All telephone calls both inbound and out bound are recorded
- for quality monitoring and staff training.
- to ensure that Deyongs Ltd is complying with certain regulations
- The prevention or detection of crime or to protect national security
- To investigate the wrongful usage of telecommunications systems or to ensure the safe usage of them
SECTION 1 - WHAT DO WE DO WITH YOUR INFORMATION?
When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address.
When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system.
Email marketing (if applicable): With your permission, we may send you emails about our store, new products and other updates.
Transferring personal data to other organisations needs to take place with appropriate safeguards and you can be assured that we will only share the personal data that is needed for these organisations to be able to provide the right service or support us in doing so.
We may transfer your personal data to the following third parties:
Other companies within Deyongs Group of companies – including for credit assessment purposes, for fraud prevention purposes or for the provision of other products and services.
Customer service providers – our partners who work with us to administer your account and provide you with any help you may need.
Telephony providers – our partners who provide telephone services and functionality.
Delivery companies – our couriers, parcel firms and mail firms who deliver your goods or services and manage any returns on our behalf.
Repair companies – our partners who provide repair services for products.
Distributors and manufacturers of goods – our partners who fulfil orders and deliver products to you and manage any returns on our behalf.
Product service providers – our partners who provide retail or financial products and services including credit facilities, payment facilities, insurance or extended warranties.
Research service providers – our partners who work with us to provide research and data analysis services.
Marketing service providers – our partners who work with us to send you information about products, services and special offers that we or they believe are of interest to you.
Data pool facilitators – we may share and pool information (on an anonymous basis or otherwise) with other third party retailers or financial service providers. This may help up to improve our products and quality of service to all customers.
Debt collectors, tracing agencies, debt purchasers or organisations providing debt support – our partners who help us to recover debts, who purchase debts or who offer debt advice and support.
Regulators and other governmental agencies or law enforcement agencies.
Organisations who may be interested in purchasing our business or organisations who we may be interested in purchasing - we may sell parts of our business or acquire other businesses and your personal data may be shared with such third parties as part of this process.
We will only transfer your personal data to third parties who adhere to appropriate data security standards and controls. This may include transferring your personal data to third parties who become joint controllers of the data, including some organisations within the following categories:
Credit reference agencies and credit providers
Distributors of goods
Marketing service providers, such as Google or Facebook
Regulators and other governmental agencies or law enforcement agencies
Debt collectors, tracing agencies, debt purchasers or organisations providing debt support
For more information about third parties with whom we have joint controller status, please contact us at email@example.com.
From time to time we may need to transfer your personal data to other countries. Where this is the case, we will ensure that the transfer is subject to appropriate safeguards to protect your personal data and complies with applicable law which may include having standard contractual clauses in place with the third party. For further information on how data can be transferred to other countries, please find enclosed a link to the European Commission website: https://ec.europa.eu/info/law/law-topic/data-protection_en
SECTION 2 - CONSENT
How do you get my consent?
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that reason.
If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
How do I withdraw my consent?
If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at firstname.lastname@example.org or mailing us at:
Unit 3 Maxted Court Maxted Road Hemel Hempstead GB HP2 7BL
SECTION 3 - DISCLOSURE
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
SECTION 4 - SHOPIFY
Our store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall.
If you choose a direct payment gateway to complete your purchase, then Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
For more insight, you may also want to read Shopify’s Terms of Service (https://www.shopify.com/legal/terms) or Privacy Statement (https://www.shopify.com/legal/privacy).
SECTION 5 - THIRD-PARTY SERVICES
In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.
When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
SECTION 6 - SECURITY
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
SECTION 7 - COOKIES
Here is a list of cookies that we use. We’ve listed them here so you that you can choose if you want to opt-out of cookies or not.
_session_id, unique token, sessional, Allows Shopify to store information about your session (referrer, landing page, etc).
_shopify_visit, no data held, Persistent for 30 minutes from the last visit, Used by our website provider’s internal stats tracker to record the number of visits
_shopify_uniq, no data held, expires midnight (relative to the visitor) of the next day, Counts the number of visits to a store by a single customer.
cart, unique token, persistent for 2 weeks, Stores information about the contents of your cart.
_secure_session_id, unique token, sessional
storefront_digest, unique token, indefinite If the shop has a password, this is used to determine if the current visitor has access.
