data protection policy

 

DATA PROTECTION POLICY

Here at Gemma Roe, we take your privacy very seriously and do our best to adhere to the highest standards of data protection. Details of this are outlined in our Data Protection Policy which can be viewed below.

Gemma Roe (“GR” or “we”) is committed to protecting the privacy of all individuals who utilise the www.gemmaroe.co.uk website (the “Site”). Please read the following policy to understand how we collect, use and safeguard the information you may provide to us via this Site. This Privacy Policy may be revised from time to time, so please revisit this page often to remain fully informed of our policies.

We aim to adhere to the General Data Protection Regulations (GDPR) which became enforceable on 25th May 2018. If you have any concerns about your privacy, don’t hesitate to get in touch.

All shipments outside the UK and US are subject to the DHL privacy policy. DHL help us fulfil our international orders.

COOKIES

1. WEBSITE FUNCTIONALITY COOKIES

These cookies enable you to browse the website and use our features such as shopping baskets and wish lists.

2. WEBSITE ANALYTICS COOKIES 

We use these cookies to measure and analyse how our customers use the website. This allows us to continuously improve our website and your shopping experience.

3. CUSTOMER PREFERENCE COOKIES

When browsing or shopping online, the website will remember preferences you make (for example your user name, language or location). This makes your browsing experience simpler, easier and more personal to you.

By using our website you agree that we can place these types of cookies on your device and access them when you visit the site in the future. 
If you want to delete any cookies that are already on your computer, please refer to the help and support area on your internet browser for instructions on how to locate the file or directory that stores cookies. Information on deleting or controlling cookies is available at www.aboutcookies.org. Please note that by deleting our cookies or disabling future cookies you may not be able to access certain areas or features of our site.

1. ABOUT US

This is the Privacy Policy of Gemma Roe (“Gemma Roe “, “we”, “our”, “us”). We operate the websites www.gemmaroe.co.uk. We are Gemma Roe LTD, a company registered in England and Wales under company number 08199052 and our registered office and main trading address is Gemma Roe LTD, 84 Lower Street, Rugby, United Kingdom, CV21 4NU. Our VAT number is GB185945066.

You can contact us by email (open from Monday to Friday, 10am to 6pm GMT).

2. ABOUT THIS PRIVACY POLICY AND YOUR CONSENT

We respect the privacy rights of our online visitors and customers (“you”, “your”, “yours”) and recognise the importance of protecting the information collected about them. This Privacy Policy guides you through how we collect, store and use your personal data that you provide us with to enable our online visitors to be fully informed of our privacy policies.

By visiting our site, registering for any account or ordering or purchasing from us, you are accepting and consenting to the practices described in this Privacy Policy and our Terms & Conditions. If you are under 18, we require that you inform a parent or guardian about Gemma Roe’s Privacy Policy and Terms & Conditions as well as requiring their consent to the Privacy Policy and the Terms & Conditions before registering or placing an order with Gemma Roe.

This Privacy Policy does not apply to websites maintained by other companies or organisations which we are associated with. Please ensure that you read the Privacy Policy of such other companies or organisations before submitting your details.

3. WHAT PERSONAL DATA DO WE OBTAIN PERSONAL DATA AND HOW DO WE USE THIS

Our online store is hosted on Squarespace Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you. Accordingly, when you submit personal information in connection with purchases made via the Site, such information is not collected by Gemma Roe but rather is sent directly to Squarespace. When you purchase something from our store, as part of the buying and selling process, Squarespace collects the following personal information: your first name, last name, company name, mailing address and billing address, phone number, email address, purchase information, gender and credit card payment information. We also may keep interactions with our Customer Services Team, or visits to our website. Please see Section 10 for more information on Squarespace’s policies.

 We collect information in the following circumstances:

  • When you register to or use our website

  • When you allow social media sites to provide your data to us

  • When you enter any event, prize draws or competitions run by us

  • When completing any of our surveys or leaving us a review

  • When completing any forms for transactional, employment or other purposes

  • When you buy products or gift cards/vouchers

  • When you've given a third party permission to share with us the information they hold about you

The Site allows you to register with us for an account through the Create Account page on the Site. When you register for an account via the Site, you will be providing us with your first name, last name and email address. Such registration information enables us to make the purchase of products quicker and easier.

When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system, and your activity while using the Site. See Section – COOKIES, for information on technical information we collect as a result of your use of the Site and how we use such information.

In addition, the Site permits you to subscribe to our newsletter via the Subscribe page on the Site. With your permission, we may send you emails about our store, new products and other updates. In order to sign up to receive the newsletter, you need only provide us your email address. You may opt out of receiving our newsletter or other communications from us by following the opt-out link provided in any email received or by un-checking the applicable box on the Check Out page hosted by Squarespace.

The Site permits you to reach out to various Gemma Roe departments through email. Whenever you send us an email, you will be providing us with your email address and any information you choose to provide in the text of your message. For example, you may choose to provide your full name, mailing address or other information necessary or helpful for us to address your query or concern. Your personal information will be used to respond to your communications.

