(1) What information do we collect?
We may collect, store and use the following kinds of personal data:
(a) information about your visits to and use of this website;
(b) information relating to any transactions carried out between you and us on or in relation to this website, including information relating to any purchases you make of our goods or services;
(c) information that you provide to us for the purpose of registering with us (including your name, title, address);
(d) information that you provide to us for the purpose of subscribing to our website services, email notifications and/or newsletters; and
(e) any other information that you choose to send to us
A cookie consists of information sent by a web server to a web browser, and stored by the browser. The information is then sent back to the server each time the browser requests a page from the server. This enables the web server to identify and track the web browser.
We use both “session” cookies and “persistent” cookies on the website. We will use the session cookies to keep track of you whilst you navigate the website e.g. to keep track of the products in your basket and your basket total. We will use the persistent cookies to enable our website to recognise you when you visit.
Session cookies will be deleted from your computer when you close your browser. Persistent cookies will remain stored on your computer until deleted, or until they reach a specified expiry date.
Our advertisers / payment services providers may also send you cookies.
Most browsers allow you to refuse to accept cookies. (For example, in Internet Explorer you can refuse all cookies by clicking “Tools”, “Internet Options”, “Privacy”, and selecting “Block all cookies” using the sliding selector.) This will, however, have a negative impact upon the usability of many websites, including this one.
(3) Using your personal data
We may use your personal information to:
(a) administer the website;
(b) improve your browsing experience by personalising the website;
(c) improve the choice of products and / or services offered by evaluating product preferences e.g. styles, colours etc;
(d) enable your use of the services available on the website;
(e) send to you goods purchased via the website, and supply to you services purchased via the website;
(f) send statements and invoices to you, and collect payments from you;
(g) send you general (non-marketing) commercial communications;
(h) send you email notifications which you have specifically requested;
(i) send to you our newsletter and other marketing communications relating to our business which we think may be of interest to you by post or, where you have specifically agreed to this, by email or similar technology (you can inform us at any time if you no longer require marketing communications);
(j) provide third parties with statistical information about our users – but this information will not be used to identify any individual user; and
(k) deal with enquiries and complaints made by or about you relating to the website.
We will not without your express consent provide your personal information to any third parties for the purpose of direct marketing.
All our website financial transactions are handled through our payment service provider Sage Pay (formally Protx). You should only provide your personal information to Sage Pay after reviewing the Sage Pay privacy policies (available at www.sagepay.com). We will share information with Sage Pay only to the extent necessary for the purposes of processing payments you make via our website.
In addition, we may disclose information about you:
(a) to the extent that we are required to do so by law;
(b) in connection with any legal proceedings or prospective legal proceedings;
(c) in order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk); and
(d) to the purchaser (or prospective purchaser) of any business or asset which we are (or are contemplating) selling.
(5) Security of your personal data
We will take reasonable technical and organisational precautions to prevent the loss, misuse or alteration of your personal information.
We will store all the personal information you provide on our secure PCI DSS (Payment Card Industry Data Security Standard) compliant servers. All electronic transactions you make to or receive from us will be encrypted using SSL (Secure Socket Layer) technology.
Of course, data transmission over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet.
You are responsible for keeping your password and user details confidential. We will not ask you for your password.
(7) Policy amendments
Changes to the policy, in particular as to permissible uses of personal data, are not retrospective.
(8) Your rights
You may instruct us to provide you with any personal information we hold about you. Provision of such information may be subject to the payment of a fee (currently fixed at £10.00).
You may instruct us not to process your personal data for marketing purposes by email at any time. (In practice, you will usually either expressly agree in advance to our use of your personal data for marketing purposes, or we will provide you with an opportunity to opt-out of the use of your personal data for marketing purposes.)
(9) Third party websites
From time to time the website may contain links to other websites. We are not responsible for the privacy policies or practices of third party websites.
(10) Updating information
Please let us know if the personal information which we hold about you needs to be corrected or updated.
(12) Data controller
The data controller responsible for our website is Little Sweethearts Limited
Our data protection registration number is