the personal information we collect about you;
what we do with your information, and
who your information might be shared with.
1. DATA PROTECTION
1.1 This policy and any other documents referred to on it sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
1.2 For the purpose of the Data Protection Act 1998 (Act) and the General Data Protection Regulation (EU) 2016/679, which comes into force on 25 May 2018 (GDPR) (together the Act and the GDPR being the Data Protection Laws), we are the data controller (i.e. we are responsible for, and control the processing of, your personal information).
1.3 We fully comply with the Data Protection Laws and all other relevant legislation.
2. INFORMATION WE COLLECT FROM YOU
2.1 Information you give us
We collect personal information about you, including your name, billing address, shipping address, e-mail address, phone number, mobile number, the pattern collected, order details, password (if you have created an account on our website) and, financial and credit card information when you purchase products from us. We also collect your personal information when you sign up for our newsletter and when you contact us.
Your personal information and communication preferences are kept securely within the ‘My Account’ area of the website and can be accessed by signing in and selecting ‘My Account’ from the main menu. You can use this area to update your personal information, communication options and view your previous order history.
2.2 Information we collect about you
With regard to each of your visits to our site we will automatically collect the following information:
(a) technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform and
(b) information about your visit, including the full Uniform Resource Locators (URL), clickstream to, through and from our site (including date and time), products you viewed or searched for page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), methods used to browse away from the page and any phone number used to call our customer service number.
2.3 Information we receive from other sources
We are working closely with third parties (including, for example, business partners, sub-contractors in technical, payment and delivery services, advertising networks, analytics providers, search information providers, credit reference agencies). We will combine this information with information you give to us and information we collect about you, for the purposes set out below (depending on the types of information we receive).
2.4 Recorded Sessions
Our website may also use a website recording service which may record mouse clicks, mouse movements, page scrolling and any text keyed into website forms. Data collected by this service is used to improve our website usability. The information collected is stored and is used for aggregated and statistical reporting, and is not shared with anybody else.
2.5 Monitoring and recording communication
We may monitor and record communications with you (such as telephone conversations and emails) for the purpose of quality assurance, training, fraud prevention and compliance.
3.1 The use of a "cookie" involves storing a small file on your computer which can be used to identify your browser to our server. You can usually modify your browser to prevent this happening, although if you do "disable cookies", then you will be unable to make a purchase from our online shop.
3.2 We use "cookie" technology to enable the shopping system to distinguish you from other users of our website, record the contents of your basket, to ensure that the correct products are ordered when you progress through the checkout and to facilitate navigation throughout the shopping and catalogue pages.
Remarketing – What is this?
3.3 In operating our website, we may collect any data that you provide to us using Cloud IQ even without completion of registration and or transaction by clicking submit/next. These details may be used to contact you to assist with your registration, transaction or should you abandon your basket.
3.4 You may see our adverts on other websites*. For these adverts, we will be using software that may set a cookie** to your browser. This software will allow us to monitor if you see our adverts, if you click on them and if you go on to buy from our website. The browsing data collected is always anonymous and does not include any personally identifiable information including your name, home address or any other personal information that can identify you.
4. USES MADE OF THE INFORMATION
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
Where we need to perform the contract we are about to enter into or have entered into with you.
Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests. Legitimate interests means for example conducting and managing our business to enable us to give you the best service/product and the best and most secure experience. We make sure we consider and balance any potential impact on you (both positive and negative) and your rights before we process your personal data for our legitimate interests.
Where we need to comply with a legal or regulatory obligation.
4.1 Information you give us
We will use this information:
(a) to identify you and manage any accounts you hold with us;
(b) to process your order;
(c) to contact you and update you on the status of your order;
(d) if you agree, we will let you know about other products or services that may be of interest to you—see clause 5.1 below;
(e) to carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you request from us;
(f) to notify you about changes to our products, including, a pattern being discontinued; and
(g) to ensure that content from our site is presented in the most effective manner for you and for your computer.
