Data Protection

Despite careful scrutiny of content, we accept no liability for the content of external links. The operators of linked pages bear sole responsibility for their content.

We offer various services at our website. These cannot be provided without the submission of personal data. Personal data includes all data with which the customer can be identified. This data involves an entry or a combination of entries, such as customer number, telephone number, e-mail address, address, company name and input from enquiries that enable the identification of individual customers. Please note the following remarks concerning data protection law.

Administration of personal data
Bloom-in-Box Limited strives to protect the personal data of customers to the greatest extent possible. Measures are taken to prevent unauthorised access to, the loss, destruction, alteration and passing on of personal data. Should such a case nonetheless occur, appropriate countermeasures will be taken without delay.

Use of personal data
We use the data you provide to carry out and process your order. When you subscribe to the newsletter, your e-mail address will be used for our own promotional purposes (offer or improvement of service) until you cancel your subscription to the newsletter. Cancellation is possible at any time. Personal data is principally not passed on to third parties. Exceptions arise in the case of a legal obligation or a warrant. Further, we may pass on your data if this is necessary for processing one of your orders or answering one of your inquiries.
Saving and accessibility of the contract text for shop orders
We save the contract text and send you the order data and the general terms and conditions by e-mail. You can also view the general terms and conditions here at any time. Your order data is no longer accessible on the Internet for security reasons.

Limited data usage
When a customer declares his consent to receive information from Bloom-in-Box Limited with the appropriate enquiry form, information concerning sales campaigns, events, etc. can be sent to him by Bloom-in-Box Limited by e-mail or by another method. When a customer no longer requires this information, he can inform Bloom-in-Box Limited of this at any time by e-mail, telephone or fax.

User Statistics and Direct Communication
We will collect through our website information on the products you are interested in and the additional information you might need, should you have registered on our website. We summarize this information in your order and download history which you can access in your customer profile. We might contact you via phone or email based on this information from time to time to ask if we can be of further assistance to you. By registering you consent to us getting in contact with you.

Information concerning your saved data
According to the UK Data Protection Act, you have the right to be provided information concerning your saved data at no charge and potentially the right to correct, block or delete this data.

Repetition of declarations of consent
You have expressly provided us with the following declaration(s) of consent and we have protocolled your consent. We are obligated to keep the content of declarations of consent in a state ready to be called up at any time. You can withdraw your consent for the future at any time.
a) Consent to receive e-mail advertising
Yes, please inform me regularly by e-mail (cancellation possible at any time).

Other remarks concerning the handling of personal data
Although Bloom-in-Box Limited strives to protect personal customer data, the customer is instructed to treat this data with appropriate caution. Bloom-in-Box Limited assumes no responsibility for the security of personal customer data from websites that are linked with those of Bloom-in-Box Limited.

The remarks referring to data protection law can change with the offering of new services. It is also possible that Bloom-in-Box Limited may change these provisions with the aim of improving data protection or in the context of new legal regulations. For this reason the customer is advised to read these provisions again from time to time.

On cookies
Cookies are small information packages that can be sent by a web server to the browser of the customer for the purpose of more efficient Internet usage and are stored as a file there. Cookies can be used to determine which browsers have visited the website. With the appropriate browser settings, the customer can prevent the acceptance of cookies or be warned prior to acceptance. Our web servers use cookies for the following purposes:

To change the content of websites or e-mails for improved customer satisfaction or to individualise the content for each customer.

To carry out statistical evaluations in which the individual identification of the customer is nonetheless not possible.

Certain website functionalities might not be available should you block cookies.

This website uses Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics uses so-called “cookies”, text files that are saved on your computer and that make it possible to analyse your use of the website. The information concerning your usage of this website created by the cookie is generally transmitted to a Google server in the USA and saved there. In the event that IP anonymisation is activated at this website, your IP address will be abbreviated in advance by Google within the member states of the European Union or in other Contracting States to the Treaty on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and abbreviated there. On behalf of the operator of this website, Google will use this information to evaluate your usage of the website, to compile reports on website activities and to provide additional services related to website and Internet usage to the website operator. The IP address transmitted from your browser in the context of Google Analytics will not be merged together with other data from Google. You can prevent cookies being installed at any time by changing the settings in your browser software. However, please note that this may in this case mean that you cannot make full use of all the functions on this website. You can also prevent the recording of the data generated by the cookie relating to your usage of the website (incl. your IP address) and the processing of this data by Google by downloading and installing the browser plugin available at the following link. You can find the deactivation add-on here: http://tools.google.com/dlpage/gaoptout?hl=en

What are your rights?
You can find out what information we hold about you, and ask us not to use any of the information we collect.
All enquiries should be made in writing to The Compliance Officer at the above address.

