1. What does this Privacy Policy cover?
At Postal Flowers, your privacy is very important to us and we want to assure you that we take the confidentiality and security of your personal data very seriously. Postal Flowers refers to a trading website operated by Floratech Ltd, a company registered in Ireland.
This privacy policy covers personal data collected by Postal Flowers through the consumer Websites at the domain names www.postalflowers.ie, as well as any of our consumer apps, mobile websites, and other related subdomain websites and services (collectively, the “Websites”). The term Websites also covers the collection of personal data through Postal Flowers direct mail or coupon campaigns, telephone sales or through social media channels.
Our privacy policy explains the following key topics listed below, as well as many other topics:
. What personal data we collect and how we collect it
. How we use the personal data we collect from you
. Our lawful basis for processing your personal data
Our goal is to keep this privacy policy up to date and, therefore, we recommend that you review this privacy policy periodically. At a minimum, we recommend reviewing this policy together with each new purchase you make with us. We will inform you of material changes to this privacy policy to the extent required by applicable laws.
2. What personal data do we collect?
We collect personal data from you whenever you interact with our Websites, including when you make purchases, when you browse our Websites, when you use our services or when you sign up to receive any of our services. When providing personal data to us through a form, we indicate which personal data is optional. Please note that, when collection of personal data is required or necessary either as needed for us to fulfil your order or based on legal obligation and you elect not to provide the personal data, we may not be able to accept or fulfil your order.
The types of personal data that we will collect, store, maintain or process includes the following. We provide further details regarding the use of the personal data below.
Personal data you provide when you purchase from us
Additional Personal Data provided through the “My Account” feature
Additional Personal Data obtained through contact with us
3. How we use the personal data we collect from you?
We will use your personal data for the following purposes:
To fulfil your order:
For customer care purposes:
NOTE: Please note that you will receive communications with respect to fulfilling your order or for customer care purposes even if you opt out of receiving marketing communications.
For marketing purposes:
For marketing through third parties:
If you use our Websites, then you may receive personalised advertisements of our products and services when browsing other Websites using the same computer or device you used to view our Websites. This marketing is enabled through the cookies collecting data of your online browsing behaviour. These cookies are operated either by Postal Flowers or by a third party and the advertisements are provided through a third party. Details of our third party providers are available further on in this policy document.
You can remove or disable cookies at any time, see our
.
For internal business purposes:
We will use any of the personal data collected to help us to understand how many people visit our Websites, how well the Websites are working and to consider any improvements we may need to make to the Websites to improve your online experience. It also helps us determine what products and services you are interested in and what you or other customers might wish to purchase from us in future.
More specifically, we may use your personal data for the following internal business purposes:
4. When may you opt out of marketing communications?
You have the right to opt out of receiving direct marketing communications at any time. We will address your opt out request as soon as possible, but no longer than one month from the date we receive your request.
You may opt out of marketing communications or change your preferences with respect to marketing communications by:
5. What is our Cookie Policy?
You are not required to accept cookies in order to make a purchase. For example, you may place an order through a direct mail or coupon campaign or through our customer call centre. However, by making a purchase through our Websites, you agree to our Cookie Policy, which includes more information about disabling cookies. See our Cookie Policy.
6. What can you do to protect your personal data?
We will never ask you to confirm any bank account or credit card details in writing or via email. If you receive an email or any other written communication claiming to be from us, asking you to provide this data, please ignore it and do not respond.
If you are using a computing device in a public location, you should always log out and close the website browser when you have finished your online session.
If you create an account with us, you must keep your password private and avoid using the same password for multiple online accounts. Any password created should be at least 8 characters long and must include at least one upper case letter, one lower case letter and one symbol. We recommend regularly changing your password, which you can do within your account.
8. Our lawful basis for processing personal data
Postal Flowers relies on different lawful basis for processing personal data. In some cases, more than one lawful basis may apply with respect to the same personal data.
Contract: We collect and process personal data in order to fulfil the order you place with us, and in accordance with our contract with you to fulfil your order. Such personal data includes the items detailed in Clause 3 under the title “To fulfil your order”.
Legitimate Interest: We collect and process personal data for our legitimate interests in fulfilling and processing your order, any customer care issues, to conduct research, to send email and direct marketing to you, handling legal claims, and for fraud identification and prevention checks. Such personal data includes the items detailed in Clause 3 under the title “For customer care purposes”, “For marketing purposes”, “For marketing through third parties” and “For internal business purposes”. With respect to any direct marketing we provide on the basis of a legitimate interest, you can unsubscribe as described in Clause 4.
Consent: In addition to the legitimate interests outlined above, we rely on the consent you have provided as the legal basis for our marketing communications. You can unsubscribe to the marketing communications as described in Clause 4. Please note that withdrawing your consent may not be sufficient to cease all communications or for us to delete your personal data since we may have another lawful basis or ongoing reason we need to keep personal data such as a new purchase or recordkeeping legal obligations. Please further note that if you make a purchase with us after you have withdrawn your consent, we may collect and use personal data in accordance with this privacy policy with respect to that purchase and you will be asked for consent for marketing communications again.
Legal Obligations: Postal Flowers is required to comply with applicable laws, rules and regulations as well as industry standards and orders by courts with jurisdiction over Postal Flowers. In doing so, we may collect and retain personal data. For example, Postal Flowers creates and maintains records of your orders to maintain the tax and accounting records required by applicable laws, and to share such records with the tax authorities as and when required.
9. When might we share your personal data with third parties?
We will share your personal data with certain third parties in order to fulfil and process your order, enable us to perform our contract to provide your purchase to you, provide our Websites and to provide you with marketing. The following is a list of types of third parties that may receive your personal data. Our third party providers are required to handle your personal data in accordance with appropriate data protection and security controls.
