GDPR Privacy Policy

We understand that your privacy and the security of your personal information is extremely important. This notice sets out what we do with your personal information, what we do to keep it secure, from where and how we collect it, as well as your rights in relation to the personal information we hold about you.

This policy applies if you interact with us over the phone, by email, by using our website or on social media.

We may monitor and record communications with you, such as telephone communications and emails, for the purposes of quality assurance, training, fraud prevention and compliance.

When we say ‘we’ or ‘us’ in this policy, we’re referring to Interiors By Me and any parent or subsidiary companies which may exist from time to time.

WHAT INFORMATION DO WE COLLECT?

Information that you provide to us such as your name, email address, bank account and payment card details and any feedback you give to us, including by phone, email, post, or when you communicate with us via social media; and

Information about the services that we provide to you (including for example, the things we have provided to you, when and where, what you paid, and so on); and

Your contact details and details of the emails and other electronic communications you receive from us, including whether that communication has been opened and if you have clicked on any links within that communication; and

Technical information which is automatically collected by our website such as the IP address used to connect to the internet, time zone setting, URLs, clickstream to, through or from our site, page interaction information etc; and

Information from other sources such as specialist companies (like credit reference agencies and fraud prevention agencies, marketing and research companies), social media providers, as well as information that is publicly available.

Our website may contain links to other ‘non-Interiors By Me’ websites of interest. However, once you have used these links to leave our website, we do not have any control over that other website and we are not responsible for the protection and privacy of any information which you provide whilst visiting such websites.

LEGAL BASIS FOR PROCESSING INFORMATION

We need to process information in order to conduct our business and be able to provide you with our products or services. We will always consider whether or not those interests are overridden by the rights and freedoms of individuals.

In some cases, we need to process information to ensure that we are complying with our legal obligations, such as the prevention of fraud, or to establish, exercise or defend legal claims.

HOW DO WE USE YOUR PERSONAL INFORMATION?

We may use your information in the following ways:

To provide our products and services – we need to use your personal information to make our products and services available to you. If you decide to order any of our products or services then we’re delighted, thank you. After that, we need to provide them to you, process your payment and deliver the product or service.

Analytics and marketing – we may use your personal information for statistical analysis and to help us understand more about our customers. This helps us to serve you better and to find ways to improve our products and services.

Contacting you – we use your personal information to contact you.

WHO MIGHT WE SHARE YOUR PERSONAL INFORMATION WITH?

We work with partners, suppliers, and sub-contractors so that they can help us provide the products and services you require from us. We only share information with third parties that allows them to provide their services to us or to facilitate them providing their services to you.

We may share your personal information with other organisations and individuals in certain scenarios. For example:

If we’re discussing selling or transferring part or all of our business, we may share information about you to prospective purchasers and their advisers – but only so they can evaluate the relevant business; or

If we are reorganised or sold to another organisation, we may transfer information we hold about you to them so they can continue to provide the products or services to you; or

If we are required to by law, under any code of practice by which we are bound or where we are asked to do so by a public or regulatory authority such as the police or the Department for Work and Pensions; or

If we need to do so in order to exercise or protect our legal rights, users, systems and services; or

In response to requests from individuals (or their representatives) seeking to protect their rights or the rights of others. We will only share your personal information in response to requests which do not override your privacy interests. For example, we will not share your personal information with individuals who are merely curious about you, but we will share your personal information to e.g. insurers, solicitors who have a legitimate interest in your personal information.

We will not transfer your information outside the European Economic Area.

HOW DO WE PROTECT PERSONAL INFORMATION?

We take the security of your personal information seriously. We have internal policies and controls in place to ensure that your information is not lost, accidentally destroyed, misused or disclosed, and is not accessed except by our employees in the proper performance of their duties. Some of the controls we have in place are:

We limit physical access to our buildings and user access to our systems only to those who we believe are entitled to be there;

We use technology controls for our information systems, such as firewalls.

HOW LONG DO WE KEEP YOUR INFORMATION?

We will keep your personal information for the purposes set out in this privacy policy and in accordance with the law and relevant regulations. We will never retain your personal information for longer than is necessary.

YOUR RIGHTS

You have a number of rights under data protection legislation. You can:

access and obtain a copy of your information on request;

require us to change incorrect or incomplete information;

require us to delete or stop processing your information, for example where the information is no longer necessary for the purposes of processing;

object to the processing of your information where we are relying on our legitimate interests as the legal ground for processing; and

ask us to stop processing information for a period if it is inaccurate or there is a dispute about whether or not your interests override our legitimate grounds for processing information.

If you would like to exercise any of these rights, or have a question or complaint about this policy, please email info@intersiorsbyme.co.uk.

If you believe that we have not complied with your data protection rights, you can complain to the Information Commissioner.

GDPR PRIVACY POLICY CHANGE

This privacy policy was most recently updated in July 2020.