At Hearts and Hands Stafford we take your privacy seriously and will only use your personal information to administer your account and to provide you with the products and service you requested from us
We will never pass your details onto a third party and information you give is treated with the strictest confidentially. We have a constitution and safeguarding policies in place and are registered with SCVYS Stafford
We use modern methods to store and process your data in order to carry out our services to you, such as processing and delivering your orders.
We value your business and are deeply committed to looking after your personal and business data. In this privacy notice, we describe where and what types of information we collect, how we keep it safe, how you can request to see the information we hold about you, how you can update this data and how you can make a request to delete this data.
Your personal data includes information such as your name, your email address and postal address. You can use the H&H website to get information without giving us any of these details.
H&H only collects personally identifiable information that you provide to us, and is only used for the purposes that you provide it to us for. For example, if you give us your email address to send you a ticket, we will use it to send you that ticket. If you require a booking form for an event we need all your detail to confirm your ‘pitch’
All information we hold is kept securely, be it electronically or physically.
There are two reasons H&H collects and processes data:
When you ask for a ticket: We will ask for your name and email address so we can send you the ticket, your telephone number in case we have any further questions or your email address bounces back .
When you place an order: in addition to the information above, we also ask for your billing and delivery addresses in order to know where to deliver to. If you place the order online, you will enter your card details directly into our secure online payment via Eventbrite or Paypal who meet the highest levels of PCI DSS security and are regularly audited.
We cover this in more detail below.
Types of data we might collect and how we collect It
A cookie is simply a small piece of information that your computer saves when it visits a website.
To tie your computer to the items you have worked out prices for and those you have placed into your shopping basket. This is how we know to show everyone only their own items they have priced or added to their shopping basket.
To collect anonymous statistical information about the number of visits to our website (see below)
PLEASE NOTE: A cookie in no way gives us access to your computer or any personal information about you, other than the data you choose to share with us.
Overall, without cookies many websites, including H&Hsimply wouldn’t work properly. They are essential to the modern Internet.
Our website collects anonymised (ie not personally identifiable) usage information to give us insights such as how many visitors our website receives, how long users spend on a page and how they got there.
We only use this information for statistical analysis purposes and there is no tie back to any personally identifiable details.
Website Contact Form
The H&H website also has a contact form. Any information submitted to this is sent to H&H in the form of an email. Any personally identifiable information you submit in here will only be used to fulfill your request.
H&H will only use your information for the reason we tell you we’re going to use it. For example, if you give us your name and email address for the express purpose of sending you a ticket, we will only use it to send you that quote, we will not then start sending you offers to that email address.
If the email address was written physically on a notepad at LRP, it will be destroyed once its purpose has been fulfilled.
Your name and email address will stay in the LRP representative’s email ‘sent items’ for future reference, unless you contact us with a data removal request (see below). Similarly, your name and email address may be present.
When you place an order on our website and pay securely online, the page where you input your card details, while it looks like it’s within our website, is actually a direct link to our payment processor, (Technically, it uses an i-Frame, with the card input fields served directly over a secure connection.)
Your name, contact details, billing and delivery address (if different) are recorded and are used to carry out fraud checks, such as that the payment card being used is registered to the billing address.
PCI DSS (Payment Card Industry Data Security Standard) compliant to the highest level and maintains regular security audits. They are also regularly audited by the banks and banking authorities to ensure that their systems are impenetrable.
LRP does not store payment card information in any form or at any time when you place your order online.
When you place an order with LRP on our website, the personal details associated with your order, such as name, email address, telephone number, billing and delivery addresses will be used by us during processing and delivery.
At all times, your information is only used for the purpose of processing your order.
Aside from delivery companies that require your information to deliver your order and if you pay online as described above, LRP Liquid does not share or sell your personal information to any other third parties.
Access Your Personal Information
The General Data Protection Regulations allow individuals to perform a Subject Access Request. Should you need to do this, please send your request by email to Email email@example.com
LRP has 30 days to respond to a legitimate Subject Access Request.
Updating Your Personal Information
Should you wish to update any of the information we hold on you, such as if you move house and need to update your billing or delivery address, or change your telephone number, send an email to firstname.lastname@example.org detailing who you are, how we can identify you in the data we hold and which data you would like updating.
Deleting Your Personal Information and the Right to be Forgotten
The General Data Protection Regulations give individuals the right to make a request to have their personal data erased from our systems. Under the GDPR rules, we have 30 days to provide the data to a legitimate erasure request.
Please note we can’t comply if the data is still necessary for the purpose in which you gave consent, such as to process an outstanding order.
Should you need to do this, please send your request by email email@example.com
Changes To This Privacy Notice