If at any point you believe the information we process on you is incorrect you can request to see this information and have it corrected or deleted, if you so wish. If you wish to raise a complaint on how we have handled your personal data, you can contact us on the e-mail above and we will investigate the matter.

If you are not satisfied with our response or believe we are not processing your personal data in accordance with the requirements of GDPR, then you are within your rights to lodge a complaint with the Information Commissioner’s Office (ICO).
Unless otherwise agreed with you, we will only collect basic personal data about you, which does not include any ‘sensitive personal data’.
The full list of your rights under GDPR is shown below:
1. The right to access the personal data we hold on you
2. The right to correct and update the personal data we hold on you
3. The right to have your personal data erased
4. The right to object to processing of your personal data
5. The right to data portability
6. The right to withdraw your consent to the processing at any time for any processing of personal data to which consent was sought.
7. The right to object to the processing of personal data where applicable
8. The right to lodge a complaint with the Information Commissioner’s Office. You can email them via: https://ico.org.uk/global/contact-us/email/, call them on 0303 123 1113, or write to them at the Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF.

Data Collection
We need to know basic personal data, for example: your name, address, email address, telephone, along with certain business, personal and financial information in order to provide you with our services, and to claim our right to be paid in return for our services, under our standard terms of business if we are contracted to work for your company.
If you do not provide this information then we will be unable to provide the services you have requested. We will not collect any personal data from you that we do not need in order to provide and oversee the services we have agreed to provide you with.

Use of Data
All the personal data we hold about you will be processed by our staff. No third parties will have access to your personal data unless there is a legal obligation for us to provide them with this.
We may also process your personal data if it is necessary for the performance of a contract with you, or to take steps to enter into a contract. An example of this would be processing your data in connection with providing you with services.
We will also communicate with you information about other services we can offer you and update you about our activities.
Where your information is used other than in accordance with one of these uses, we will first obtain your consent to that use. We take all reasonable steps to ensure that your personal data is processed securely.

How long do we keep data?
Typically we keep your personal data for a minimum of 6 years, after which time it will be destroyed if it is no longer required for the lawful purpose(s) for which it was obtained. If you consent to marketing in the future, any information we use for this purpose will be kept with us until you notify us that you no longer wish to receive this information.

Sharing your personal data
Your personal data will only be shared with third parties including other data controllers where it is necessary for the performance of the data controllers’ tasks or where you first give us your prior consent. We may share your data with:
Members of staff in Bloom-in-Box Ltd
Our agents, suppliers and contractors. For example, we may ask a supplier to send out newsletters on our behalf, or to maintain our database software, or to provide us with administration, Accountancy and other related services;
Any personal data transferred to countries or territories outside the European Union will only be placed on systems complying with measures giving equivalent protection of personal rights, either through international agreements or contracts approved by the European Union.
We will never sell your personal data.

Changes to this privacy policy
We’ll amend this privacy policy from time to time to ensure it remains up-to-date and accurately reflects how and why we use your personal data.

Your Rights
You can find out what information we hold about you, and ask us not to use any of the information we collect.
All enquiries should be made in writing to:
The Compliance Officer
Bloom-in-Box Ltd
Unit 18 Swordfish Business Park
Burscough
L408JW

The references to data protection law become valid at the point in time at which the upload takes place.

June 2018
Bloom-in-Box Limited
Swordfish Business Park
Swordfish Close
Burscough
L40 8JW
United Kingdom
Tel:01704 896 893
dr@bloom-in-box.com

Bloom-in-Box Ltd GDPR Statement

On May 25, 2018, the General Data Protection Regulation (GDPR) becomes fully enforceable across the European Union (EU), creating a higher standard for data protection, privacy, and security for the processing of personal data from the EU. The GDPR applies to the processing of personal data regardless of where that takes place in the world, and impacts any company that handles personal data of EU citizens and others within the EU.
Bloom-in-Box Ltd are firmly committed to GDPR compliance and we provide updated information in our Privacy Policy, our Cookie Policy.
At Bloom-in-Box, GDPR readiness has required us to look at all the products and services we provide, and we are confident that these satisfy the requirements of GDPR.
The products and services Bloom-in-Box provide meet the principles of privacy by design and default as outlined in Article 25 of the General Data Protection Regulation (GDPR). Adherence to these standards means that our products have appropriate privacy and security features embedded within their design, and Bloom-in-Box Ltd; has the ability to fully support the data subject rights called out in the GDPR.
We also provide data processing functions as part of our remit with the services we provide, for example data backup and disaster recovery, as well as the system access we have as part of our support role.
Direct Onsite and Remote Support
No data is retained by us that is not directly relevant to maintaining the services we provide to our customers.
The data that is retained pertains to our direct contact with our customers, not any data pertaining to our customers, customers.
The data held is kept to a minimum for the purposes of our role as a company.
The access we have to data at customer sites is treated.