4.2 Information we collect about you
We will use this information:
(a) to administer our site and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;
(b) to improve our site to ensure that content is presented in the most effective manner for you and for your computer;
(c) to allow you to participate in interactive features of our service, when you choose to do so;
(d) as part of our efforts to keep our site safe and secure;
(e) to measure or understand the effectiveness of advertising we serve to you and others, and to deliver relevant advertising to you.
5. DISCLOSURE OF YOUR INFORMATION
5.1 We would like to use your personal information to provide you with information about goods or services we feel may interest you. We would like to send you this information by post, email, telephone, text message (SMS) or automated call about our products, competitions and special offers which may be of interest to you.
5.2 We do not provide your details to any third party for Marketing purposes.
5.3 We will share your personal information with:
(a) third party banking organisations, including WiX, Cybersource and PayPal, who handle our credit/debit card transactions. They receive the information needed to verify and authorise your payment card and to process your order. These companies are under strict obligation to keep your personal information private. Operating on the Oracle Cloud Commerce platform, our website is certified Tier 1 PCI DSS Compliant. This means your data is kept secure when making a purchase.
(b) Royal Mail and Parcelforce, our delivery service providers, if you place an order with us. This is to enable Royal Mail or Parcelforce to update you on status of your delivery;
(c) any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006;
Selected third parties including:
(a) third parties in the event that we sell or buy any business or assets, in which case we will disclose your personal data to the prospective seller or buyer of such business or assets;
(b) third parties if we or substantially all of our assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets; and
5.4 If we engage service providers that result in the transfer of your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
Where we use providers based in the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to personal data shared between the Europe and the US.
6. USER GENERATED CONTENT (UGC)
6.1 We love it when you take and share photos of our products. By uploading a photo to Instagram or Twitter with the hashtag ‘Blue Artemis’, your photos can be found by the Blue Artemis digital team and selected to use on our website.
How will my photo and others details submitted by me be used?
6.2 You can provide your permission for us to use your content by replying to our social media post (e.g. Instagram, Twitter or Facebook) or by uploading your photo directly. By providing permission, you acknowledge that your photo may be seen worldwide and may be used to promote and/or link to any product on our website.
6.3 By submitting a photo you hereby grant to us a perpetual, worldwide, non-exclusive, royalty-free licence (with the right to sub-licence) to use, edit, alter, reproduce, translate, publish and/or distribute the photos and/or incorporate it in other works on our websites using any and all media or distribution methods.
6.4 Please note - we will select photos at our absolute discretion and we are under no obligation to use all the photos submitted. We are happy to remove UGC images on request. If you would prefer your image not to be displayed or for all other UGC enquiries, please email: email@example.com
7. WORKING WITH INFLUENCERS AND BLOGGERS
We work with a network of Influencers and Bloggers to promote Blue Artemis. If you work with us as an Influencer or Blogger then your details will be stored securely on our electronic internal systems and will be used for contacting you and sending you products to test and review where appropriate. Your details will only be shared with selected 3rd party companies to enable us to carry out our business, eg our PR Agency. If you want your details to be removed at any time then please contact us at firstname.lastname@example.org.
8. WORKING WITH SUPPLIERS AND CONTRACTORS
We work with a number of suppliers and contractors and as part of this relationship we do collect personal data of suppliers and business customers to enable us to carry out our contract with them. We will also market to our business customers to keep them up to date with Blue Artemis news unless we are asked to remove them from our mailing lists.
We work with some contractors where we will take a customer order on their behalf and in this case your details are collected to allow us to place your order and to take payment of deposits where appropriate. Blue Artemis will keep a copy of your order form for a period of 3 months after which time this will be destroyed. We also forward a copy of the order form to our contractors to allow them to fulfil the order.
9. SECURITY STATEMENT
9.1 We will use technical and organisational measures to safeguard your personal data, for example:
(a) access to your account is controlled by a password;
(b) your personal data is encrypted and stored on secure servers; and
(c) when you place orders on our secure server we use industry-standard Secure Sockets Layer (SSL) technology to encrypt your information, such as your name and credit card details, as it is passed from your computer to our web server. This encrypted information cannot be read in the event of it being intercepted by someone else. During the checkout process you can tell whether a page is secure as ‘https’ will replace the ‘http’ at the front of the www.blueartemis.com in your browser address window. A small padlock will also appear in the bottom bar of your browser window.
