Overview
We take your privacy and security seriously and are 100% committed to protecting it. Our full privacy policy is documented below and will explain exactly what information we hold, why we hold it and how we will use it. We will use your personal data fairly, lawfully and in a transparent manner and in accordance with the Privacy and Electronic Communications Regulations (PECR) 2003 and the General Data Protection Regulation (GDPR) 2018 (the 'Data Protection Laws'). If you have any further questions please contact us.
Who we are
The company who is responsible for your data (the 'Data Controller') is detailed below:
Name: Saima Rashid T/A Eternal Arte
This privacy policy only relates to use of websites operated by Eternal Arte. If you leave this site through hyperlinks in the site content then please be aware that the linked sites will have their own privacy policy and terms & conditions.
Data that we collect from you
When visiting our site we collect certain information from you in order to personalise customer experience and for analytical reasons. Such information includes:
Site searches
Shopping preferences information
Internet protocol (IP) address
Full Uniform Resource Locators ("URL") clickstream to, through and from our site (including date and time)
Browser type and version
Data that we collect from you
When you make an order with us, we will ask you to provide us with certain personal information that is necessary to process your order. This information includes:
Name & Address
Email & Phone Number
Password (for your website account)
How we collect information
We have documented the main ways in which we collect this data below:
Collection Method Details
Website Platform While you are on our site, the platform will record certain information about the way you browse our pages. Should you wish to make an order or in other way engage with our website, the platform will collect any data you enter into the site.
Payment Gateway We use a secure payment gateway in order to collect payment details. Card details/payment account information is collected by an approved third party in order to further protect your security.
Customer Relationship Management (CRM) When you engage with our customer service agents, data will be collected and stored in our CRM system.
Cookies A cookie is a small text file which is downloaded and stored on your computer or mobile device by websites that you visit. It allows the website to recognise that user's device and store some information about the user's preferences or past actions. To view more information about the use of Cookies on our website please see our Cookie Policy.
Website Plugins We use analytics software on our website which records certain information about shopping preferences. An example of such software is Google Analytics.
How we use your information
We have documented the main ways in which we use your information and the legal basis for processing in each case below:
- Processing Orders
We process your personal information in order to fulfil our contract with you. Examples of such use will be order confirmation emails and telephone calls to update you on the status of your order. - Updating you on new products, services and promotions (marketing emails)
We will only contact you in this way with your consent. You can opt out of marketing communication at any point, either by clicking the link on any email, visiting the preference centre or by contacting us. - Other important contact points
In rare circumstances we may be required by law to contact you. An example of such a situation may be to provide an update of your personal data security, or to investigate fraud.
Sharing your information
In order to provide all our services we share your information with a small number third parties. All data processors that we work with are carefully selected and there is a contract in place with each external provider in order to protect your information. The main third parties that we work with are detailed below:
Your Rights
The Data Protection Laws afford you various rights including, but not limited to, accessing or requesting deletion of your personal data. We will take all necessary steps to enable you to act on your rights. If you have any specific requests please contact us.
As the Data Controller, we will only hold your personal data for a period deemed necessary by ourselves. Data outside this period will be de-personalised in order to further protect your privacy.
International Transfer of Data
Due to our involvement with multiple third parties who operate on a global basis, it is possible that some of your personal information may be transferred outside of UK, or outside the European Union. If this is the case, the contracts in place with these third parties will protect your personal data.
Complaints
If you have any concerns about how we use personal data, or are in any way unsatisfied with our privacy and security policy then please contact us.
You can also contact the Information Commissioner's Office at Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF (www.ico.org.uk).