SECTION 8 - AGE OF CONSENT
By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.
If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.
SECTION 10 YOUR RIGHTS
You have certain rights in respect of your personal data and we have processes to enable you to exercise these rights.
Right of Access
This is known as a Subject Access Request. If you want to know if we are processing personal data relating to you and to have access to any such personal data you can call our Customer Services Team email@example.com for details.
Right to Rectification
If you believe that we hold inaccurate personal data about you, then you can update this information directly by logging in to My Account and updating the relevant details.
Alternatively, you can request that we carry out a review and rectify any incomplete or inaccurate personal data we hold about you by calling our Customer Services Team, firstname.lastname@example.org for details. Depending on the type of personal data you believe is inaccurate, we may ask you for further proof to ensure that the personal data is being corrected properly. If we are satisfied that the personal data is inaccurate we will make the necessary changes.
Right to Erasure
You have a right to ask for your personal data to be erased. However, we are not required to erase your data where we need your personal data to comply with a legal obligation or for the establishment, exercise or defence of legal claims. Therefore we cannot comply with an erasure request where you have a retail shopping account, owe money on a credit facility or have otherwise bought products and services for which we must keep records. In addition, if you opt out of marketing communications or have previously opted out of marketing communications, we have to keep a record or such opt out to ensure that we don’t contact you in the future.
Right to Restriction
You have a right to request that processing of personal data is restricted in certain circumstances. Where we restrict your data, we are permitted to store your data but we cannot process in any other way apart from for the establishment, exercise or defence of legal claims or with your consent.
Right to Object
Where we are relying on legitimate interests as a legal basis to process your data, you have a right to object to such processing on grounds relating to your particular situation.
If you object to our use of your personal data for direct marketing purposes, we will opt you out of direct marketing. You can do this by logging into My Account and amending your preferences or you can call our Customer Services Team or email@example.com for details.
You may also object to other processing when we rely on our legitimate interests as the basis for processing, but we do not have to stop the processing if we can demonstrate compelling legitimate grounds for the processing (taking into account our processing activities, the nature of our business and our legitimate interests) and that these grounds override your interests, rights and freedoms or in the event that we need the personal data for the establishment, exercise or defence of legal claims. To enable us to consider any objection we will need to know what specific interests, rights or freedoms relating to your particular situation you believe will potentially be put at risk by our processing. If we do stop processing your personal data (apart from for direct marketing purposes), this may affect our ability to trade with you.
From time to time, in deciding whether to enter into a contract with you, or during the ongoing performance of a contract, we take decisions based on automated processing which produces legal affects or similarly significantly affects you, for example, deciding whether to offer a credit facility or assessing a fraud risk. We use data from a variety of sources in our automated processing for credit scoring and fraud decisioning and we use statistical methods to produce the results. This logic helps us understand the risk posed by individuals by placing a weighting on certain criteria which is then calculated to give an overall score.
There are a number of consequences of such automated processing:
we may open a credit account and you can purchase goods and services using this credit account
we may increase or decrease your credit limit from time to time
we may decide to offer you other credit terms such as buy now pay later or interest free credit which will facilitate your purchase of goods and services
we may refuse your application for credit or we may decide not to offer certain credit products which may have an impact on your ability to purchase goods and services from us. This is in line with our obligations as a responsible lender as we have to assess affordability for credit purposes and to protect customers from financial distress and difficulty
we may conduct a further review or request additional information from you in relation to your request to purchase goods and services if our fraud decisioning highlights any issues
We also use automated processing in relation to the information we hold about you to make recommendations of products and services we think you would be interested in and to improve your experience when you visit our website by making it relevant and tailored to you.
Right to Portability
In certain circumstances, you can request that we provide to you your personal data in a commonly used format. If you wish to make such a request you can call our Customer Services Team, or email firstname.lastname@example.org for details.
Right to Complain to the Information Commissioner’s Office
You have the right to lodge a complaint with the Information Commissioner's Office and more details can be found on their website www.ico.org.uk.
QUESTIONS AND CONTACT INFORMATION
If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information contact our Privacy Compliance Officer at email@example.com or by mail at
[Re: Privacy Compliance Officer]
Unit 3 Maxted Court Maxted Road Hemel Hempstead GB HP2 7BL