Flowers Milton Keynes Privacy Policy

Privacy Policy Overview

This Privacy Policy outlines how Flowers Milton Keynes collects, uses, stores, and protects your personal information in compliance with the General Data Protection Regulation (GDPR). This policy applies to all individuals placing orders with Flowers Milton Keynes in Milton Keynes and surrounding districts. By engaging our services, you acknowledge and accept the practices described in this document.

What Personal Data We Collect

To provide and deliver your orders, Flowers Milton Keynes may collect the following categories of personal data:

• Contact Information: Including your full name, delivery address, billing address, and phone number.
• Order Details: Specifics regarding your floral order, custom notes/messages, and recipient’s name and delivery address.
• Payment Information: Limited data required to process payments (such as transaction ID or payment method type). We do not store full card or financial details.
• Communication Records: Correspondence you send us relating to enquiries, orders, or customer service.
• Technical Information: IP address, device type, and usage data collected via our website for security and improvement purposes.

We do not intentionally collect sensitive personal data (such as health, race, or biometric data).

Lawful Basis for Processing Your Data

Under the GDPR, we must have a lawful basis to process your data. Our processing activities are justified as follows:

• Contractual Necessity: Most data processing is required to fulfill our contract with you when you place an order, including payment, delivery, and customer service.
• Legal Obligation: We may process certain data for compliance with statutory requirements, such as tax and accounting regulations.
• Legitimate Interests: We process information for legitimate business purposes, such as improving our services, security, and fraud prevention, unless your rights override these interests.
• Consent: For direct marketing (such as newsletters or promotions), we will seek your explicit consent, which you may withdraw at any time.

How We Use Your Data

Your personal data may be used for the following purposes:

• Processing your order and fulfilling floral deliveries.
• Communicating with you about your order and responding to your enquiries.
• Arranging payment processing for your purchases.
• Maintaining accurate order and delivery records.
• Improving our website, services, and customer experiences.
• Marketing communications, where you have provided consent.
• Meeting legal and regulatory obligations.

How We Share and Store Your Data

Flowers Milton Keynes does not sell your personal data. Your information is shared only when necessary and as described below:

• Service Providers and Processors: We use trusted external service providers for payment processing, IT functions, and delivery logistics. These partners have been vetted and must comply with GDPR and our privacy standards. Examples include payment gateways and IT support.
• Legal Requirements: We may disclose your data when required by law or in response to valid requests by public authorities.

Your personal data is stored securely on our systems and by our trusted third-party processors. We maintain physical, technical, and organizational safeguards to prevent unauthorized access, disclosure, alteration, or destruction of your data.

International Data Transfers

Your data is processed within the United Kingdom and the European Economic Area (EEA) whenever possible. If it is necessary to transfer data outside these regions, we ensure appropriate safeguards are in place to protect your information, in accordance with GDPR requirements.

Data Retention

We retain your personal data only for as long as necessary for the purposes it was collected, including fulfilling our contractual and legal obligations. Typically, order and payment data is retained for a period necessary to comply with accounting and tax regulations, and to handle any after-sales queries or disputes. Where data is processed based on your consent, it will be deleted if you withdraw your consent. Upon expiry of the retention period, your data will be securely deleted or anonymised.

Your Rights Under GDPR

You have a number of rights regarding your personal information, including:

• Right of Access: Request a copy of the data we hold about you.
• Right to Rectification: Request correction of inaccurate or incomplete data.
• Right to Erasure (Right to be Forgotten): Ask us to delete your data under certain circumstances.
• Right to Restrict Processing: Request temporary suspension of processing your data.
• Right to Data Portability: Receive your personal data in a structured, machine-readable format.
• Right to Object: Object to certain processing activities, such as direct marketing.
• Right to Withdraw Consent: Withdraw your consent where processing is based on consent.

To exercise any of these rights, identification may be required. We will respond to valid requests within applicable statutory timeframes.

Children’s Privacy

Flowers Milton Keynes does not knowingly collect personal information from children under the age of 16. If we learn that we have collected such data, we will promptly delete it.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When changes are made, we will revise the updated date at the beginning of this policy. Please review this policy periodically to stay informed about how we protect your data.

Contact and Complaints

If you have questions or concerns about this Privacy Policy, our data practices, or wish to lodge a complaint, please contact us using our published contact methods. You also have the right to raise concerns with the Information Commissioner’s Office (ICO) if you are dissatisfied with our data handling practices.

Thank you for choosing Flowers Milton Keynes. We are committed to respecting and protecting your privacy at every step of your experience with us.