controls, and regular staff training on data protection best practices.

Your Rights Under GDPR

As a customer, you have the following rights with respect to your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Ask us to correct any inaccurate or incomplete information.
  • Erasure: Request that your data is deleted, subject to legal retention requirements.
  • Restriction: Request we restrict or suspend processing of your data in certain circumstances.
  • Portability: Obtain a copy of your data in a suitable format, or request transfer to another provider.
  • Objection: Object to certain types of processing, such as direct marketing.
  • Withdraw Consent: Where processing is based on your consent, you may withdraw at any time without affecting the lawfulness prior to withdrawal.
  • Complain: If you believe your rights under data protection law have been infringed, you can lodge a complaint with the relevant supervisory authority.

Policy Updates and Contact

We periodically review and update our Privacy Policy to reflect changes in our business practices or legal requirements. While you will be notified of significant amendments, please check this policy from time to time for the latest information.

If you have any further questions regarding the protection of your data at Florist Temple, or wish to exercise any of your rights as set out above, please get in touch using the contact details provided through our official website or ordering channels.

Scope of Application

This Privacy Policy applies to all customers placing orders with Florist Temple for delivery in Temple and its surrounding districts. By finalising your order, you acknowledge the collection, use, and processing of your data as described within this policy.