data protection policy
DATA PROTECTION POLICY
Here at Gemma Roe, we take your privacy very seriously and do our best to adhere to the highest standards of data protection. Details of this are outlined in our Data Protection Policy which can be viewed below.
We aim to adhere to the General Data Protection Regulations (GDPR) which became enforceable on 25th May 2018. If you have any concerns about your privacy, don’t hesitate to get in touch.
1. WEBSITE FUNCTIONALITY COOKIES
These cookies enable you to browse the website and use our features such as shopping baskets and wish lists.
2. WEBSITE ANALYTICS COOKIES
We use these cookies to measure and analyse how our customers use the website. This allows us to continuously improve our website and your shopping experience.
3. CUSTOMER PREFERENCE COOKIES
When browsing or shopping online, the website will remember preferences you make (for example your user name, language or location). This makes your browsing experience simpler, easier and more personal to you.
By using our website you agree that we can place these types of cookies on your device and access them when you visit the site in the future.
If you want to delete any cookies that are already on your computer, please refer to the help and support area on your internet browser for instructions on how to locate the file or directory that stores cookies. Information on deleting or controlling cookies is available at www.aboutcookies.org. Please note that by deleting our cookies or disabling future cookies you may not be able to access certain areas or features of our site.
1. ABOUT US
You can contact us by email (open from Monday to Friday, 10am to 6pm GMT).
3. WHAT PERSONAL DATA DO WE OBTAIN PERSONAL DATA AND HOW DO WE USE THIS
Our online store is hosted on Squarespace Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you. Accordingly, when you submit personal information in connection with purchases made via the Site, such information is not collected by Gemma Roe but rather is sent directly to Squarespace. When you purchase something from our store, as part of the buying and selling process, Squarespace collects the following personal information: your first name, last name, company name, mailing address and billing address, phone number, email address, purchase information, gender and credit card payment information. We also may keep interactions with our Customer Services Team, or visits to our website. Please see Section 10 for more information on Squarespace’s policies.
We collect information in the following circumstances:
When you register to or use our website
When you allow social media sites to provide your data to us
When you enter any event, prize draws or competitions run by us
When completing any of our surveys or leaving us a review
When completing any forms for transactional, employment or other purposes
When you buy products or gift cards/vouchers
When you've given a third party permission to share with us the information they hold about you
The Site allows you to register with us for an account through the Create Account page on the Site. When you register for an account via the Site, you will be providing us with your first name, last name and email address. Such registration information enables us to make the purchase of products quicker and easier.
When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system, and your activity while using the Site. See Section – COOKIES, for information on technical information we collect as a result of your use of the Site and how we use such information.
In addition, the Site permits you to subscribe to our newsletter via the Subscribe page on the Site. With your permission, we may send you emails about our store, new products and other updates. In order to sign up to receive the newsletter, you need only provide us your email address. You may opt out of receiving our newsletter or other communications from us by following the opt-out link provided in any email received or by un-checking the applicable box on the Check Out page hosted by Squarespace.
The Site permits you to reach out to various Gemma Roe departments through email. Whenever you send us an email, you will be providing us with your email address and any information you choose to provide in the text of your message. For example, you may choose to provide your full name, mailing address or other information necessary or helpful for us to address your query or concern. Your personal information will be used to respond to your communications.
Gemma Roe collects personal information from you in several ways, such as when you place an order or send us any communication or submit any information through our site. We may also use your personal information to send you marketing updates but only ever in accordance with your preferences (as detailed in Paragraph 5 (Marketing and Opt-Out Provisions)). We may also use your personal data to manage and improve our business and site and to keep internal records and maintain reasonable archives, including anonymous statistical data about browsing actions and patterns, which does not identify any individual.
We may generate personal information ourselves, including in the course of providing you with any service or registration or operating our website or processing an order or performing a contract or in connection with the processing of any payment or arranging for any delivery, return or exchange. These details allow us to process your order and to let you know the status of your order.
In respect of any saved card details, we will only ever store the card type, the last four digits of the card used and the expiry date and such card details will never be shared with third parties and will only be used to process your order, using our payment partner’s safe payment platform systems. To help ensure that your shopping experience is safe, simple and secure, Gemma Roe uses Secure Socket Layer (SSL) technology.
4. WE USE YOUR PERSONAL DATE IN THE FOLLOWING WAYS:
To enable us to personalise your shopping experience on our sites.
To allow us to handle your orders, deliver products and process your payments and refunds (including to ensure secure payment and prevent fraud).
To respond to your questions, refund requests and complaints.
To keep a record of when and why you contact us and to keep your contact details up-to-date.
For statistical, analytical or survey purposes - so we can improve our websites and the services we offer you.
To enable third parties to carry out technical, logistical or other business functions on our behalf such as advertising on social media sites you might use and visit (our ability to do this will depend on the privacy settings you have on your social media accounts).
Where you are an existing customer (or you have otherwise given us your data) and have not opted out, or where you have consented, we use your data to send you information about our business and products we think you might like and to notify you of products or special offers that may be of interest to you.
To process your application when you enter a competition promotion or prize draw. (If there are other purposes specific to that competition promotion or prize draw, these will be explained in the applicable competition terms & conditions).
In order to help us manage our customer relationships, we use third party platforms. These platforms assist us to do lots of things, including: conduct email marketing campaigns, advertise online, undertake customer analytics, plan and put on events, fulfill orders, make deliveries, returns and refunds etc. We therefore pass on your personal data to these third parties, on the condition that they agree to handle your information in line with this notice.
