Privacy Policy for UK Printed Pens
In very basic terms here at UK Printed Prints, we respect your personal information and will only ask you for what information we need from you. We will look after it in the same way we would want our personal information to keep it secure! We will only share it with others where we need their help us deliver our service to you or where we are obliged to for legal reasons. Be assured that we will never share your information in any other circumstances – nor will we sell it elsewhere! Here are more details –
INTRODUCTION
UK Printed Pens do take your privacy very seriously. This privacy policy was prepared in line with the EU’s General Data Protection Regulation (GDPR), which took effect on 25 May 2018. The GDPR promotes fairness and transparency for all individuals in respect of their personal data. This privacy policy applies to all data we process, and by using the UK Printed Pens website, you consent to our collection and use of such data. To get in touch about anything in this policy or your data, please contact us at info@ukprintedpens.co.uk.
DATA WE COLLECT
As a data controller, we collect a variety of data to deliver our services. We have provided further detail below about the specific types of data we collect and our reasons for doing so.
1.1. What data do we ask you to provide to us, and why?
We collect the following data: your first and last name, email, signup IP, email client, and timezone plus location-based information (address, postcode, latitude, longitude, gmtoff, dstoff, and country-code), as well as payment details if a purchase is made.
We use this data to deliver our services to our customers, personalise your experience, and market our services for security and authentication purposes.
Data is collected using the lawful basis of consent and/or for a contract’s performance or to take steps to enter into a contract.
1.2. What data do we collect when you visit our website, and why?
We collect cookies. Cookies are small pieces of data that websites send to a user’s computer and are stored on the user’s web browser. They are designed to enable the website to remember information, such as what a user might have put in a shopping cart, for example.
What personal data do we share with third parties, and who are they?
We share personal data with the following third parties to deliver our services or fulfil our obligations to you. In basic terms, these are by email, newsletter or payment service providers, website or hosting service providers, a social media service provider, or they assist with our accounts and record keeping. These are those companies: –
Gmail – Data is transferred outside of the European Economic Area to the United States under EU/US Privacy Shield protection.
FastMail – Data is transferred outside of the European Economic Area to Australia under the protection of Appropriate safeguards.
REPARC – Data is not transferred outside of the European Economic Area.
Facebook Ltd – Data is transferred outside of the European Economic Area to the United States under EU/US Privacy Shield protection.
There are certain situations in which we may share access to your data without your explicit consent, such as if required by law, to protect an individual’s life, or to comply with any valid legal process, government request, rule, or regulation.
Why do we share data outside of the EU?
We may transfer personal data to a country outside of the European Economic Area (EEA). For example, if a third party we share data with has servers located outside the EEA (such as Mailchimp, our Newsletter platform provider). If this is the case, we will obtain your consent or otherwise ensure that the transfer is legal and your data is secure by following the EU’s guidelines.
You can see above where we send data outside of the EEA and what basis we do so.
How do we keep your personal data secure?
We keep your data secure:
by following internal policies of best practice and training for staff,
our purchasing process is on an HTTPS connection and is secured by an SSL certificate. Our payment processing partner is PCI level 1 compliant (the highest level of PCI compliance you can get).
by having Back-Up provision by using a host which is Cyber Essentials Plus Certified
In the unlikely event of a criminal breach of our security, we will inform the relevant regulatory body within 72 hours. If your personal data were involved in the breach, we shall also notify you.
Changes to our privacy policy and control.
We may change this privacy policy from time to time. We will let you know by exchanging this policy’s date, notifying customers of only significant changes when we do. By continuing to access or use our services after those changes become effective, you agree to be bound by the revised privacy policy.
YOUR RIGHTS
- the right to be informed about the collection and use of your personal data
- the right of access to your personal data and any supplementary information
- the right to have any errors in your personal data rectified
- the right to have your personal data erased
- the right to block or suppressing the processing of your personal data
- the right to move, copy or transfer your personal data from one IT environment to another
- the right to object to the processing of your personal data in certain circumstances, and
- rights related to automated decision-making (i.e., where no humans are involved) and profiling (i.e., where certain personal data is processed to evaluate an individual).
We also give you the option to manage your data via:
Email: info@ukprintedpens.co.uk
Telephone: +44 751921 565
By writing to us – www.ukprintedpens.co.uk/contact
You can unsubscribe from Newsletters.
While we do not hold personal data any longer than we need to, the duration will depend on your relationship with us.
About us – We are UK Printed Pens & Products; you can contact us at info@ukprintedpens.co.uk.
UPDATED: 1st October 2020
