Privacy & Cookies


Privacy Policy including GDPR compliance & cookies

 

Introduction

User privacy is critically important at Art Of Your Success. The business has been built by an individual, Sarah,the owner of Art Of Your Success, who just like you, wants our individual details and data protected, and so has worked to do this.

For this website http://aoys.wpengine.com I am responsible for your data as set out below. I refer to ‘we’ in this policy to cover any employees, agents, contractors and other third parties who may work with me with access to personal data, and who will be bound by this Privacy Policy.

This Privacy Policy will tell you how we look after your personal data when you visit this website and inform you of your privacy rights and how the law protects you.

The Cookies Policy is set out below, at the end of this Privacy Policy.

 

The data collected about you

Orders

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

The only personal data collected is that needed to run the business, such as your name and address details to send your order to, and your email to send you order updates.

This data is collected when you enter it yourself to make an order.

Email sign up

If you sign up for marketing emails, your name and email are used only for the purposes of sending you these emails. You have to confirm via your email that you are happy to receive these updates (known as ’double opt-in’).

Contact form

If you email Sarah through the contact form, the name and email address you supply are only used to reply to your query.

Comments & reviews

If you comment or leave a review, your IP address is used to check for spam. You choose how your name is displayed, and your email address is not public. If you use the Gravatar service, after your comment is approved, your Gravatar profile picture may be used. You can change that here: https://automattic.com/privacy/.

 

How your personal data is used

We will only use your personal data when the law allows me to. Most commonly, we will use your personal data in the following circumstances:

Where we need to perform the contract we are about to enter into or have entered into with you.

Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.

Where we need to comply with a legal or regulatory obligation.

You will not be sent any marketing emails by Art Of Your Success unless you have expressly signed up and double opted-in to receive these.

 

Data retention – how long is data stored for?

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. This is generally 7 years in the UK, unless the law prescribes a longer period.

In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.

 

Third Parties

We engage trusted third parties to perform functions and provide services to this website. We will only share your information with these third parties to the extent necessary to perform these services. For example, for a delivery or fulfilment company to send an order to you.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law and they may only use your data for the purposes we specify in our contract with them. We will always work with them to protect your privacy.

We do not store or process your payment details, they are processed and stored via one of our third party service providers who are expert in keeping these details secure.

Third party links

This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave this website, we encourage you to read the Privacy Policy of every website you visit.

 

International transfer of data

Some of our External Third Parties are based outside the European Economic Area (EEA) so their processing of your personal data will involve a transfer of data outside the EEA.

Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

  • we will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
  • where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe.
  • where we use providers based in the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to personal data shared between the Europe and the US.

 

Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. We use HTTPS and encrypt all traffic over Secure Socket Layer (“SSL”). Our other security features include firewalls to protect against attacks and regular monitoring and removal of any malware and vulnerabilities.

In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

You acknowledge that the Internet is not a completely secure medium for communication and, accordingly, we cannot guarantee the security of any information you send to us (or we send to you) via the Internet. We are not responsible for any damages which you, or others, may suffer as a result of the loss of confidentiality of such information.

 

How to get in contact / change your information

You can request to see, update and / or remove your data at any time by contacting Sarah Dudgeon, the owner of ArtOfYourSuccess at Art Of Your Success or through the customer contact form.

If you no longer wish to receive emails from Art Of Your Success, you can unsubscribe here

No fee usually required
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.

What we may need from you
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.

Time limit to respond
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.

 

Cookies

Cookies are small files saved to your computer’s hard drive that track, save and store information about the your interactions and usage of the website. This allows the website, through its server to provide you with a tailored experience within this website.

If you don’t want cookies saved from this website onto your computer’s hard drive, you need to change the security settings in your web browser to block all cookies from this website.

Analytics

This website uses tracking software to monitor its visitors to better understand how they use it. This software is provided by Google Analytics which uses cookies to track visitor usage. The software will save a cookie to your computer’s hard drive in order to track and monitor your engagement and usage of the website, but no personal information is stored, saved or collected. It is all anonymised.

Account cookies

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.