In addition to the reasons identified above, we may provide your personal data to third parties in the following circumstances:
Law Enforcement/Government Requests: We may be required by law to provide personal data to law enforcement, a government agency or in response to a search warrant, subpoena or other legally valid enquiry or order, or to an investigative body or civil litigant including emergency situations. We may also disclose personal data when we believe in good faith that disclosure is necessary to comply with relevant laws, for the establishment, exercise or defence of legal claims, to prevent and address fraud and other illegal activity, to prevent death or imminent bodily harm, or to protect or defend the rights, property or safety of our users, others and ourselves.
Business and Legal Purposes/Mergers and Acquisitions: There may be business or legal reasons to disclose personal data. As an example, we may transfer data we have about you to third parties in connection with an actual or potential merger, consolidation, acquisition, reincorporation, sale/divestiture, acquisition or other similar transaction involving all or part of our company or any affiliate, or as part of a corporate reorganisation or stock sale or other change in corporate control. If we undergo such a business transition, personal data may be one of the assets that may be shared or transferred as part of the business transition and used by such third party as though such third party were Postal Flowers .
10. How long do we keep your personal data?
We will only retain your personal data for the purposes set out in this policy and for as long as we have a legal or business requirement to do so. Different retention periods apply for different types of personal data, however, the longest we will normally hold any personal data is 5 years after the last contact with such person or purchase by such person. The time period for retention will depend on applicable laws, rules or regulations that we are required to follow, whether there is an ongoing request or query or other type of legal claim or dispute, the type of information we are holding and whether we are asked by you or a regulatory authority to keep the personal data.
11. When might we transfer your personal data abroad?
Your personal data may be sent outside the European Economic Area (EEA), as we share some personal data with certain third party providers for the purpose of: (a) fulfilling orders placed for national and international delivery by you, (b) customer care, and (c) as otherwise outlined above.
Consequently, personal data may be processed in what are considered “third countries”. It is important to understand that “third countries” are not automatically deemed by the European Commission to have adequate legal protections for personal data or individual data subject rights. We have implemented appropriate technical and organisational measures and adequate safeguards to protect personal data by entering into standard contractual clauses with data recipients in such “third countries”. We are committed to continuously developing and improving the measures we already have in place.
Some of the organisations that we share personal data with may process it overseas. If any disclosures of personal data mean that your personal data will be transferred outside the European Economic Area, we will only make that transfer if: (a) the country to which the personal data is to be transferred ensures an adequate level of protection for personal data; (b) we have put in place appropriate safeguards to protect your personal data, such as an appropriate contract; (c) the transfer is necessary for one of the reasons specified in Clause 8, such as fulfilment of an international order under the contract between us and you; or (d) you consent to the transfer.
12. Your rights to access your data and rectify any inaccuracies in your personal data
We fully respect that your personal data is owned by you and that you have certain rights with respect to the personal data. Our goal is to respect your rights. Please understand that we may have certain obligations to maintain personal data records despite your requests to exercise the following rights, such as for legal and accounting purposes. We ask that you read these rights carefully.
. Right of Access (also known as “Subject Access Request”): To receive a copy of the personal data we hold about you, please contact us, see the Contact Details section below. Please understand that you will need to provide a copy of two of the following separate pieces of identification:
. Right to Rectification: You may ask us to update and correct any out-of-date or incorrect personal data that we hold about you, or to complete incomplete personal data. In order to update your personal data, please visit your My Account
13. Your additional rights with respect to your personal data
You may have the following additional rights, detailed below:
Please note that if we erase all information about you and you make a future purchase or otherwise become a future customer, then we will not be aware of your prior requests or objections.
In respect of the additional rights outlined above, we request that you contact us via the Contact Details shown in Clause 14 below and we will provide you with additional information regarding your rights in connection with your specific request.
Right to Lodge a Complaint: You have the right to lodge a complaint with the supervisory authority. Postal Flowers supervisory authority is the Data Protection Office, see website for details.
14. Contact details
We have appointed a Data Protection Officer whose role is to inform and advise us about and to ensure that we remain compliant with data protection laws. The Data Protection Officer should be your first point of contact if you have any queries or concerns about personal data. Our Data Protection Officer can be contacted at:
Email: dataprotection@postalflowers.ie
Post:
Data Protection Officer
Customer Services
Floratech Ltd
6-9 Trinity Street
Dublin 2
15. Updates to this policy
Our goal is to keep this privacy policy up to date. Therefore, we recommend that you review this privacy policy periodically. At a minimum, we recommend reviewing this policy together with each new purchase you make with us. We will inform you of material changes to this privacy policy in accordance with the applicable law.
Cookie Policy
We may use technology to track the patterns of behaviour of registered and non-registered visitors to our site. This can include using a "cookie" which is a small file stored on your browser. The information collected in this way can be used to identify you unless you modify your browser to prevent this happening - guidance for which is set out below. We also aggregate this data to perform statistical analyses of the characteristics and behaviour of visitors to our Websites. Cookies are also used as a further means of ensuring private and secure purchase sessions are operated within the Websites.
We may use third party advertising companies to serve advertisements on our behalf. These companies may employ cookies and action tags (also known as single pixel gifs or web beacons) to measure advertising effectiveness. Any information that these third parties collect via cookies and action tags is completely anonymous. Your browser can be modified to not accept cookies - guidance for which is provided in the paragraph below.
You have the ability to accept or decline cookies by modifying the settings in your browser (for example, using Internet Explorer select 'internet options' from the 'tools' menu, then click 'security', followed by 'custom level' and select 'disable cookies'). However, you may not be able to use all the interactive features of our Websites if cookies are disabled. For more information about cookies, including how to set your internet browser to reject cookies, please go to www.allaboutcookies.org.