On the 25 May 2018, the UK’s Data Protection Act 1998 will be superseded by a new law called the EU General Data Protection Regulations (or GDPR as an abbreviation).
This law governs how we collect, use and share people’s information and provides more transparency and rights to individuals; as well as more control over how their information is handled by organisations, and businesses.
Honey&Rose takes data protection very seriously. In plain english, here is what we do with personal data you give us.
Information you give us, and how it is stored:
Any personal information you submit via the Honey&Rose online store is stored on a secure network that is password protected and this information is only used to process the order that you have placed. The Honey&Rose online store requests that you register your details (this is for payment security and so that we can get your order to you). The Honey&Rose online store will send an email confirming an order that you have placed. Honey&Rose does not store your payment details (eg card or PayPal details), these are sent directly from you to the bank/ PayPal and no payment card information is passed onto Honey&Rose other than the order has been paid.
When you subscribe to our mailing list you are giving Honey&Rose permission to send you email updates (up to four emails a year). Your email address is stored on a password protected device within a password protected program. Information you give Honey&Rose will not be used for any other purposes. We will never pass your email onto a third party.
Information we give you:
By subscribing to the Honey&Rose email list, you are allowing us to send Shout Outs (emails) up to four times a year (this will only relate to Honey&Rose products or events).
Honey&Rose will never email you requesting any personal information unless we have insufficient information (eg full address) for posting your order to you.
You can ask to have your personal details deleted from our Store Records and email mailing list (you can also unsubscribe through the emails sent to you- click on the unsubscribe button). You can ask for a copy of all your personal details and information that we hold on you and we will have 40 days to get the this information to you. This is a free service.
If you would like to know more about the GDPR and your rights, or if you have any questions about GDPR, you can contact the data protection regulator - the Information Commissioners Office (ICO) - on 0303 123 1113; or by using their live chat - https://ico.org.uk/global/contact-us/live-chat Alternatively, you can visit their Guide to the General Data Protection Regulation webpage: - https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/ .