9.2 If you do not wish to send your details over the web for any reason, you can ring us on +44 (0) 7723 515250 and we will be happy to take your order by phone. Alternatively, contact us at email@example.com.
9.3 Unfortunately, the transmission of information via the internet is not completely secure. Although we will use reasonable efforts to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
9.4 Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
10. COPYRIGHT STATEMENT
10.1 All rights reserved. The material on this site is protected by copyright throughout the world and is owned by us.
10.2 You may read, print and download it for private use only.
10.3 You may not commercialise or otherwise copy it without our permission.
10.4 Use of this site is subject to our terms and conditions of use
11. YOUR RIGHTS
11.1 The Data Protection Laws give you the right to access information held about you, a Subject Access Request. Your right of access can be exercised in accordance with the Data Protection Laws. A copy of the information we hold about you will be provided free of charge. To get a copy of the information we hold about you please please email us at firstname.lastname@example.org. If unfounded, excessive or repetitive requests are made, a reasonable fee will be payable for each request to meet our costs in providing you with details of the information we hold about you.
11.2 You can require us to correct any mistakes in your information which we hold free of charge. If you would like to do this, please email us at email@example.com, call or write to us and let us have enough information to identify you, what is incorrect and what the incorrect information should be replaced with.
11.3 You have the right to ask us not to process your personal data for marketing purposes, in accordance with clause 5.2.
11.4 Subject to clause 11.6, you have the right to request that we erase your personal data in the following circumstances:
(a) your personal data is no longer necessary for the purposes it was collected or otherwise processed by us;
(b) you withdraw your consent to us processing your personal data and there is no other legal ground for processing;
(c) you object to us processing your personal data and there are no overriding legitimate grounds;
(d) your personal data has been unlawfully processed; or
(e) your personal data has to be erased for compliance with a legal obligation to which we are subject.
11.5 Subject to clause 11.6, you have the right to request that we restrict the processing of your personal data in the following circumstances:
(a) if you contest the accuracy of the personal data we hold, processing of your personal data will be restricted until we have verified the accuracy of your personal data;
(b) if you object to the processing (where it was necessary for the performance of a public interest task or purpose of legitimate interests), and we are considering whether our legitimate grounds override yours;
(c) processing is unlawful and you oppose erasure and request restriction instead; or
(d) if we no longer need the personal data but you require the data to establish, exercise or defend a legal claim.
11.6 If you have not opted in to our marketing emails/SMS then we will securely delete your personal data or anonymise your data after a period of 10 years.
11.7 If you are dissatisfied with our use of your personal information, you have the right to refer such matters of dispute to the Information Commissioner’s Office by e-mail to: firstname.lastname@example.org, by phone on: 0303 123 1113 or by post to: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.
13. WHEN TO CONTACT CUSTOMER SERVICES
If you have any further questions on our Privacy and Security Policy or require help with your online order, please email: email@example.com. If you are still unsure about how your data will be used or if you have been unable to make a purchase via the website you can also ring us on +44 (0) 7723 515250 and we will be happy to take your order by phone.
If you would like this policy in another format (for example: audio, large print, braille) please contact us using the contact details above.
14. CREDIT CHECKS (TRADE CUSTOMERS ONLY)
In order to process your application, we will supply your personal information to credit reference agencies (CRAs) and they will give us information about you, such as about your financial history. We do this to assess creditworthiness and product suitability, check your identity, manage your account, trace and recover debts and prevent criminal activity. We will also continue to exchange information about you with CRAs on an on-going basis, including about your settled accounts and any debts not fully repaid on time. CRAs will share your information with other organisations. The identities of the CRAs, and the ways in which they use and share personal information, are explained in more detail at http://www.experian.co.uk/crain/index.html