On 25th May 2018 the General Data Protection Regulation (GDPR) replaced the Data Protection Act 1998. This makes it easier for you to understand what personal data is held and how it is used, and ensures that it is used transparently, fairly and lawfully. The principles to which we must abide by are as follows:
The following explains how we comply with these regulations.
When you place an order, you provide your name, address and contact details. This is stored on our database, together with the order details. We need this information so as to be able to process your order. The data we can see is the same as can be seen by you. However, your log-in user name and password are not revealed to us. You can amend/update this data at any time.
We have no access to your payment card details, which are held by Global Iris, (part of HSBC). Instead, they advise us that they have debited your account with the invoice sum and will credit this to our bank account in three working days.
This data is stored on our database electronically for as long as is necessary to run our business efficiently. We do not use your personal data in any way. Instead, the order details are used solely for the purpose of stock control and monitoring sales of our products.
The use of passwords, firewalls, anti-virus and malware software ensures your data is being held securely. Our location – 1.5 miles from a public road, with the access lane being monitored 24/7 by day and night vision cameras, an automatic vehicle number plate reader, together with other security systems, minimises the risk of the physical theft of our computer systems.
We do not sell on, or share your personal data.
If you have concerns about the way your data is being handled, you have the right to complain to the Information Commissioner’s Office, who may be contacted on 0303 123 1113.