Florist Woodside Privacy Policy Overview

Introduction

This Privacy Policy describes how Florist Woodside collects, uses, protects, and manages your personal information when you place an order with us. It covers all customers making purchases in Woodside and its surrounding districts. Our commitment is to handle your data in compliance with the General Data Protection Regulation (GDPR) and all relevant data privacy laws.

Personal Data We Collect

When you place an order or interact with Florist Woodside, we may collect various types of personal data. The types of data collected include:

  • Contact Information: Name, delivery address, billing address, and phone number (for delivery and order updates).
  • Transactional Details: Order history, billing information (except card details, which are processed securely by payment processors), and details of products or services purchased.
  • Communication Data: Records of email or other communication with our team regarding orders, feedback, or enquiries.
  • Technical Information: IP address, browser type and version, device information, and website usage data (when you visit or use our website).

Lawful Basis for Processing

Under the GDPR, we are required to have a lawful basis for collecting and processing your personal data. Florist Woodside processes your data under the following lawful bases:

  • Contractual necessity: To process, fulfil, and deliver your order; handle payments; send order updates and delivery notifications.
  • Legitimate interests: To improve our products, services, website functionality, and customer experience; manage and protect our business operations.
  • Legal obligations: To comply with applicable laws, such as those relating to tax and accounting.
  • Consent: For optional marketing communications, we will only contact you if you have opted in for such updates. You can withdraw your consent at any time.

How We Use Your Personal Data

Florist Woodside only uses your personal information for purposes that are compatible with the original reason for collection. These purposes include:

  • Processing and fulfilling orders
  • Delivering flowers and gifts to your chosen address
  • Managing payments and refunds
  • Sending order confirmations, receipts, or delivery updates
  • Answering your queries and managing customer support
  • Improving our products and services
  • Complying with our legal and contractual obligations

Data Retention

We keep your personal data only for as long as necessary to fulfil the purposes for which it was collected, and to comply with legal, accounting, or reporting requirements. Specifically:

  • Order and transaction information is retained for up to 7 years to meet legal obligations for accounting and tax.
  • Customer communication records may be kept for up to 2 years after the last interaction for service and complaint handling.
  • Marketing consent is reviewed and refreshed every 3 years, or sooner if you request withdrawal.
  • Technical data (such as website logs) is typically kept for no more than 12 months, unless required for security, debugging, or legal purposes.

After the retention period ends, your personal data will be securely deleted or anonymized.

Third-Party Processors

In some cases, we may share your data with carefully selected and compliant third-party service providers who process data on our behalf, such as:

  • Payment service providers to securely process transactions
  • Delivery partners to enable prompt and accurate deliveries
  • IT support and website hosting providers to maintain the functionality and security of our website
  • Accounting or tax professionals as required by law

We ensure all data processors adhere to GDPR-compliant practices. Data is never sold or shared for unrelated commercial purposes.

Data Security

We are committed to safeguarding your personal data. Florist Woodside implements technical and organizational measures to prevent unauthorized access, disclosure, alteration, or destruction of your data. This includes secured servers, encrypted payment processing, role-based access controls, and regular staff training.

Your Rights Under GDPR

As a customer of Florist Woodside, you have the following rights with regard to your personal data:

  • Right to access: You can request a copy of your personal data held by us.
  • Right to rectification: You can request corrections to inaccurate or incomplete personal information.
  • Right to erasure: You can ask for your data to be deleted in certain circumstances (subject to legal obligations).
  • Right to restrict processing: You can request that we limit the way your data is used in certain situations.
  • Right to data portability: You may request to receive your data in a structured, commonly used, and machine-readable format.
  • Right to object: You can object to data processing based on our legitimate interests or direct marketing.
  • Right to withdraw consent: Where processing is based on consent, you may withdraw this at any time.

To exercise any of these rights or to make a privacy-related enquiry, please contact us using the details provided on our official website or in-store. We aim to respond to data rights requests within one calendar month.

Policy Updates

We may update this Privacy Policy from time to time to reflect changes in law, our services, or data practices. Current versions will always be available on our website and in our Woodside premises. We encourage you to review this policy regularly to stay informed about how we protect your data.

Contact Us

If you have any queries or concerns regarding this Privacy Policy or your personal data, please contact Florist Woodside directly via the details listed on our official website or by visiting our store in Woodside. Our team is happy to assist with all privacy-related matters.