Data is something we handle with care each day. It isn't something we talk about much, but it is a subject we take very seriously and have strong process in place to ensure your privacy is protected.
- We know it is a long document, so we wanted to make the key points super clear:
- We respect your privacy, and handle the data you give us carefully.
- We’ll only share some of that information with our shipping partners, to make sure your order arrives promptly and safely.
- We’ll delete the personal details of your transaction one year later.
- We are not in the data business we hold process data in order to provide our service.
- If you want to contact our Data Protection Officer, the quickest way is by email.
1.1. We are committed to safeguarding your privacy.
1.2. This policy applies where we are handling your personal data; in other words, where we determine how that personal data is processed.
1.3. In this policy, ‘we’, ‘us’ and ‘our’ refer to &Open. You can find more information about us in Section 9.
2. How we use your personal data
2.1 In this section we have set out:
(a) the types of personal data that we may process;
(b) the reasons why we may process personal data; and
(c) the legal basis of the processing.
2.2 We may process data about your use of our website (‘usage data’). We get this usage data from Google Analytics. We may use this data to analyse how our website and services are being used. The legal basis for this is to help us monitor and improve our website and services.
2.3 We may process your account data (‘account data’). This is data we get from you, and may include your name, email address, telephone number and address. Account data may be processed for the purposes of operating our website, providing our services, ensuring the security of our website and services, maintaining back-ups of our databases and communicating with you. The legal basis for this processing is to aid in the proper administration of our website and business.
2.4 We may process information relating to transactions, including digital vouchers, that you enter into with us and/or through our website (‘transaction data’). The transaction data may include your contact details, your card details and the transaction details. The transaction data may be processed for the purpose of supplying the purchased goods and services and keeping proper records of those transactions. The legal basis for this processing is the performance of a contract between you and us and/or taking steps, at your request, to enter into such a contract and our legitimate interests, namely our interest in the proper administration of our website and business.
2.5 We may process information that you provide to us for the purpose of subscribing to our email notifications and/or newsletters (‘notification data’). The notification data may be processed for the purposes of sending you the relevant notifications and/or newsletters. The legal basis for this processing is consent.
2.6 Please do not supply any other person's personal data to us, unless we prompt you to do so.
3. Providing your personal data to others
3.1 We may share your name, address and phone number with our shipping partners (and only with our shipping partners) in order to facilitate the safe and prompt delivery of your order.
4. International transfers of your personal data
4.1 In this section, we provide information about the circumstances in which your personal data may be transferred to countries outside the European Economic Area (EEA).
4.2 We may disclose your name and address to our shipping partners insofar as reasonably necessary to facilitate the fulfillment of an order that is being shipped to a location outside the EEA.
5. Retaining and deleting personal data
5.1 This section sets out our data retention policies and procedure, which are designed to help ensure that we comply with our legal obligations in relation to the retention and deletion of personal data.
5.2 Personal data that we process for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.
5.3 We will retain your personal data as follows:
(a) personal data will be retained for a maximum period of 1 years following your last order, before being deleted.
5.4 In some cases we may hold your personal data even if you have not placed an order. In such cases, we will hold your data as outlined in 5.3a.
6.1 We may update this policy from time to time by publishing a new version on our website.
6.2 You should check this page occasionally to ensure you are happy with any changes to this policy.
6.3 We may notify you of changes to this policy by email.
7. Your rights
7.1 You may instruct us to provide you with any personal information we hold about you; provision of such information will be subject to:
(a) the supply of appropriate evidence of your identity for this purpose, we will usually accept a photocopy of your passport certified by a solicitor plus a copy of a utility bill showing your current address.
7.3 You may instruct us at any time not to process your personal information for marketing purposes. We will provide you with an opportunity to opt out of the use of your personal information for marketing purposes.
8. About Cookies
8.1 A cookie is a file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server.
8.2 Cookies may be either ‘persistent’ cookies or ‘session’ cookies: a persistent cookie will be stored by a web browser and will remain valid until its set expiry date, unless deleted by the user before the expiry date; a session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed.
8.3 If you do not wish to have cookies on your system, you can set your browser preferences to disable them.
9. Our Details
9.1 Our website is owned and operated by And Open Gifts Ltd t/a &Open.
9.2 We are registered in Ireland under registration number 599378, and our registered office is at 13-15 St Clare’s Avenue, Harold’s Cross, Dublin 6W, D6W HH74.
9.3 You can contact us:
(a) by post, to the above address
(b) by telephone on +353 1 6638080
(c) by email at firstname.lastname@example.org
10. Data Protection Officer
10.1 You can contact our data protection officer using any of the details listed in Section 9.