General Data Protection Regulation (GDPR) is a new European law to update the Data Protection Act 1998 to incorporate the digital world. Your customers need to be able to trust you to look after and use their personal data properly and safely. Knowing they can trust you is good for your business. The new law came into affect on May 25th 2018 and if you live in UK/Europe or sell to customers within these countries you are legally bound to adhere to the regulations. More information can be found on the Information Commissioners Office (ICO) website.
User privacy and data protection are human rights.
We have a duty of care to the people within our data.
Data is a liability, it should only be collected and processed when absolutely necessary.
We loathe spam as much as you do!
We will never sell, rent or otherwise distribute or make public your personal information.
When you place an order via my shop on KindShop.co.uk, I receive only the required information in order to process your order (your name, address and email). I do not receive any card or bank details.
The information you provide is used to fulfil your order on a ‘contract’ basis and is only used for the purpose of communicating with you regarding your purchase and for delivery of your items. Your personal information will not be added to my mailing list and you will not be contacted for marketing or advertising purposes unless you request me to do so.
We will NEVER sell or rent your personal data. To process your order and to fulfil your contract with us, your information is shared with third parties for the purpose of delivery (Royal Mail and courier services).
It may be shared for compliance with legal, regulatory and law enforcement requests as appropriate and necessary. I will endeavour to notify you of any such requests. I am not responsible for how these third parties process your data, please visit their websites to read their privacy policies.
We use Kind Shop website to trade and complete your purchase. Your data is secured, stored and retained by KindShop.co.uk to complete your purchase. We do not hold hard copies of your data and any data collected is held only as long as is necessary to carry out your order and to maintain adequate and accurate business and financial records (7 years).
You have the right to access, update or ask us to delete your personal information. Please email our Data Controller found in section 9.0 below. We are obliged by law to provide this service within 30 calendar days of your request free of charge. However, we have the right to refuse or charge for requests that are manifestly unfounded or excessive and repetitive.
We will report any unlawful data breach to any and all relevant persons and authorities within 72 hours of the breach, if it is apparent that personal data stored in an identifiable manner has been stolen. If you feel your data has been compromised you have a right to contact the Information Commissioners Office (ICO).
Disclaimer: Please note this pack has been compiled following extensive research into the rules regarding GDPR. However, please do your own research as contributors to this pack are not legally trained.