Dowsing & Reynolds understands that your privacy is important to you and that you care about how your personal data is used and shared online. We respect and value the privacy of everyone who visits our website, https://www.dowsingandreynolds.com/ (“Our Site”) and (subject to the limited exceptions in section 6, below) we only collect personal data about you when you either enter your email address in the checkout or make a purchase. Any personal data we do collect will only be used as permitted by law.
1. Definitions and Interpretation
In this Policy, the following terms shall have the following meanings:
means any and all data that relates to an identifiable person who can be directly or indirectly identified from that data. In this case, it means personal data that you give to Us via Our Site. This definition shall, where applicable, incorporate the definitions provided in the EU Regulation 2016/679 – the General Data Protection Regulation (“GDPR”).
These terms in the policy refer to Dowsing & Reynolds, a limited company registered in England under company number 08454046, whose registered and main trading address is Unit 2, Scott Hall Mill, Scott Hall Lane, Leeds, LS7 2HT.
2. Information About Us
2.1 Our website is fully owned and operated by Dowsing & Reynolds.
2.2 Our VAT number is GB 175022920.
2.3 Our Data Protection Officer is Anthony Martin Green and can be contacted by email at firstname.lastname@example.org, by telephone on 01138199985, or by post at Unit 2, Scott Hall Mill, Scott Hall Lane, Leeds, LS7 2HT.
3. What Does This Policy Cover?
4. Your Rights
4.1 As a data subject, you have the following rights under the GDPR, which this Policy and Our use of personal data have been designed to uphold:
4.2 The right to be informed about Our collection and use of personal data;
4.3 The right of access to the personal data we hold about you (see section 8);
4.4 The right to rectification if any personal data We hold about you is inaccurate or incomplete (please contact Us using the details in section 10);
4.5 The right to be forgotten – i.e. the right to ask Us to delete any personal data We hold about you (We only hold your personal data for a limited time, as explained in section 6 but if you would like Us to delete it sooner, please contact Us using the details in section 10);
4.6 The right to restrict (i.e. prevent) the processing of your personal data;
4.7 The right to data portability (obtaining a copy of your personal data to re-use with another service or organisation);
4.8 The right to object to Us using your personal data for particular purposes; and
4.9 Rights with respect to automated decision making and profiling.
4.10 If you have any cause for complaint about Our use of your personal data, please contact Us using the details provided in section 10 and We will do Our best to solve the problem for you. If We are unable to help, you also have the right to lodge a complaint with the UK’s supervisory authority, the Information Commissioner’s Office.
4.11 For further information about your rights, please contact the Information Commissioner’s Office or your local Citizens Advice Bureau.
5. What Data Do We Collect?
5.1 If you send Us an email, We may collect your name, your email address, and any other information which you choose to give Us.
5.2 For users that register on our website either before or whilst making an order, we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
5.3 We collect information about you during the checkout process on our store. This information may include, but is not limited to, your name, billing address, shipping address, email address, phone number, credit card/payment details and any other details that might be requested from you for the purpose of processing your orders.
5.3.1 Credit card information is handled through a third-party supplier (Stripe and PayPal).
5.3.2 Stripe payments are conducted through an iframe which ensures the user is inputting their details directly onto secure Stripe servers, no card numbers are ever stored on our server.
5.3.3 PayPal payments are handled through PayPal’s external servers.
5.4 Location and traffic data (including IP address and browser type) if you place an order, or if we need to estimate taxes and shipping costs based on your location.
5.5 Product pages visited and content viewed whist your session is active.
5.6 Shipping address if you request shipping rates from us before checkout whist your session is active.
5.7 Cookies which are essential to keep track of the contents of your cart whist your session is active.
5.8 Account email/password to allow you to access your account (if you have one), we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
5.8.1 If you choose to create an account with us, your name, address, email and phone number, which will be used to populate the checkout for future orders.
5.8.2 When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
6. How Do We Use Your Data?
6.1 If We do collect any personal data, it will be processed and stored securely, for no longer than is necessary in light of the reason(s) for which it was first collected. We will comply with Our obligations and safeguard your rights under GDPR at all times. For more details on security see section 7, below.
6.2 We collect your data in order to process order information and handle returns or replacement items.
6.2.1 Send you important account/order/service information.
6.2.2 Respond to your queries, refund requests, or complaints.
6.2.3 Process payments and to prevent fraudulent transactions. We do this on the basis of our legitimate business interests.
6.2.4 Set up and administer your account, provide technical and customer support, and to verify your identity.
6.3 Any and all emails containing your personal data will be deleted no later than 10 years once any warranty obligations have expired.
6.4 You have the right to withdraw your consent to Us using your personal data at any time, and to request that We delete it.
7. How and Where Do We Store Your Data?
7.1 We only keep your personal data for as long as We need to in order to use it as described above in section 6.
7.2 Some of your data may be stored outside of the European Economic Area (“the EEA”) (The EEA consists of all EU member states, plus Norway, Iceland, and Liechtenstein). If We do store data outside the EEA (this may be the case, for example, if Our email server is located in a country outside the EEA), We will take all reasonable steps to ensure that your data is treated as safely and securely as it would be within the UK and under the [Data Protection Act 1998]
7.3 Data security is very important to Us, and to protect your data We have taken suitable measures to safeguard and secure any data We hold about you.
7.4 We only work with data processors that operate within the GDPR guidelines. We also encrypt data through HTTPS from your browser to our server.
8. How Can You Access Your Data?
8.1 If you have an account on this website, you can request to receive an export file of the personal data we hold about you, including any data you have provided to us. You can also request that we delete any personal data we hold about you, this does not include any data we are obliged to keep for administrative, legal, or security purposes. No fee is payable and We will provide any and all information in response to your request free of charge. If you request the same data again then an administrative fee may be requested to cover costs of processing your information again.
8.2 Please contact Us for more details at email@example.com.
9. Who We Share Your Data With
We only work with secure and GDPR compliant services.
9.1 Google Analytics – We use this to improve your browsing experience, data shared with them doesn’t include any personally identifiable information but is restricted to browsing habits restricted to Our website.
9.2 Linnworks – We use this service to process your order.
9.3 Help Scout – Software that allows us to manage our customer services.
9.4 Mailchimp – If you choose to receive further marketing emails from us your basic data will be processed by Mailchimp. We also use this service to send friendly reminders to complete your order when you have entered at least your email address into the Checkout.
9.5 Stripe – If you choose to purchase through this option, your details will be processed using their secure servers.
9.6 Paypal – If you choose to purchase through this option, your details will be processed using their secure servers.
9.7 Trust Pilot – Once a customer completes their order they will be prompted to leave a review using this service, only basic order data is sent to this service including and not limited to the name on the order, the order ID and the email address of the customer.
9.8 DPD – If you choose to receive your order via courier we will share your data with DPD which allows them to fulfill your order.
9.9 Royal Mail – If you choose to receive your order via courier we will share your data with Royal Mail which allows them to fulfill your order.
9.10 UPS – If you choose to receive your order via courier we will share your data with UPS which allows them to fulfill your order.
9.11 Facebook – We use Facebook to improve your shopping experience.
9.12 Glew – We use Glew to analyse customer purchasing habits and trends.
9.13 Monkey Puzzle Tree – If you purchase a product from this supplier we will supply your basic details for them to fulfill your order.
11. Contacting Us
Dowsing & Reynolds