Gemma Roe collects personal information from you in several ways, such as when you place an order or send us any communication or submit any information through our site. We may also use your personal information to send you marketing updates but only ever in accordance with your preferences (as detailed in Paragraph 5 (Marketing and Opt-Out Provisions)). We may also use your personal data to manage and improve our business and site and to keep internal records and maintain reasonable archives, including anonymous statistical data about browsing actions and patterns, which does not identify any individual.

We may generate personal information ourselves, including in the course of providing you with any service or registration or operating our website or processing an order or performing a contract or in connection with the processing of any payment or arranging for any delivery, return or exchange. These details allow us to process your order and to let you know the status of your order.

We may also obtain and disclose such personal information to third parties in the course of processing an order or performing a contract, including in connection with the processing of any payment or arranging for any delivery, return or exchange. We may also collect personal information when you visit and use our website, including information that is automatically provided by your browser to our servers and information collected by cookies or other tracking and analytical technologies. If we do use cookies or other technologies to store or collect data from your computer, this will be detailed in the section titled “Cookies”.

In respect of any saved card details, we will only ever store the card type, the last four digits of the card used and the expiry date and such card details will never be shared with third parties and will only be used to process your order, using our payment partner’s safe payment platform systems. To help ensure that your shopping experience is safe, simple and secure, Gemma Roe uses Secure Socket Layer (SSL) technology.

4. WE USE YOUR PERSONAL DATE IN THE FOLLOWING WAYS:

  • To enable us to personalise your shopping experience on our sites.

  • To allow us to handle your orders, deliver products and process your payments and refunds (including to ensure secure payment and prevent fraud).

  • To respond to your questions, refund requests and complaints.

  • To keep a record of when and why you contact us and to keep your contact details up-to-date.

  • For statistical, analytical or survey purposes - so we can improve our websites and the services we offer you.

  • To enable third parties to carry out technical, logistical or other business functions on our behalf such as advertising on social media sites you might use and visit (our ability to do this will depend on the privacy settings you have on your social media accounts).

  • Where you are an existing customer (or you have otherwise given us your data) and have not opted out, or where you have consented, we use your data to send you information about our business and products we think you might like and to notify you of products or special offers that may be of interest to you.

  • To process your application when you enter a competition promotion or prize draw. (If there are other purposes specific to that competition promotion or prize draw, these will be explained in the applicable competition terms & conditions).

  • In order to help us manage our customer relationships, we use third party platforms. These platforms assist us to do lots of things, including: conduct email marketing campaigns, advertise online, undertake customer analytics, plan and put on events, fulfill orders, make deliveries, returns and refunds etc. We therefore pass on your personal data to these third parties, on the condition that they agree to handle your information in line with this notice.

5. WHO WE SHARE YOUR PERSONAL INFORMATION WITH

We do not sell your details to third party marketing companies. We may obtain and disclose personal data to third parties (including intermediaries) as necessary to process any order or provide any service to you, including carrying out any checks, processing or recovery of any payment, carrying out delivery of any goods or exchanges or collection of any returns, to enforce or administer any contract or deal with any claims.

Saved card details will never be shared with third parties (other than for the purpose of processing a payment to us) and will only be used to process your order, using our payment partner’s systems. To help ensure that your shopping experience is safe, simple and secure, Gemma Roe uses Secure Socket Layer (SSL) technology.

Where any functionality of our website is clearly designed to make information public (e.g. a public forum), any information you provide in relation to that forum or other functionality, which is provided in such circumstances where it is clear that it is intended to be published, will be disclosed to the public accordingly. We may supply customer personal data to a government authority or regulator where required to comply with a legal requirement, for the administration of justice or where reasonably required to protect your vital interests.

6. MARKETING AND OPT-OUT PROVISION

We may use your contact information to send you alerts (by email or other method) for new products, features, enhancements, special offers, upgrade opportunities, contests, events of interest and marketing promotions. When you register for an account or submit an order, you will be given the option to opt-out of subscribing to our alerts.

We do not sell or otherwise pass your details to third parties for marketing purposes. Marketing communications you subscribe to will only be sent by Gemma Roe.

At all times, we will offer you the opportunity to unsubscribe out of any service or update to which you have subscribed, if you change your mind. Any email we send you will contain an easy automated unsubscribe link so that you can opt-out of that particular mailshot. Simply follow the indications in the email. Alternatively, you can change your email preferences or opt out of all emails by logging into

“My Account” page. 

7. WHY ARE WE ALLOWED TO HANDLE AND STORE YOUR PERSONAL DATA? 

There are number of legal bases which allow us to use your personal data. The following sets out more detailed explanations of the bases we rely on to collect and process your personal data:

1. Consent

If you visit our site and are not an existing customer, or if you fill in any in-store materials, such as prize-draw entries, we might ask for your consent to process your data, so that we can send you our special offers and news.