5. WHO WE SHARE YOUR PERSONAL INFORMATION WITH
We do not sell your details to third party marketing companies. We may obtain and disclose personal data to third parties (including intermediaries) as necessary to process any order or provide any service to you, including carrying out any checks, processing or recovery of any payment, carrying out delivery of any goods or exchanges or collection of any returns, to enforce or administer any contract or deal with any claims.
Saved card details will never be shared with third parties (other than for the purpose of processing a payment to us) and will only be used to process your order, using our payment partner’s systems. To help ensure that your shopping experience is safe, simple and secure, Gemma Roe uses Secure Socket Layer (SSL) technology.
Where any functionality of our website is clearly designed to make information public (e.g. a public forum), any information you provide in relation to that forum or other functionality, which is provided in such circumstances where it is clear that it is intended to be published, will be disclosed to the public accordingly. We may supply customer personal data to a government authority or regulator where required to comply with a legal requirement, for the administration of justice or where reasonably required to protect your vital interests.
6. MARKETING AND OPT-OUT PROVISION
We may use your contact information to send you alerts (by email or other method) for new products, features, enhancements, special offers, upgrade opportunities, contests, events of interest and marketing promotions. When you register for an account or submit an order, you will be given the option to opt-out of subscribing to our alerts.
We do not sell or otherwise pass your details to third parties for marketing purposes. Marketing communications you subscribe to will only be sent by Gemma Roe.
At all times, we will offer you the opportunity to unsubscribe out of any service or update to which you have subscribed, if you change your mind. Any email we send you will contain an easy automated unsubscribe link so that you can opt-out of that particular mailshot. Simply follow the indications in the email. Alternatively, you can change your email preferences or opt out of all emails by logging into
“My Account” page.
7. WHY ARE WE ALLOWED TO HANDLE AND STORE YOUR PERSONAL DATA?
There are number of legal bases which allow us to use your personal data. The following sets out more detailed explanations of the bases we rely on to collect and process your personal data:
If you visit our site and are not an existing customer, or if you fill in any in-store materials, such as prize-draw entries, we might ask for your consent to process your data, so that we can send you our special offers and news.
2. Contractual obligations
Our primary use of this basis is when you purchase our products. In this situation it is necessary for us to process your personal data in order to fullfill your order and send your goods to you.
3. Legal compliance
In some circumstances, we may be legally required to collect and process your data e.g. to pass it on to the police if criminal activity is suspected.
4. Legitimate Interest
It may be necessary to use your data to help us run our business. For example, to action any changes to your account that you request, or to personalise the services we provide - with the aim of improving your customer experience. We will only use your data in these instances, where doing so does not materially impact your rights, freedom or interests.
8. HOW LONG DO WE KEEP YOUR PERSONAL DATA FOR?
We only keep your personal data for as long as we deem necessary for the purpose for which it was collected (subject to any legal requirements). Once it is no longer necessary, we will either delete the data, or anonymise it. The use of anonymised data helps us to optimise our customer service.
9. HOW YOU CAN ACCESS AND CHANGE YOUR PERSONAL INFORMATION ON WWW.GEMMAROE.CO.UK
If for any reason you are concerned that the personal information held by Gemma Roe is not correct, please visit the website and, after logging into the site using the “LOG IN” menu on the home page, your personal information will be made available for review and change in the “MY ACCOUNT” page. Only you or, upon your request, Gemma Roe customer service may access your personal data from our website. Information may be changed online within your “ACCOUNT DETAILS”, “ADDRESS BOOK”. You may also contact us by email and we will amend your personal details.
Squarespace protects credit card information according to the Payment Card Industry Data Security Standard (PCI-DSS), a set of security requirements managed by the PCI Security Standards Council, which is a joint effort of the payment brands, including Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by merchants and service providers. However, no method of transmission over the internet, or method of electronic storage, is 100% secure. The description above is qualified in its entirety by the terms and conditions of Squarespace’s privacy policies, and you should review the policies posted on Squarespace’s site to be fully informed.
11. SAFEGUARDING YOUR PERSONALLY IDENTIFIABLE INFORMATION
We will take reasonable care to maintain appropriate safeguards to ensure the security, integrity and privacy of the information you have provided us with. When you place an order or access your account information, we use a Secure Socket Layer (SSL) encryption, which encrypts your information before it is sent to us to protect it from unauthorised use and we will only ever store the card type, the last four digits of the card used and the expiry date and such card details will never be shared with third parties and will only be used to process your order, using our payment partner’s safe payment platform systems. We take care to make our site secure and all credit or debit card transactions on this site are processed using a secure online payment gateway that encrypts your card details in a secure host environment.
12. YOUR LEGAL RIGHTS
We process your personal data in accordance with the United Kingdom Data Protection Act 1998 (the “Data Protection Act”), which governs personal data generally, including your rights. We also process customer personal data in accordance with the United Kingdom Privacy and Electronic Communications (EC Directive) Regulations 2003, which governs use of telephone numbers, fax numbers and email addresses for unsolicited direct marketing.
You have the right to ask us to stop using your customer personal data for any purpose that is causing you substantial damage or substantial distress, which is unwarranted. You have the right to ask us to stop using your customer personal data to carry out direct marketing to you, including sending you advertising or marketing material. You have the right to ask us to change, erase, block or modify any inaccuracies in your customer personal data.
The applicable laws are regulated by the Information Commissioner (www.ico.gov.uk) in the United Kingdom. You may have the right to claim compensation for damage you suffer. In addition to your rights above, it is open to you, if you have a complaint or concern, to seek assistance from such government regulator.
13. WHERE AND HOW TO ASK QUESTIONS OR FILE COMPLAINTS