The policy sets out the different areas where user privacy is concerned and outlines the obligations & requirements of the users, the website and website owners. Furthermore the way this website processes, stores and protects user data and information will also be detailed within this policy.
This website and its owners take a proactive approach to user privacy and ensure the necessary steps are taken to protect the privacy of its users throughout their visiting experience. This website complies to all UK national laws and requirements for user privacy.
Cookies are small files saved to the user’s computers hard drive that track, save and store information about the user’s interactions and usage of the website. This allows the website, through its server to provide the users with a tailored experience within this website.
Users are advised that if they wish to deny the use and saving of cookies from this website on to their computers hard drive they should take necessary steps within their web browsers security settings to block all cookies from this website and its external serving vendors.
Other cookies may be stored to your computers hard drive by external vendors when this website uses referral programs, sponsored links or adverts. Such cookies are used for conversion and referral tracking and typically expire after 30 days, though some may take longer. No personal information is stored, saved or collected.
Contact & Communication
Users contacting this website and/or its owners do so at their own discretion and provide any such personal details requested at their own risk.
This website and its owners use any information submitted to provide you with further information about the products / services they offer or to assist you in answering any questions or queries you may have submitted. This includes using your details to subscribe you to any email newsletter program the website operates but only if this was made clear to you and your express permission was granted when submitting any form to email process. Or whereby you the consumer have previously purchased from or enquired about purchasing from the company a product or service that the email newsletter relates to. This is by no means an entire list of your user rights in regard to receiving email marketing material. Your details are not passed on to any third parties.
Your personal information is kept private and stored securely until a time it is no longer required. Processing of personal data will always be in accordance with regulations detailed in the General Data Protection Regulation (GDPR).
What is GDPR?
GDPR (General Data Protection Regulation) will replace the Data Protection Act 1998, which was brought into law as a way to implement the 1995 EU Data Protection Directive. GDPR seeks to give people more control over how organisations use their personal data, and to ensure that data protection law is almost identical across the EU. The GDPR deems that any data that can be used to identify an individual is classed as personal data. It includes genetic, mental, cultural, economic or social information. The GDPR also brings a new set of ‘digital rights’ for EU citizens to protect against the growing value of personal data in the digital economy. Organisation who fail to comply with GDPR regulations are subject to receive hefty penalties.
What counts as personal data under the GDPR?
The EU has expanded the definition of personal data to reflect the types of data organisations now collect about people, and online identifiers such as IP addresses now qualify as personal data. Other data such as economic, cultural or mental health information, are also considered personally identifiable information.
Pseudonymised personal data may also be subject to GDPR rules depending on how easy, or hard, it is to identify whose data it is. Anything that counted as personal data under the Data Protection Act also qualifies as personal data under the GDPR.
What about Brexit?
The UK is leaving the EU. Article 50, which sets in motion the act of leaving the EU within a two-year timeframe was trigged in March 2017. This means GDPR will take effect before the legal consequences of the Brexit vote, meaning the UK must still comply.
- You can ask for access to your data, and H R Higgins (Coffee-Man) Ltd must respond within one month.
- H R Higgins (Coffee-Man) Ltd must be transparent about how we collect data, what we do with the data, and how we process this data.
- You have the right to access any information we hold, know why that data is being processed, how long it’s stored for, and who gets to see it.
- If this data is incorrect or incomplete, you can ask for it to be rectified.
- You have the right to ask for all or any part of this data, to be deleted if it is no longer necessary to the purpose for which it was collected.
- Should you wish for this data to be transferred elsewhere, H R Higgins (Coffee-Man) Ltd must provide this information.
- You have the right to unsubscribe from our mailing list at anytime, and can do so through your account.
We do and will…
- Use your data to contact you with regards to orders placed with us online, by mail, or telephone.
- Use your data to provide product status updates.
- Use your data to provide information regarding new products and offers.
- Utilise robust and secure data processing procedures to protect your privacy.
We don’t and won’t ever…
- Sell your data to third parties.
- Store your data unnecessarily.
- Bombard you with unnecessary communications.
- Every effort has been made to ensure a safe and secure form to email submission process, but we advise users using such form to email processes that they do so at their own risk.