1.0 AGE REQUIREMENTS
We do not knowingly collect personal information from children under 16 years of age. If you are under 16 years old, please do not provide any personal information to us.
2.0 PERSONAL INFORMATION WE COLLECT AND WHY
2.1 Device Information
When you visit www.floxcreative.com we automatically collect certain information about your device, including information about your web browser, IP address, time zone, and some of the cookies that are installed on your device. Additionally, as you browse the Site, we collect information about the individual web pages or products that you view within the Site, what websites or search terms referred you to the Site, and information about how you interact with the Site. We refer to this automatically-collected information as “Device Information.”
We collect Device Information using the following technologies:
- “Cookies” are data files that are placed on your device or computer and often include an anonymous unique identifier. For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org.
- “Log files” track actions occurring on the Site, and collect data including your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.
- “Web beacons,” “tags,” and “pixels” are electronic files used to record information about how you browse the Site.
We use the Device Information that we collect to help us screen for potential risk and fraud (in particular, your IP address), and more generally to improve and optimize our Site (for example, by generating analytics about how our customers browse and interact with the Site, and to assess the success of our marketing and advertising campaigns).
2.2 Order Information
When you make a purchase or attempt to make a purchase through the Site, we collect certain information from you that you provide us with, including your name, billing address, shipping address, payment information (including credit card numbers), email address, and phone number. We refer to this information as “Order Information.”
We use the Order Information that we collect generally to fulfil any orders placed through the Site (including processing your payment information, arranging for shipping, and providing you with invoices and/or order confirmations). Additionally, we use this Order Information to:
- Communicate with you about an order;
- Screen our orders for potential risk or fraud; and
- When in line with the preferences you have shared with us, provide you with information or advertising relating to our products or services.
3.0 DATA RETENTION
When you place an order through the Site, we will maintain your Order Information for our records unless and until you ask us to delete this information. A record of your order will be held for 6 years + 1 for HMRC purposes.
4.0 OUR BLOG
Should you choose to leave a comment on our blog your name and email address (should you choose to provide it), your ip address and the time you published the comment will be stored on the Site’s database. This information is only used to identify you as a contributer to the comment section and is not passed on to any third party data processors. Should you wish to have your comment or personal information removed from the blog comments section please email us at firstname.lastname@example.org with the email you used to leave the comment. If you are under 16 years of age you must obtain parental permission before leaving a comment on our blog.
5.0 SHARING YOUR PERSONAL INFORMATION
5.1 We share your Personal Information with third parties as described above but only to the extent necessary to perform these services. For example, we use Shopify to power our online store--you can read more about how Shopify uses your Personal Information here: https://www.shopify.com/legal/privacy.
5.2 Like most websites, this site uses Google Analytics (GA) to track user interaction. We use this data to determine the number of people using our site, to better understand how they find and use our web pages and to see their journey through the website. Although GA records data such as your geographical location, device, internet browser and operating system, none of this information personally identifies you to us. GA also records your computer’s IP address which could be used to personally identify you but Google do not grant us access to this. User and even data retention is set to 24 months so we are able to compare information year on year and improve our business and the Site. You can read more about how Google uses your Personal Information here: https://www.google.com/intl/en/policies/privacy/. You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.
5.3 We may also share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.
5.5 Transfers of Personal Information Outside the EU
We may store and process your information through third-party hosting services in the US and other jurisdictions. As a result, I may transfer your personal information to a jurisdiction with different data protection and government surveillance laws than your jurisdiction. If I am deemed to transfer information about you outside of the EU, I rely on Privacy Shield as the legal basis for the transfer, as Google Cloud is Privacy Shield certified.
5.6 We use a number of third party apps to help with the functioning of our Site and to build our business. The apps used are outlined below with a link to their own privacy policies as well as what information is shared with each one. Personal information is only shared to the extent necessary to perform the services of the app. Any personal information collected by these third party apps can be removed upon request by emailing us at email@example.com
Free Popups & Banners - Pixelpop - This app does not have permission to collect or process any personal data from visitors or customers.
Straight to checkout by Globo Software
Globo related products by Globo Software
Certain anonymous technical information about your visit is automatically logged and collected by Globo. This may include information about the type of browser you use, operating system, the date and time you access the Service, the links you accessed while using the Service, and the internet address of the website, if any, which linked directly to the Globo Service. This information is used for system administration purposes such as diagnosing problems with Globo’s Services, servers and websites, compiling aggregated and statistical information, and to improve the operation and content of Globo’s websites and Services. It is not personally identifiable, and is not considered Personal Data and subject to their Privacy Statement.
You can view Globo's privcy policy here: https://globosoftware.net/privacy-policy/
Click & Drop by Royal Mail - This app will be able to access data such as customer names, e-mail addresses, phone numbers, physical addresses, geolocations, IP addresses, and browser user agents. This app is used to generate our shipping labels with Royal Mail so we can create and pay for the postage. All order disputes, draft orders, order fulfillments, shipping information and all order details are kept for the last 60 days.
Instafeed by n3f - This app does not have permission to collect or process any personal data from visitors or customers.
Facebook Messenger - Live Chat by Omega - has access to customers email addresses, phone numbers and locations
You can view Facebook Messenger - Live Chat by Omega's policy here: https://www.omegatheme.com/privacy-policy-app
6.0 BEHAVIOURAL ADVERTISING As described above, we may use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.
You can opt out of targeted advertising by: FACEBOOK - https://www.facebook.com/settings/?tab=ads GOOGLE - https://www.google.com/settings/ads/anonymous BING - https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads
Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: http://optout.aboutads.info/.
7.0 DO NOT TRACK
Please note that we do not alter our Site’s data collection and use practices when we see a Do Not Track signal from your browser.
8.0 YOUR RIGHTS
If you are a European resident, you have the right to access personal information we hold about you and to ask that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us through the contact information below.
Address: Flox Creative, Store First Barnsley, Ashroyd's Business Park, Barnsley, South Yorkshire, S74 9SB, United Kingdom
Additionally, if you are a European resident we note that we are processing your information in order to fulfill contracts we might have with you (for example if you make an order through the Site), or otherwise to pursue our legitimate business interests listed above. Additionally, please note that your information will be transferred outside of Europe, including to Canada and the United States.
9.0 THIRD PARTY LINKS
Third party links are featured on our website. These websites should have their own privacy policies which you should check. We do not accept any responsibility or liability for their policies whatsoever as we have no control over them.
10.0 PERSONAL DATA BREACHES
A personal data breach means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data. This includes breaches that are the result of both accidental and deliberate causes. We take your personal information very seriously. In the event of a data breach we will consider whether the breach will pose a risk to people and the likelihood and severity of any risk to people’s rights and freedoms. If the data breach is likely to be a risk the ICO will be notified within 72 hours of us being aware of the breach and individuals effected will be contacted immediately. All breaches will be documented even if they are not reported.
12.0 CONTACT US
For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact us by e-mail at firstname.lastname@example.org or by mail using the details provided below:
Flox Creative, Unit 3, High Croft, Hoyland, Barnsley, South Yorkshire, S74 8EA
This Policy was last updated: 30th June 2020