INFORMATION I COLLECT FROM YOU
In the course of your visits to my website or use of my products and services, I may obtain the following information about you: name, company name, email address, telephone number, credit card details, billing address, geographic location, IP address, survey responses, support queries, blog comments and social media handles (together ‘Personal Data’).
My services are not directed to persons under 18 and I do not knowingly collect Personal Data from anyone under 18. If I become aware that a child under 18 has provided me with Personal Data, I will delete that information as quickly as possible. If you are the parent or guardian of a child and you believe they have provided me with Personal Data without your consent, then please contact me.
You can review, correct, update or delete your Personal Data by contacting me directly to do so.
HOW I USE YOUR INFORMATION
Personally Identifiable Information: I use the information collected to deliver services to you, including: communicating with you, providing technical support, notifying you of updates and offers, sharing useful content, measuring customer satisfaction, diagnosing problems and providing you with a personalised website experience.
Marketing communications are only sent to you if you have requested or subscribed to them. You can opt out of Beasts & Blossoms marketing communications at any time by unsubscribing or emailing me and your request will be actioned as quickly as possible.
Non-Personally Identifiable Information: I also use the information collected in aggregated and anonymized forms to improve my services, including: administering my website, producing reports and analytics, advertising my products and services, identifying user demands and assisting in meeting customer needs generally.
Any information you choose to make publicly available, such as blog comments and testimonials on my website, will be available for others to see. If you subsequently remove this information, copies may remain viewable in cached and archived pages on other websites or if others have copied or saved the information.
STORAGE AND SECURITY OF YOUR INFORMATION
I will use all reasonable means to protect the confidentiality of your Personal Data while in my possession or control. All information I receive from you is stored and protected on secure servers from unauthorized use or access. Credit card information is encrypted before transmission and is not stored by me on my servers.
To enable me to deliver my services, I may transfer information that we collect about you, including Personal Data, across borders for storage and processing in countries other than Australia. If your Personal Data is transferred and processed outside Australia, it will only be transferred to countries that have adequate privacy protections.
I retain your personal information for as long as needed to provide services to you and as otherwise necessary to comply with my legal obligations, resolve disputes and enforce our agreements.
In the event there is a breach of our security and your Personal Data is compromised, I will promptly notify you in compliance with the applicable law.
COOKIES AND PIXELS
SHARING YOUR INFORMATION WITH THIRD PARTIES
I do not and will not sell or deal in Personal Data or any customer information.
DISCLOSURE OF YOUR INFORMATION
We may from time to time need to disclose certain information, which may include your Personal Data, to comply with a legal requirement, such as a law, regulation, court order, subpoena, warrant, in the course of a legal proceeding or in response to a law enforcement agency request. Also, we may use your Personal Data to protect the rights, property or safety of Beasts & Blossoms (www.beastsandblossoms.com), my customers or third parties.
If there is a change of control in my business (whether by merger, sale, transfer of assets or otherwise), customer information, which may include your Personal Data, could be transferred to a purchaser under a confidentiality agreement. I would only disclose your Personal Data in good faith and where required by any of the above circumstances.
LINKS TO OTHER WEBSITES
MY RESPONSIBILITIES UNDER GENERAL DATA PROTECTION REGULATION (GDPR)
If you are a resident of the EU or UK you have certain rights and protections under the GDPR regarding the processing of your Personal Data.
I collect, use and store your Personal Data to enable me to provide you with goods or services and information about them. I rely on the following lawful means of processing your Personal Data:
– Where it is necessary to fulfil a contract with you. This includes where I collect your Personal Data to enable me to send you goods or provide you with services.
– Where you have given me valid consent to use your Personal Data. I will rely on that consent and only use the Personal Data for the specific purpose for which you have given consent. This includes where I send email newsletters or mobile phone notifications.
– I may also process your Personal Data where it is to further Beasts & Blossoms’ legitimate interests which could include usage statistics, analytics and internal analysis so I can improve my services to you.
YOUR RIGHTS AS AN EU OR UK RESIDENT
If you are a resident of the EU or UK you have various rights including the:
– Right to be informed;
– Right of access;
– Right to rectification;
– Right to object;
– Right to restriction of processing;
– Right to erasure or to be forgotten;
– Right to data portability; and
– Right not to be subject to automated processing.
If you want to access your Personal Data or ask for the information to be corrected, please contact me. In some circumstances, you also have a right to object to or ask that I restrict certain processing activities or delete your Personal Data. If you would like to limit or request deletion of your Personal Data or exercise any other rights you can do so by contacting me.
WITHDRAWING YOUR CONSENT
You can withdraw your consent to collection or processing of your Personal Data. You can do so by contacting me or by opting out of email newsletter communications by following the instructions in those emails or by clicking unsubscribe. If you withdraw your consent to the use of your Personal Data, you may not have access to my services and I might not be able to provide you with my services. In some circumstances, where I have a legal basis to do so, I may continue to process your information after you have withdrawn consent. For example, if it is necessary to comply with an independent legal obligation or if it is necessary to do so to protect my legitimate interest in keeping my services secure.
MY COMPLIANCE WITH GDPR
I comply with the GDPR protection directives set out by the EU and UK regarding the collection, use and retention of Personal Data from EU member countries and the UK. All Personal Data stored on my platform is treated as confidential. It is stored securely and is only accessed by authorized personnel. My collection is limited in relation to what is necessary, for the purpose for which the Personal Data is processed, and kept only for so long as is necessary for the purpose for which the Personal Data was collected. I implement and maintain appropriate technical, security and organisational measures to protect Personal Data against unauthorized or unlawful processing or use, and against accidental loss, destruction, damage, theft or disclosure. I ensure the encryption and pseudonymisation of Personal Data and have adequate cyber security measures in place.
By providing me with your Personal Data, you consent to me disclosing it to third parties who reside outside the EU or UK. I will ensure that those third parties are GDPR compliant.
Last updated: 2 June 2018