Osidge Florist Privacy Policy

Introduction

At Osidge Florist, we are committed to protecting the privacy and security of our customers’ personal information. This Privacy Policy explains what data we collect from individuals placing Osidge Florist orders within Osidge and surrounding districts, the legal grounds for processing your data, how we keep your data safe, who we share data with, and your privacy rights under the General Data Protection Regulation (GDPR).

Scope of this Policy

This Privacy Policy applies to all customers—whether ordering in person, by phone, or through our website—who place flower or related goods orders for delivery or collection in Osidge and the surrounding areas. By placing an order, you acknowledge that you have read and understood this policy.

What Personal Data We Collect

Osidge Florist collects and processes the following categories of personal data when you place an order or inquire about our services:

  • Contact Details: Your name, address, and telephone number for order fulfillment and delivery.
  • Recipient Information: The name, address, and contact details of the person receiving the flowers (if different from the customer).
  • Order Details: Details about your order, including requested delivery time, card messages, and product preferences.
  • Payment Information: Payment method details (note: Osidge Florist does not directly store full payment card numbers; payments are processed securely via our payment processors).
  • Correspondence: Any communications or feedback you provide to us, including complaints or compliments.
  • Technical Information: When you use our website, we may collect some technical information such as IP address, device identifiers, and browsing activity (see also our Cookie Policy).

Lawful Basis for Processing Your Data

Under GDPR, we must have a valid legal reason (lawful basis) for using personal information. Osidge Florist only processes personal data under the following lawful bases:

  • Contract: Your data is needed to process, fulfill, and deliver your orders, and provide customer support relating to your purchases.
  • Legal Obligation: We may process and retain necessary records to comply with tax, accounting, or other legal requirements.
  • Legitimate Interests: For purposes that are necessary for our business (for example, to respond to customer queries, improve our services, or prevent fraud) but do not override your rights and freedoms.
  • Consent: Where you have given explicit permission for a specific purpose (such as receiving marketing communications).

How We Use Your Data

Your personal information is used strictly as necessary to:

  • Process orders and payments.
  • Arrange deliveries as requested.
  • Maintain records of sales and orders.
  • Communicate order updates or resolve issues.
  • Comply with our legal and regulatory duties.
  • With your consent, send marketing relating to Osidge Florist (which you may opt out of at any time).

Data Retention

We retain your personal data only as long as necessary to fulfil the purpose for which it was collected, including for the purposes of legal or reporting requirements. Generally, order-related information is kept for up to 7 years to comply with accounting and audit obligations. Non-essential data, such as uploaded card messages or communications unrelated to orders, are securely deleted after a reasonable period. When your data is no longer needed, we ensure it is deleted or anonymized securely.

Data Processors and Sharing Your Information

Osidge Florist may share your data with trusted third-party processors where necessary to provide our service, including:

  • Payment processing companies to handle card payments securely.
  • IT and system support providers who maintain our order management systems.
  • Couriers or delivery partners to fulfill deliveries as instructed.

All data processors are contractually required to uphold your data protection rights and are only permitted to use information to perform services on our behalf. Your information is never sold or shared with unrelated third parties for their marketing purposes.

International Transfers

In most cases, your data is processed within the United Kingdom or European Economic Area (EEA). If we ever need to transfer information outside these regions, we will ensure appropriate safeguards are in place in line with GDPR requirements.

How We Protect Your Data

We are committed to ensuring your personal information is kept safe and secure at all times. We employ appropriate physical, technical, and organisational measures to safeguard your information from unauthorised access, disclosure, alteration, or destruction. Access to your information is strictly limited to staff and partners who need it to process your order or support your customer experience.

Your Rights Under GDPR

You have a number of important rights in relation to your personal data. These include:

  • The right to access – You can request details of the personal information we hold about you.
  • The right to rectification – You can request corrections to your data if it is inaccurate or incomplete.
  • The right to erasure – You can ask us to delete or remove your personal data where there is no compelling reason for us to keep it.
  • The right to restrict processing – You can request that we temporarily suspend the processing of your information if you contest its accuracy or our right to use it.
  • The right to object – You have the right to object to our use of your information, including for direct marketing purposes.
  • The right to data portability – You can request to have your information supplied to you or transferred to another data controller in a machine-readable format.
  • The right to withdraw consent – Where processing is based on your consent, you may withdraw this at any time.
  • The right to lodge a complaint – If you are unhappy with how we have handled your personal data, you may contact the supervisory authority.

Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal compliance. We encourage you to check this page regularly to stay informed of how Osidge Florist protects your information.

Contact and Further Information

If you wish to exercise any of your rights or have concerns about how your personal data is handled, please contact us through our usual customer service contact channels. We will respond promptly and comprehensively to any requests relating to your personal information.