The purpose of this Policy is to explain to you how we collect, control, process, handle, protect and dispose of the personal information you provide us with, including your rights under current laws and regulations. If you do not agree to the following Policy you may wish to cease viewing / using this website.
Policy key definitions:
- “I”, “our”, “us”, or “we” refer to the business, Kathryn Williamson Jewellery
- “you”, “the user” refer to you, the person(s) using this website
- GDPR means General Data Protection Regulation
- ICO means Information Commissioner’s Office
- Cookies mean small files stored on a users computer or device
- EMS mean an email marketing service
Your Individual Rights
Under the GDPR your rights are as follows:
- the right to be informed;
- the right of access;
- the right to rectification;
- the right to erasure;
- the right to restrict processing;
- the right to data portability;
- the right to object; and
- the right not to be subject to automated decision-making including profiling.
You can read more about your rights in details here.
You also have the right to complain to the ICO [www.ico.org.uk] if you feel there is a problem with the way we are collect, controlling, processing, handling and protecting your data.
We handle data subject access requests in accordance with the GDPR.
If you wish to contact us to, correct, update or delete the personal information we hold about you please email us at firstname.lastname@example.org
On receipt of a reasonable request from you to access, correct, update or delete the personal information we hold about you, we will provide carry it out within 30 days and inform you when we have done so.
Collecting, Controlling and Processing your Personal Information
Under the GDPR (General Data Protection Regulation) we collect, control and / or process your personal information electronically using the following lawful bases:
We collect, control and / or process specific personal information provided by you with your consent for the specific purpose of browsing our website, subscribing to our newsletter or making a purchase from our online shop .
Your personal information will only be accessed by employees of or contractors appointed by Kathryn Williamson Jewellery and will be treated as private and confidential.
We value your privacy and do not share your personal information with third parties at any time, unless specifically stated and opted in to by you.
Some cookies are required to enjoy and use the full functionality of this website.
Cookies that we use are;
Your web browser should provide you with the controls to manage and delete cookies from your device. You can manage these is your web browser options or settings.
Technical information, including the Internet Protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform;
Information about your visit, including the full Uniform Resource Locators (URL) clickstream to, through and from our site (including date and time); products you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page.
Under the GDPR we use the lawful basis of consent to collect specific personal information from you when you subscribe to our mailing list to send you our Newsletter [insert what it will contain, for what purpose and how often /regularly you will send it).
We will send our Newsletter to you through a third party EMS,provider Mailchimp. When you subscribe to our Newsletter via Mailchimp we will collect from you and control the following personal information:
- Email address
- I.P address
- Subscription time & date
Our Newsletter may contain tracking beacons / tracked clickable links or similar server technologies in order to track subscriber activity. Where used, such marketing messages may record a range of data such as; times, dates, I.P addresses, opens, clicks, forwards, geographic and demographic data. Such data, within its limitations will show the activity each subscriber made for that email campaign.
The Newsletters we send to you are in accordance with the GDPR and the PECR. You can easily manage your preferences, the personal information we hold about you and unsubscribe at any time by following the instructions in the Newsletter or by following this link. You can also read Mailchimp’s Terms of Service and Privacy Statement at www.mailchimp.com/legal/privacy/
The personal information you provide us with when making a purchase allows us to give you access to our website and to supply the items you have purchased. This will allow us to charge you for and to get in touch if necessary about your purchase. We will also analyse the personal information we collect and control so that we can administer, support, improve and develop our business.
Data Security, Retention and Disposal
We will ensure the security of the personal information we hold about you by using secure data storage technologies and precise procedures in how we store, access and manage that information. Our methods meet the GDPR compliance requirement.
We use security measures to protect your personal information from access by unauthorised persons and against unlawful processing, accidental loss, destruction and damage. If we become aware of such an incident we will inform the ICO (Information Commissioner’s Office) within 3 days and will inform individuals directly affected.
We will retain your information in this secure and safe location for a reasonable period of time, as long as the law requires, until we determine your consent no longer exists, or until you inform us you no longer wish for us to retain your personal information (e.g. unsubscribe) for the purpose you provide it to us.