Last updated 20th July 2021
Thank you for choosing to be part of our community at Grace & Eden (“Company”, “we”, “us”, or “our”). We are committed to protecting your personal information and your right to privacy. If you have any questions or concerns about our Privacy Policy with regards to your personal information, please contact us at info@graceandeden.co.uk
When you visit our website https://graceandeden.co.uk (the “Site“), or make a purchase from Grace & Eden (the “Services“, which include the Site), we appreciate that you are trusting us with your personal information. This Privacy Policy explains what information is collected, used and shared when you visit or make a purchase from Grace & Eden. This applies to all related services also such as marketing or events.
1. WHAT PERSONAL INFORMATION DO WE COLLECT?
When you visit the Site, we collect personal information that you voluntarily provide to us, including information about our products and Services and information about how you interact with the Site.
The personal information that we collect depends on the context of your interactions with us and the Site, the products and features used. The personal information we collect include the following:
Personal Information Provided by You. Names; phone numbers; email addresses; shipping addresses; billing addresses; contact preferences; and other similar information.
Payment Data. Data linked to when a purchase is made or attempted through the Site such as credit card numbers and related purchase information. All payment data is stored by Stripe. You may find their privacy notice link(s) here: https://stripe.com/en-gb/privacy.
2. HOW DO WE USE YOUR INFORMATION?
We use the personal and order information collected via the Site to fulfil and manage orders placed through the Site including processing your payment, arranging shipping, providing invoices, order confirmation, coordinating returns, exchanges and refunds.
Information is used to facilitate communication with customers and marketing or promotional campaigns in relation to our products and services inline with marketing preferences indicated. Information may be used to develop and display personalised content and advertising tailored to your interests and to measure its effectiveness.
Information is also used to protect our Services including fraud screening, monitoring and preventing potential risk or harm. If we receive a subpoena or other legal request, we may need to inspect the data we hold to determine how to respond to prevent harm.
Further use of personal information may include:
To facilitate account creation and logon process. If you choose to link your account with us to a third-party account (such as your Google or Facebook account), we use the information you allowed us to collect from those third parties to facilitate account creation and logon process for the performance of the contract.
Request feedback. We may use your information to request feedback and to contact you about your use of our Site.
To manage user accounts. We may use your information for the purposes of managing our account and keeping it in working order.
To send administrative information to you. We may use your personal information to send you product, service and new feature information and/or information about changes to our terms, conditions, and policies.
To respond to user enquiries/offer support to users. We may use your information to respond to your enquiries and solve any potential issues you might have with the use of our Services.
For other business purposes. We may use your information for other business purposes, such as data analysis, identifying usage trends, determining the effectiveness of our promotional campaigns and to evaluate and improve our Site, products, marketing and your experience. We may use and store this information in aggregated and anonymized form so that it is not associated with individual end users and does not include personal information. We will not use identifiable personal information without your consent.
3. WILL YOUR INFORMATION BE SHARED WITH ANYONE?
We may share your personal information to comply with applicable laws and regulations. We may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process, such as in response to a court order or a subpoena (including in response to public authorities to meet national security or law enforcement requirements). Also where we believe it is necessary to investigate, prevent, or take action regarding potential violations of our policies, suspected fraud, situations involving potential threats to the safety of any person and illegal activities, or as evidence in litigation in which we are involved.
We share your personal information with third-parties who perform services for us or on our behalf and require access to such information. Examples include: payment processing, data analysis, email delivery, hosting services, customer service and marketing efforts. We may allow selected third parties to use tracking technology on the Site, which will enable them to collect data on our behalf about how you interact with our Site over time. This information may be used to, among other things, analyze and track data, determine the popularity of certain content, pages or features, and better understand online activity. We do not share, sell, rent or trade any of your information with third parties for their promotional purposes. We have contracts in place with our data processors, which are designed to help safegaurd your personal information. This means that they cannot do anything with your personal information unless we have instructed them to do it. They will also not share your personal information with any organization apart from us. They also commit to protect the data they hold on our behalf and to retain it for the period we instruct.
4. WHO WILL YOUR INFORMATION BE SHARED WITH?
We only share information with the following types of third parties;
-Invoice and Billing
-Web and Mobile Analytics
-Website Hosting
5. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?
