DATA PROTECTION POLICY
Policy reviewed by board on: 21/5/2018
Policy is operational from 25/5/2018
Aspire Furniture Ltd needs to gather and use certain information about individuals. This policy will cover all aspects of GDPR regulation and will ensure the company is compliant in all uses of data. Aspire Furniture Ltd acts as both a data controller, for our own retail business and a data processor for our drop ship customers. We use several sub processors. All of whom comply to Aspire Furniture Ltds data protection policy.
Types of Information We Collect
Aspire Furniture Ltd holds no information that is not necessary in the processing of orders. As such, Aspire Furniture Ltd holds only Contact information as per the below;
-Customer address and postcode
-Customer contact phone number
-Customer email address
Customer Financial Data
Aspire Furniture Ltd will sometimes action card payments in relation to a customers order. Aspire Furniture Ltd DOES NOT hold any card data. The payment is processed through either Lloyds Cardnet or Paypal who act as a data processors and merchant service providers. Any payment information goes straight into the merchant system and after a transaction is complete Aspire Furniture Ltd CANNOT access the financial data.
How We Use the Information We Collect
The data we collect will be used exclusively for the fulfillment of orders requested by the customer and will be held for the purposes of being able to fulfill the manufacturer’s warranty. The data will only be shared with the sub processors necessary for the fulfillment of the order, all of our sub processors have policies in place to ensure compliance with GDPR, or have signed up to our own policy.
The customer data we hold is not used in our marketing activity. Neither Aspire Furniture Ltd nor any sub processor will contact any customer except in the process of fulfilling orders or after sales service. Aspire Furniture DOES NOT use customer data for unsolicited correspondence.
Where We Store Information
How We Share Information with Third Parties
Your data will be shared with only trusted third parties We share data using G-Suite, either by email or by sharing private links to very specific folders in the cloud storage. Their GDPR compliance information is below. G-Suite have convinced us at Aspire Furniture Ltd that they are GDPR compliant and that our data is stored responsibly and securely.
Cross Boarder Transfers
Aspire Furniture Ltd does not transfer any customer data outside of the EEA.
Accessing and Changing Your Information
You can review or change the personal information we hold on you. Please email your request to firstname.lastname@example.org. We will get back in touch for you to confirm your identity and then provide you with all data held on you.
Aspire Furniture Ltd has appointed a data protection officer to be accountable for adherence to the data protection policy. The data protection officer can be contacted via the email@example.com, please mark the email for the attention of the data protection officer.
Cookies are an essential part of how our site works. Cookies are small text files that are stored on your PC, phone or other web enabled device. They are not harmful and do not contain any confidential information such as your home address, date of birth or credit card details.
Some of these cookies are required by our site to enable you to transact whilst other non-essential cookies enable us to give you an enhanced, personalised web experience and determine relevant products to show you.
All website design, text, graphics, photographs and the selection and arrangement thereof, and all source code and all other material on this website are copyright Aspire Furniture Limited its content providers, unless otherwise expressly indicated. All rights reserved. You are permitted to print or download extracts from this material for your personal use only. None of this material may be used for any commercial or public use.
If false or inaccurate information is provided and fraud is identified, details will be passed to fraud prevention agencies. Law enforcement agencies may access and use this information.