Owl and Brolly
General Data Protection Regulation (GDPR) Policy.
1.1 What data does Owl and Brolly collect?
When an order is placed via our Facebook or Instagram pages, or our website we ask for the following information in order to provide you with an invoice to process your purchase and send your goods to you:
- Full Name
- Email Address
- Customisation Name (if applicable to your purchase)
How do I collect this data?
There are two ways Owl and Brolly collects this data:
Email addresses are supplied to Owl and Brolly via Facebook messenger which enables me to send you a PayPal invoice.
Orders placed directly on our secure WordPress website (https://www.owlandbrolly.com) have a direct checkout with Woo Commerce/Paypal.
This information is then stored on my PayPal and WordPress account, to enable me to send your parcel to the correct address. I will also receive an email from PayPal or the WordPress account confirming your purchase and the address you have requested I send it to.
The only details of your data I see are your name, address and email details that you have entered onto your PayPal account. I have no access to your banking details. All payments are handled through WooCommerce / PayPal’s secure encrypted payment system.
Why do I collect this data?
Email addresses are required to enable me to send your invoice for payment. Full names and addresses are required to enable me to send your purchase to you.
Personalised names are needed to create selected products
Do I share this data?
I share your Full Name & Delivery Address with the delivery company Royal Mail. This is so your purchase can be delivered to you.
If you have opted in to receive my newsletter, I share your name and email address with the autoresponder service, Mailchimp .
Your data is not shared with, or sold to, any other person or organisation outside of Owl and Brolly.
2. Using Your Data for Marketing Purposes
2.1 Opting in
If you receive my newsletter containing updates about Owl and Brolly, promotions and offers, it is because you have opted in to sign up to my newsletter for this purpose, or you gave me written consent to be added to my list for these purposes only. You have not been added because I had your email from any previous purchase.
2.2 Opting out
You can opt out at any time with a link at the bottom of any newsletter using the MailChimp service.
3. Data Security
3.1 Data stored digitally
The information collected during the checkout process is stored digitally via Facebook, Paypal and WordPress.
Any details you have emailed to me for the purposes of fulfilling your orders are saved and stored on my secure company computer.
If you have requested to be on my newsletter list, your name and email address will be held on Mailchimp’s secure server.
Devices in our possession that have access to your data
- Windows Laptop with pin protection
iMac with password protection
iPad with pin protection
I employ security measures on these devices to ensure data is stored securely. I use a password protected secure internet connection.
Data stored as a hard copy
I print copies of invoices for accountancy purposes to comply with HMRC tax regulations, and for the purposes of returns and product queries. I keep any postage receipts, obtained from the Post Office with postcode details used for postal tracking purposes, attached to your invoice. These documents are kept in a locked secure metal filing cabinet for the minimum time required to fulfil my HMRC responsibilities, before being destroyed by cross hatch shredding and/or burning. At this time, digital copies are removed from any devices and the trash can emptied.
4 Requesting a Copy of the Data we hold
4.1 The process
You can request a copy of all the data we currently hold on file for you. We are legally required to provide this to you free of charge and within a month of the original request.
5. Requesting we Delete your Data
5.1 The process
If you want us to delete all information we have on file we are legally required to do so should you request it, with the exception of documents being retained to comply with HMRC rules.
6. Contact Details
For the promos of the EU data protection laws, I, Sue Hutchings at Owl and Brolly, am the data controller of your personal information. If you have any concerns, please contact me:
By Post: Sue Hutchings, 11a Green Close, Charlton Marshall, Blandford Fourm. DT11 9PF
By Email: firstname.lastname@example.org
By Messenger: facebook/owlandbrolly
7 Privacy Policies for the Websites and Third Parties we Use.
For information on the privacy policies of the third parties, please visit the following links;
I am currently working on cookie analysis and pop ups to comply with GDPR.
I have basic cookies installed on this site, without which it will not function. The additional cookies will be related to Google Analytics. I have Google Analytics installed purely to see times when people are on the website and from where people have come from, to assist me with sale and social media avenues. I do not see or use any personal data.
If you do not wish to use this site due to any cookies, you may leave at any time.