HTA BESPOKE ENGRAVING PRIVACY POLICY

HTA Bespoke Engraving are committed to complying with the General Data Protection Regulation and the Data Protection Act 2018. This privacy policy sets out how HTA Bespoke Engraving uses and protects any information that you give, when using this website. This policy is in accordance with European Data Law known as the General Data Protection Regulation (GDPR).

Privacy is extremely important to us and we want to assure you that we will do all we can to protect your personal data. Should we ask you to provide certain information by which you can be identified when using this website, then you can be assured that it will only be used in accordance with this privacy statement.

HTA Bespoke Engraving may change this policy by updating this page. You should check this page from time to time to ensure that you are happy with any changes.

This policy is effective from Tuesday 3rd January 2023.

We have published this notice to help you understand

how and why HTA Bespoke Engraving collect information from you
who we share your information with, why and on what basis
what your rights are

Information Collected by HTA Bespoke Engraving

HTA Bespoke Engraving receives, collects and stores any information you enter on our web site, or provide to us in any other way, e.g. communication such as through our form or email.

This can include personal data such as:

Name
Address and Postcode (for billing and delivery)
Email Address
Telephone Number
Purchases and orders made by you.
Your on-line browsing history on our website.
Feedback.
Your IP Address.
Your correspondence with us.

We use “cookies” to enhance your experience and gather information about visitors and visits to our websites. For further information on this please refers to the please refer to the Cookies page.

Data is collected and used through both the given consent of the data subject and through the legal basis of legitimate business interests. All personal data is treated as strictly confidential.

How we get the personal information and why we have it

Most of the personal information we process is provided to us directly by you for one of the following reasons:

When you give it to us directly: When you visit our website, communicate with us or purchase our products or services, you may choose to give us certain information. For example, when you give us your name, home address and email address.
When our systems collect information or personal data as you use our website: Whenever you use the website, information gets recorded automatically by the IT systems used to operate the website. The most common type of information collected is in the form of cookies (small text files sent by your computer each time you visit our website) but can also include personal data transferred by the electronic device you use to access our website and its settings. The manufacturer of your device, or the provider of the operating system, will have details about what information your device shares with us.

Disclosure of information

We do not rent or sell your personal information to anyone. We may share and disclose information about our customers in the following limited circumstances:

With core service providers to enable our business to function

We rely on a set of external companies to provide us with services that enable our business to run properly. Our core service providers include: a) the courier companies we use to deliver our products to you, b) banks and clearing houses to process your payments.

With regulators and law enforcement agencies when required to do so by law

We are required to co-operate with regulators (like the Information Commissioner's Office or HMRC) and law enforcement agencies (like the police or the Serious Fraud Office). Although it does not happen often, regulators and law enforcement agencies can require us to share information with them as part of an investigation; this may include your personal data. We would have to disclose your personal data where we believe that disclosure is reasonably necessary to comply with the regulator or crime enforcement agency's demand.

When we think it is reasonably necessary to protect you or us

Occasionally businesses are subject to attempted criminal activities; this can affect both us and you. We will take all reasonable steps to protect you and our business but sometimes we may need to share your personal data where we think it is reasonably necessary to:

Detect, monitor, investigate or prevent any suspected illegal activities, fraud or security issues.
Enforce our terms and conditions and to protect your and our rights and property.
Investigate and defend any third-party claims or allegations.

Under the General Data Protection Regulation (GDPR), the lawful bases we rely on for processing this information are:

a) Your consent. You are able to remove your consent at any time. You can do this by contacting Helen Todd-Auckland at htabespoke@outlook.com.

By visiting our site and/or buying something from us, you agree to be bound by the terms stated in the above and our terms and conditions. These terms apply to all users of the site, please read them carefully before accessing or using our website. If you do not agree to all the terms and conditions of this agreement, then you may not use the website.

(b) We have a contractual obligation.

(d) We have a vital interest.

(e) We need it to perform a public task.

(f) We have a legitimate interest.

How we store your personal information

In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.

Our company is hosted on the Wix.com platform. Wix.com provides us with the online platform that allows us to sell our products and services to you. Your data may be stored through Wix.com’s data storage, databases and the general Wix.com applications. They store your data on secure servers behind a firewall.

Security

We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.

Communications

We may contact you to clarify your order, resolve a dispute, to collect fees or monies owed, or as otherwise necessary to contact you to enforce our User Agreement, applicable national laws, and any agreement we may have with you. For these purposes we may contact you via email, telephone, text messages, and postal mail.

How long do we hold your personal data for?

We will not keep your personal data for longer than is necessary for the purposes described in this policy.

As a guide:

we will securely store your data for future use regarding your account, previous and future orders.
we will keep personal data while you are an active customer, or until you tell us to remove your data from our database.
we may keep certain categories of your personal data in order to meet any legal or regulatory requirements, or to resolve a legal dispute.

If we collect your personal information, your information will be kept on record indefinitely, unless requested otherwise.

Links to other websites

Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.

Your data protection rights

Under data protection law, you have rights including:

Your right of access - You have the right to ask us for copies of your personal information. The act gives you the right to access information held about you. Your right of access can be exercised in accordance with the act. Any access request must be made in writing to htabespoke@outlook.com.

Your right to rectification - You have the right to ask us to rectify personal information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.

Your right to erasure - You have the right to ask us to erase your personal information in certain circumstances.

Your right to restriction of processing - You have the right to ask us to restrict the processing of your personal information in certain circumstances.

Your right to object to processing - You have the the right to object to the processing of your personal information in certain circumstances.

Your right to data portability - You have the right to ask that we transfer the personal information you gave us to another organisation, or to you, in certain circumstances.

You are not required to pay any charge for exercising your rights. If you make a request, we have one month to respond to you. Please contact us at htabespoke@outlook.com if you wish to make a request.

If you believe that any information we are holding on you is incorrect or incomplete, please email us as soon as possible at htabespoke@outlook.com. We will promptly correct any information found to be incorrect.

How to complain

If you have any concerns about our use of your personal information, you can make a complaint to us at htabespoke@outlook.com.

You can also complain to the ICO if you are unhappy with how we have used your data.

The ICO’s address:

Information Commissioner’s Office

Wycliffe House

Water Lane

Wilmslow

Cheshire

SK9 5AF

Helpline number: 0303 123 1113

ICO website: https://www.ico.org.uk

Questions and feedback

We welcome your questions, comments, and concerns about privacy. Please send us any and all feedback pertaining to privacy, or any other issue via our contact form or email htabespoke@outlook.com.

HTA Bespoke Engraving is registered with the Information Commissioner's Office (ICO) - Registration No: ZA897491