2. Contractual obligations

Our primary use of this basis is when you purchase our products. In this situation it is necessary for us to process your personal data in order to fullfill your order and send your goods to you.

3. Legal compliance

In some circumstances, we may be legally required to collect and process your data e.g. to pass it on to the police if criminal activity is suspected.

4. Legitimate Interest

It may be necessary to use your data to help us run our business. For example, to action any changes to your account that you request, or to personalise the services we provide - with the aim of improving your customer experience. We will only use your data in these instances, where doing so does not materially impact your rights, freedom or interests.

8. HOW LONG DO WE KEEP YOUR PERSONAL DATA FOR? 

We only keep your personal data for as long as we deem necessary for the purpose for which it was collected (subject to any legal requirements). Once it is no longer necessary, we will either delete the data, or anonymise it. The use of anonymised data helps us to optimise our customer service.

9. HOW YOU CAN ACCESS AND CHANGE YOUR PERSONAL INFORMATION ON WWW.GEMMAROE.CO.UK

If for any reason you are concerned that the personal information held by Gemma Roe is not correct, please visit the website and, after logging into the site using the “LOG IN” menu on the home page, your personal information will be made available for review and change in the “MY ACCOUNT” page. Only you or, upon your request, Gemma Roe customer service may access your personal data from our website. Information may be changed online within your “ACCOUNT DETAILS”, “ADDRESS BOOK”. You may also contact us by email and we will amend your personal details.

10. SQUARESPACE

Your data is stored through Squarspace’s data storage, databases and the general Squarespace application. Squarespace uses your customers’ personal information to block certain transactions that appear to be fraudulent through automated decision-making. The information Squarespace collects from you is governed by Squarespace’s privacy policy and other policies. (See: https://www.squarespace.com/privacy and https://www.squarespace.com/terms-of-service). According to such policies, 

Squarespace protects credit card information according to the Payment Card Industry Data Security Standard (PCI-DSS), a set of security requirements managed by the PCI Security Standards Council, which is a joint effort of the payment brands, including Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by merchants and service providers. However, no method of transmission over the internet, or method of electronic storage, is 100% secure. The description above is qualified in its entirety by the terms and conditions of Squarespace’s privacy policies, and you should review the policies posted on Squarespace’s site to be fully informed.

11. SAFEGUARDING YOUR PERSONALLY IDENTIFIABLE INFORMATION

We will take reasonable care to maintain appropriate safeguards to ensure the security, integrity and privacy of the information you have provided us with. When you place an order or access your account information, we use a Secure Socket Layer (SSL) encryption, which encrypts your information before it is sent to us to protect it from unauthorised use and we will only ever store the card type, the last four digits of the card used and the expiry date and such card details will never be shared with third parties and will only be used to process your order, using our payment partner’s safe payment platform systems. We take care to make our site secure and all credit or debit card transactions on this site are processed using a secure online payment gateway that encrypts your card details in a secure host environment.

12. YOUR LEGAL RIGHTS

We process your personal data in accordance with the United Kingdom Data Protection Act 1998 (the “Data Protection Act”), which governs personal data generally, including your rights. We also process customer personal data in accordance with the United Kingdom Privacy and Electronic Communications (EC Directive) Regulations 2003, which governs use of telephone numbers, fax numbers and email addresses for unsolicited direct marketing.

Under the Data Protection Act, you are entitled to ask us whether we are processing your customer data, to describe what customer personal data we are processing, to explain what purposes we use it for and the types of persons we disclose it to and to request a copy of your customer personal data. We may charge a fee, in an amount prescribed by law, for providing this information. This fee is £10 as at the date this Privacy Policy is published. The law does allow us, in certain cases, to refuse your request and we will advise you at the time if this is the case.

You have the right to ask us to stop using your customer personal data for any purpose that is causing you substantial damage or substantial distress, which is unwarranted. You have the right to ask us to stop using your customer personal data to carry out direct marketing to you, including sending you advertising or marketing material. You have the right to ask us to change, erase, block or modify any inaccuracies in your customer personal data.

The applicable laws are regulated by the Information Commissioner (www.ico.gov.uk) in the United Kingdom. You may have the right to claim compensation for damage you suffer. In addition to your rights above, it is open to you, if you have a complaint or concern, to seek assistance from such government regulator.

13. WHERE AND HOW TO ASK QUESTIONS OR FILE COMPLAINTS

If you require further information about our Privacy Policy, please go to the Frequently Asked Questions section of the website where frequently asked questions are answered. If you require more information please go to the “Contact” page of the website. You can also contact Gemma Roe customer service by email

14. LEGAL STATUS OF THIS PRIVACY POLICY

This Privacy Policy is not intended to and does not create or form part of any contract or create any contractual rights or amount to any representation to induce a contract. Your rights in relation to this Privacy Policy are limited to any non-contractual obligation of confidentiality we may owe you at law and any non-contractual rights you may have at law.

We may change this Privacy Policy from time to time without notice to you, including by publishing a new version on our website. You should check our website from time to time for updates to our Privacy Policy.