in it sets out how The Rustic Wedding House uses and protects any information that you give us when you use www.bespokesweetsandtreats.co.uk (the “Website”).
The Rustic Wedding House are committed to complying with the General Data Protection Regulation and the Data Protection Act 2018, once enacted. Looking after personal information you share with us is very important, and we want you you to be confident that your personal data is kept safely and securely and to understand how we use it offer you a better and more personalised service. We have published this notice to make you understand.
Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
At The Rustic Wedding House, we are committed to protecting and respecting your privacy.
This Policy explains when and why we collect personal information about people who visit our website, how we use it, the conditions under which we may disclose it to others and how we keep it secure.
We may change this Policy from time to time so please check this page occasionally to ensure that you are happy with any changes. By using our website, you are agreeing to be bound by this Policy.
Any questions regarding this Policy and our privacy practices should be sent by email to firstname.lastname@example.org or by writing to; Joanna Harmer The Rustic Wedding House 96 Yarmouth Road Lowestoft Suffolk NR32 4AQ
Who are we?
We are The Rustic Wedding House (formerly known as Bespoke Sweets and Treats), a Luxury Weddings and Events Specialist offering our professional services for private individuals and corporate clients.
Our key privacy principles
The Rustic Wedding House follows the following principles in order to protect your privacy:
1. we do not collect more personal data (i.e. information that can identify you) than is necessary;
2. we do not use your personal data for purposes other than those specified when you provided that data;
3. we do not keep your personal data if it is no longer needed; and
4. we do not send your personal data to third parties.
What personal data do we collect from you?
Whilst you can use our Website without giving out your personal data, once you contact us via our Website, Bespoke Sweets and Treats collects information about you, which may include:
Telephone numbers (including mobile)
Social media details (for example, twitter, Facebook, LinkedIn, Slack web addresses / contact details / profile links)
We may also collect technical information about you when you visit the Website. This information may include the Internet protocol (IP) address used to connect your computer to the Internet, your browser type and version, time zone setting, operating system and platform, and browser plug-in types and versions. Information about your visit(s) to the Websites may also be collected. The collected information is used to provide an overview of how people are accessing and using the Website. It is not used for any additional purpose, such as to profile those who access the Website.
We may use your information to:
Send you communications which you have requested and that may be of interest
to you. These may include quotations, updates on our activities, promotions of our goods and services,
To give you information that you request from us and to improve our services;
To notify you about changes to our services;
To allow us to operate the Website efficiently;
Any relevant troubleshooting, testing or statistical analysis as appropriate; and
to keep the Website secure.
Process orders that you have submitted;
Process information requests that you have submitted,
To accept online payment for services.
To carry out our obligations arising from any contracts entered into by you and us,
seek your views or comments on the services we provide, notify you of changes to our services,
All messages received via Social Media up until 24th May 2018 will be deleted, along with any personal data therein.
We review our retention periods for personal information on a regular basis. We are legally required to hold some types of information to fulfil our statutory obligations (for example tax records). We will hold your personal information on our systems only for as long as is necessary for the relevant activity, or as long as is set out in any relevant contract you hold with us. We will only keep your information for as long as reasonably required (up to a maximum of three years), or as stated in the contract you have with us.
We may, where we have obtained your express permission, also use the information collected to:
● provide you with information about our services that we offer via promotional emails;
● keep you up to date with features on the Websites;
Please note that we will be unable to process any orders for our services if you do not provide us with your name, address and contact details.
By using this service provided you are giving your consent to this data being used for this purpose.
How do we protect your personal data?
When we collect information about you, we also make sure that your information is protected from unauthorised access, loss, manipulation, falsification, destruction or unauthorised disclosure. This is done through appropriate technical measures.
However, you should be aware that providing information over the internet can never be guaranteed as being completely safe and if you choose to send such information to us via the internet, you do so at your own risk.
Data is stored on computer (password protected) and paper records (securely stored).
We use Social Media (Facebook and Instagram) to advertise our products and promote
Who has access to your information?
We will not give, sell or rent your information to third parties.
We will not share your information with third parties for marketing purposes.
Third Party Service Providers working on our behalf: We may pass your information to our third party service providers, agents subcontractors and other associated organisations for the purposes of completing tasks and providing services our behalf (for example to process payments). However, when we use third party service providers, we disclose only the personal information that is necessary to deliver the service and we have a contract in place that requires them to keep your information secure and not to use it for their own direct marketing purposes. Please be reassured that we will not release your information to third parties beyond The Rustic Wedding House, unless we are required to do so by law, for example, by a court order or for the purposes of prevention of fraud or other crime.
How can you access the personal data we have on you?
You have the right to request access to the personal information we have relating to you. You can do this by contacting us. We may make a small charge for information requests if we reasonably consider them to be excessive. In order to comply with your request, we may ask you to verify your identity.
We will fulfil your request by sending a copy of your personal data electronically unless the request expressly specifies a different method.
How can you correct or delete your personal data?
If you believe that the personal data we have about you is incorrect, you are welcome to contact us so we can update it and keep your data accurate. Any data that is no longer needed for the purposes specified will be deleted. If at any point you wish for us to delete information about you, you can simply email us.
We recommend that you print a copy of this page for your reference.
Withdrawal of Consent
You have the right to ask for all the information The Rustic Wedding House holds about you to be deleted and erased from our systems. To do this, please send us an email from the email account we have on record for you and we shall delete and erase all data we hold on you from our systems that we are legally able to do.
Transferring your information outside of Europe
All of the services offered to you through this website are all based within the European Union (“EU”).
If you use our services while you are outside the EU, your information may be transferred outside the EU in order to provide you with those services.
Our 3rd Party Data Processors
We may use third parties to process personal data on our behalf. These third parties have been carefully chosen and all of them comply with the legislation of the EU and UK. Where these third parties are based in the USA they are EU-U.S Privacy Shield compliant.
We will report any unlawful data breach of this website’s database or the database(s) of any of our third party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen.
When you give us personal information, we take steps to ensure that it’s treated securely.
When you are on a secure page, a lock icon will appear on the bottom of web browsers such as Microsoft Internet Explorer.
Non-sensitive details (your email address etc.) are transmitted normally over the Internet, and this can never be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, we cannot guarantee the security of any information you transmit to us, and you do so at your own risk. Once we receive your information, we make our best effort to ensure its security on our systems.
Use of 'cookies'
Links to other websites
In addition, if you linked to our website from a third party site, we cannot be responsible for the privacy policies and practices of the owners and operators of that third party site and recommend that you check the policy of that third party site.
We are particularly concerned to protect the privacy of children aged 18 or under and believe that our website content is suitable for all ages and is particularly important in data protection. We do not knowingly collect any Personal Data of anyone younger than 18 unless parental consent has been obtained prior to using our website. If you are under the age of 18 and we have not been provided with clear parental consent, then please do not use or access our website at any time. If we become aware of any personal data that has been gathered on a child who is under the age of 18 with parental consent, we will take the appropriate action to ensure it is removed from our system. If you as a parent/guardian discover that your child (under the age of 18) is using our website without your consent, please notify us and we will take the relevant action to ensure the personal data of the child is erased.