We may use cookies and similar tracking technologies (like web beacons and pixels) to access or store information. Specific information about how we use such technologies and how you can refuse certain cookies is set out in our Cookie Notice.
6. HOW LONG DO WE KEEP YOUR INFORMATION?
We will only keep your personal information for as long as it is necessary for the purposes set out in this Privacy Policy, unless a longer retention period is required or permitted by law (such as tax, accounting or other legal requirements). No purpose in this Privacy Policy will require us keeping your personal information for longer than the period of time in which users have an account with us.
When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize such information, or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
7. HOW DO WE KEEP YOUR INFORMATION SAFE?
We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security, and improperly collect, access, steal, or modify your information. Although we will do our best to protect your personal information, transmission of personal information to and from our Site is at your own risk. You should only access the Site within a secure environment.
8. DO WE COLLECT INFORMATION FROM MINORS?
We do not knowingly solicit data from or market to children under 18 years of age. By using the Site, you represent that you are at least 18 or that you are the parent or guardian of such a minor and consent to such minor dependent’s use of the Site. If we learn that personal information from users less than 18 years of age has been collected, we will deactivate the account and take reasonable measures to promptly delete such data from our records. If you become aware of any data we may have collected from children under age 18, please contact us.
9. WHAT ARE YOUR PRIVACY RIGHTS?
In some regions (like the European Economic Area), you have certain rights under applicable data protection laws. These may include the right (i) to request access and obtain a copy of your personal information, (ii) to request rectification or erasure; (iii) to restrict the processing of your personal information; and (iv) if applicable, to data portability. In certain circumstances, you may also have the right to object to the processing of your personal information. To make such a request, please use the contact details provided below. We will consider and act upon any request in accordance with applicable data protection laws.
If we are relying on your consent to process your personal information, you have the right to withdraw your consent at any time. Please note however that this will not affect the lawfulness of the processing before its withdrawal, nor will it affect the processing of your personal information conducted in reliance on lawful processing grounds other than consent.
If you are resident in the European Economic Area and you believe we are unlawfully processing your personal information, you also have the right to complain to your local data protection supervisory authority. You can find their contact details here.
If you are resident in Switzerland, the contact details for the data protection authorities are available here.
If you have questions or comments about your privacy rights, you may email us at info@graceandeden.co.uk.
Account Information
If you would at any time like to review or change the information in your account or terminate your account, you can:
– Log in to your account settings and update your user account.
– Contact us using the contact information provided.
Upon your request to terminate your account, we will deactivate or delete your account and information from our active databases. However, we may retain some information in our files to prevent fraud, troubleshoot problems, assist with any investigations, enforce our Terms of Use and/or comply with applicable legal requirements.
Cookies and similar technologies: Most Web browsers are set to accept cookies by default. If you prefer, you can usually choose to set your browser to remove cookies and to reject cookies. If you choose to remove cookies or reject cookies, this could affect certain features or services of our Site. To opt-out of interest-based advertising by advertisers on our Site visit http://www.aboutads.info/choices/.
Opting out of email marketing: You can unsubscribe from our marketing email list at any time by clicking on the unsubscribe link in the emails that we send or by contacting us using the details provided below. You will then be removed from the marketing email list – however, we may still communicate with you, for example to send you service-related emails that are necessary for the administration and use of your account, to respond to service requests, or for other non-marketing purposes. To otherwise opt-out, you may:
– Access your account settings and update your preferences.
– Contact us using the contact information provided.
10. CONTROLS FOR DO-NOT-TRACK FEATURES
Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track (“DNT”) feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. At this stage, no uniform technology standard for recognizing and implementing DNT signals has been finalised. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this privacy notice.
11. DO WE MAKE UPDATES TO THIS NOTICE?
Yes, we will update this notice as necessary to stay compliant with relevant laws.
If we make material changes to this Privacy Policy, we may notify you either by prominently posting a notice of such changes or by directly sending you a notification. We encourage you to review this privacy notice frequently to be informed of how we are protecting your information.
12. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?
If you have questions or comments about this notice, you may email us at info@graceandeden.co.uk
13. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?
Based on the applicable laws of your country, you may have the right to request access to the personal information we collect from you, change that information, or delete it in some circumstances. To request to review, update, or delete your personal information, please visit: https://graceandeden.co.uk/contact/
We will respond to your request within 30 days.
