*** Please see important information about cookies and cookie control ***
Who We Are
What Is The Purpose of This Policy?
To let our customers and website visitors know the following:
- What personal data we collect when you visit our website
- How we use your personal data
- How we make sure your privacy is maintained
- Your legal rights regarding data collection, storage and deletion
- What cookies are, what cookies we use and what options you have to allow or disallow cookies on our website
What Is Personal Data?
Personal data is anything that discloses your identity; that is unique to you.
For a more detailed breakdown of what constitutes personal data, please visit this page:https://eugdprcompliant.com
What Personal Data Do We Collect?
We collect personal data if you fill out a contact form, newsletter subscription form, or email us directly. Some plugins used on the site automatically collect data which is classified in the GDPR as ‘Personal Data’.
Personal Data – Contact Forms and Email
Personal data we collect from direct emails or from our contact forms includes the following:
- First Name
- Last Name
- Email Address
- Phone Number
Personal Data – Newsletter Mailing List
Personal data we collect for our newsletter may include the following:
- First Name
- Last Name
- Email Address
You can unsubscribe from our mailing list at any time by contacting our data protection officer, Rebecca Prior to request that you are removed from the mailing list.
Personal Data – Cookies, Analytics and Plugins
Some plugins such as social media plugins, performance plugins (e.g. caching engines), and Google Analytics collect data via automated methods.
The data collected by these plugins may include:
- Your IP address (An IP address is a number that can uniquely identify a specific computer or other network device on the internet).
- Browser type
- Search engine used (if applicable)
- System type (type of computer or device)
- The content and pages that you access on our website
- The frequency and duration of your visits to our website
- The “referring URL” (i.e., the page from which you navigated to our website)
- Cookie information
The GDPR states that IP addresses should be considered personal data as they enter the scope of ‘online identifiers’.
The information collected in this automated manner can be used to:
- Speed up performance and improve user experience
- Analyse your use of our website
- Allow users to like and share content on social media
- Analyse our website’s performance
How Do We Use Your Personal Data?
We use the information you give us to contact you directly about any genuine offers we have relating to our business or important news or information. Other data collected is used to analyse our website’s performance and improve your user experience.
Do We Share Your Data With Third Parties?
Technically some of what the GDPR classifies as personal data collected by us is shared with third parties in conjunction with our mailing list, website analytics and our website’s functionality.
Also, please see our note in Personal Data – Cookies, Analytics and Plugins about how IP addresses (classed by the GDPR as personal data) may be automatically collected and used by third party plugins on this website.
We do not share your details with third parties for any purpose other than to provide you with direct marketing from us, to understand how you are using our website and to improve your user experience.
We will never sell your data to any marketing companies.
Data Security – Protecting Your Privacy
We protect personal data with appropriate security.
All of our data stored on computers is protected by technical security such as firewalls, anti-virus software and passwords.
We understand the importance of data security and what procedures should be followed in case of a data security breach.
Our website has an SSL certificate and powerful security software to protect and secure your connection.
Our email clients are configured to use secure email connections.
Security Breaches – Our Security Procedure
Under GDPR law, if personal data has been put at risk we are required to report the breach to the Information Commissioners Office within 72 hours.
Certain types of data breach do not need to be reported if they are considered harmless and poses no risk to individual data.
If a breach is considered high-risk, we will inform all individuals who are impacted right away. We will do this via direct email or telephone depending on your contact preferences.
Your Legal Rights Regarding Data Collection, Storage and Deletion
The GDPR includes the following rights for individuals or ‘data subjects’:
- The right to be informed
- The right of access
- The right to rectification
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object
- The right not to be subject to automated decision-making including profiling
Requests for Amendments, Copies or Deletion
If you would like us to update or delete any details we hold about you, or would like a copy of your personal data, simply send a request via email to email@example.com
In accordance with the GDPR, any requests for amendments, deletion or copies of data will be fulfilled within 30 days (though usually much quicker).
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Links to Other Web Sites
Now that you have all the information you need to manage and delete cookies in your chosen browser, you can go forth and surf in the pleasure of knowing you have full control.
If you have any questions or concerns about your privacy or any of the settings on this website, please contact us at any time.
The Potting Shed