3. Protecting Information
3.1. In accordance with the Data Protection Laws, we adopt strict security measures to protect your Personal Data.
3.2. All Personal Data you provide to us is stored on our secure servers in the European Economic Area. We will not transfer your Personal Data outside the European Economic Area without your express consent. We also work to protect the security of your information during transmission by using Secure Sockets Layer (SSL) software, which encrypts information you input.
3.3. We reveal only the last five digits of your credit card numbers when confirming an order. Of course, we do however transmit the entire credit card number to the appropriate credit card company during order processing.
3.4. We maintain physical, electronic and procedural safeguards in connection with the collection, storage and disclosure of Personal Data. Our security procedures mean that we may occasionally request proof of identity before we disclose Personal Data to you.
3.5. It is important for you to protect against unauthorised access to your password and to your computer. Be sure to sign off when you finish using a shared computer. If you have any reason to believe that your password may have been accessed by a third party, please contact us as soon as possible and we will take steps to reset that password.
3.6. We will only retain your Personal Data as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting or reporting requirements. This will usually be for a period of seven years. To allow you to return to your account to reorder we keep account data for up to 10 years. If an account is inactive for more than 10 years it will be deleted. If you would like us to delete your account details prior to this date please contact us via our customer service teams or via the contact details set out in clause 6.1. below.
3.7. To determine the appropriate retention period for Personal Data, we consider the amount, nature, and sensitivity of the Personal Data, the potential risk of harm from unauthorised use or disclosure of your Personal Data, the purposes for which we process your Personal Data and whether we can achieve those purposes through other means, and the applicable legal requirements.
3.8. In some circumstances we may anonymise your Personal Data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
4. The Internet and Cookies
4.1. As stated above, we may occasionally email you about our services and products. We will, however, give you the opportunity to opt-out of that communication in each email. You can also always contact us using the details set out in clause 6.1.
4.2. Please remember that communications over the Internet, such as emails and webmails (messages sent through a website), are not secure unless they have been encrypted. Your communications may go through a number of countries before they are delivered – this is the nature of the Internet. We cannot accept responsibility for any unauthorised access or loss of Personal Data that is beyond our reasonable control.
4.3. We may from time to time use ‘cookies’ on the Website to monitor how people use the Website. This helps us to understand how our customers and potential customers use the Website so we can develop and improve the design, layout and function of the sites. A cookie is a piece of information that is stored on your computer’s hard drive through your browser, to recognise your browser and which records how you have used a website. This means that when you go back to that website, it can give you tailored options based on the information it has stored about your last visit.
4.4. If you do not want us to use cookies, you can set your browser to reject cookies or to tell you when a website tries to put a cookie on your computer. However, you may not be able to use some of the products or services on the Website without cookies. The ‘Help’ icon on the menu bar of most browsers will tell you how to prevent your browser from accepting cookies, how to have the browser notify you when you receive a cookie and how to disable cookies altogether. Additionally, you can disable or delete similar data used by browser add-ons, such as Flash cookies, by changing the add-ons settings or visiting the website of its manufacturer.
5. Links
5.1. The Website may include third-party advertising and links to other websites. We do not provide any Personal Data to these advertisers or third-party websites.
5.2. Third-party websites and advertisers, or Internet advertising companies working on their behalf, may also use technology to send (or “serve”) the advertisements that appear on the Website directly to your browser. They automatically receive your IP address when this happens. They may also use cookies, JavaScript, web beacons (also known as action tags or single-pixel gifs), and other technologies to measure the effectiveness of their ads and to personalise advertising content. We do not have access to or control over cookies or other features that they may use, and the information practices of these advertisers and third-party websites are not covered by this Privacy Policy. Please contact them directly for more information about their privacy practices. In addition, the Network Advertising Initiative offers useful information about Internet advertising companies (also called “ad networks” or “network advertisers”), including information about how to opt-out of their information collection. You can find out more information through the website https://www.networkadvertising.org/
5.3. We exclude all liability for loss that you may incur when using these third party websites.
6. Further Information
6.1. If you would like any more information or you have any comments about our Privacy Policy, please either write to us at Data Protection Officer, Unit 1 Brookfields Park, Manvers Way, Manvers, Rotherham, S63 5DR, email us at DPO@bluetreegroup.co.uk or telephone us at 0191 2727327.
6.2. We may amend this Privacy Policy from time to time, in which case we will publish the amended version on the Website. You confirm that we shall not be liable to you or any third party for any change to this Privacy Policy from time to time. It is your responsibility to also check the Website regularly to determine whether this Privacy Policy has changed.
6.3. You can ask us for a copy of this Privacy Policy and of any amended Privacy Policy by contacting us using the details set out in clause 6.1 above. This Privacy Policy applies to Personal Data we hold about individuals. It does not apply to information we hold about companies and other organisations.
6.4. We aim to keep the Personal Data we hold about you accurate and up to date. If you tell us that we are holding any inaccurate Personal Data about you, we will delete it or correct it promptly.
6.5. Please note that we may monitor and record communications with you (including phone conversations and emails) for quality assurance and compliance. You will be advised at the start of your phone conversations with us whether any recording is taking place and whether you are comfortable proceeding on that basis. If not, we will contact you by other means.
7. Your Rights
7.1. The Data Protection Laws give you the right to access information held about you. Your right of access can be exercised in accordance with the Act. An access request may be subject to an administrative fee to meet our costs in providing you with details of the information we hold about you. You additionally have the right to ask for your Personal Data to be deleted or to be moved to another provider. These are sometimes referred to the ‘Right to Erasure’ and the ‘Right to Data Portability’.
7.2. Please contact us using the details set out in clause 6.1 if you wish to exercise any of those rights and we will be happy to assist.
7.3. You also have the right to make a complaint to the Information Commissioner’s Office if you are unhappy about how we have dealt with your Personal Data. You can find the Information Commissioner’s Office’s website at https://ico.org.uk/