Protecting your personal details on our website. How we comply with GDPR.
Last reviewed: 23 May 2018
How we use your information and comply with the General Data Protection Act.
This privacy notice tells you in plain english what information It’s Tea ltd collects about our customers and how it is handled
Our full privacy statement in “legal wording” is below :
Visitors to our websites
When someone visits Its Tea ltd Website we use a third party service, Google Analytics, to collect standard internet log information and details of visitor behaviour patterns and we use a WordPress plug in called MonsterInsights to anonymise this information which means it can not be tracked back to you personally. We do this to find out things such as the number of visitors to the various parts of the site. This information is only processed in a way which does not identify anyone. We do not make, and do not permit Google to make, any attempt to find out the identities of those visiting our website. If we do want to collect personally identifiable information through our website, we will be up front about this. We will make it clear when we collect personal information and will explain what we intend to do with it.
Credit card information.
We do not hold credit card information. Credit card information is held by your payment processors and they provide us with the proof of your payment.
We use a third party provider, Mailgun, to deliver our monthly e-newsletters. We gather statistics around email opening and clicks using industry standard technologies including clear gifs to help us monitor and improve our e-newsletter. We send emails directly from our own system and do not maintain a list of active contacts on the site.
We use a third party service, WordPress.com, to publish our blog and a plugin to WordPress called WooCommerce to generate the shop on our website.
How we use social media
We do not use any tools to manage our social media.
If you send us a private or direct message via social media the message will be stored in that social media platform. It will not be shared by us with any other organisations, nor do we permit any organisation to make use of it.
People who email us
We use Transport Layer Security (TLS) to encrypt and protect email. If your email service does not support TLS, you should be aware that any emails we send or receive may not be protected in transit.
We will also monitor any emails sent to us, including file attachments, for viruses or malicious software.
If you wish to make a complaint or get more details about the information we hold about you.
If you are already registered you will be able to get all the information we hold about you and delete what you no longer want us to have.
If you are not satisfied by this, however, please email email@example.com and put in the subject line either “complaint” if you wish to make a complaint or “Request for Information” or if you wish to make a request about the information we hold about you. Alternately write to us at Data Controller, It’s Tea Ltd at 22 Douglas road Poole Dorset BH12 2AX
Please be aware that before we provide you with any information we will require you to prove who you are and that the information you are asking for you have the right to have.
If we do hold information about you can expect us to:
- give you a description of it;
- tell you why we are holding it;
- tell you who it could be disclosed to; and
- let you have a copy of the information in an intelligible form.
Your rights as described by the information Commissioner
Under the Data Protection Act 1998, you have rights as an individual which you can exercise in relation to the information we hold about you.
You can read more about these rights here – https://ico.org.uk/for-the-public/is-my-information-being-handled-correctly/
Links to other websites
This privacy notice does not cover the links within this site linking to other websites. We encourage you to read the privacy statements on the other websites you visit.
The Legal Bit
The Website is brought to you by It’s Tea ltd. It’s Tea ltd believes it is important to protect your Personal Data (as defined in the Data Protection Act 1998) and we are committed to giving you a personalised service that meets your needs in a way that also protects your privacy. This policy explains how we may collect Personal Data about you. It also explains some of the security measures we take to protect your Personal Data, and tells you certain things we will do and not do. You should read this policy in conjunction with the Website Terms.
When we first obtain Personal Data from you, or when you take a new service or product from us, we will give you the opportunity to tell us if you do or do not want to receive information from us about other services or products (as applicable). You can normally do this by ticking a box on an application form or contract. You may change your mind at any time by emailing us at the address below.
Some of the Personal Data we hold about you may be ‘sensitive personal data’ within the meaning of the Data Protection Act 1998, for example, information about your health or ethnic origin.
1. Collecting Information
We may collect Personal Data about you from a number of sources, including the following:
1.1. From you when you agree to take a service or product from us, in which case this may include your contact details, date of birth, how you will pay for the product or service and your bank details.
1.2. From you when you contact us with an enquiry or in response to a communication from us, in which case, this may tell us something about how you use our services.
1.3. From documents that are available to the public, such as the electoral register.
2. Using Your Personal Information
2.1. Personal Data about our customers is an important part of our business and we shall only use your Personal Data for the following purposes and shall not keep such Personal Data longer than is necessary to fulfil these purposes:
2.1.1. To help us to identify you when you contact us.
2.1.2. To help us to identify accounts, services and/or products which you could have from us or selected partners from time to time. We may do this by automatic means using a scoring system, which uses the Personal Data you have provided and/or any information we hold about you and Personal Data from third party agencies (including credit reference agencies).
2.1.3. To help us to administer and to contact you about improved administration of any accounts, services and products we have provided before, do provide now or will or may provide in the future.
2.1.4. To allow us to carry out marketing analysis and customer profiling (including with transactional information), conduct research, including creating statistical and testing information.
2.1.5. To help to prevent and detect fraud or loss.
2.1.6. To allow us to contact you in any way (including mail, email, telephone, visit, text or multimedia messages) about products and services offered by us and selected partners unless you have previously asked us not to do so.
2.1.7. To keep you up to date with our member benefit scheme under which, as part of your membership benefits, we will give you membership information and details of discounts and offers we negotiate from time to time on behalf of our members. If you do not wish to receive this benefit, please write to our Data Protection Manager at the address given in clause 7.1 below.
2.1.8. We may monitor and record communications with you (including phone conversations and emails) for quality assurance and compliance.
2.1.9. We may check your details with fraud prevention agencies. If you provide false or inaccurate information and we suspect fraud, we will record this.
2.3. We may allow other people and organisations to use Personal Data we hold about you in the following circumstances:
2.3.1. If we, or substantially all of our assets, are acquired or are in the process of being acquired by a third party, in which case Personal Data held by us, about our customers, will be one of the transferred assets.
2.3.2. If we have been legitimately asked to provide information for legal or regulatory purposes or as part of legal proceedings or prospective legal proceedings.
2.5. In connection with any transaction which we enter into with you:
2.5.1. We, and other companies in our group, may carry out credit and fraud prevention checks with one or more licensed credit reference and fraud prevention agencies. We and they may keep a record of the search. Information held about you by these agencies may be linked to records relating to other people living at the same address with whom you are financially linked. These records will also be taken into account in credit and fraud prevention checks. Information from your application and payment details of your account will be recorded with one or more of these agencies and may be shared with other organisations to help make credit and insurance decisions about you and members of your household with whom you are financially linked and for debt collection and fraud prevention. This includes those who have moved house and who have missed payments.
2.5.2. If you provide false or inaccurate information to us and we suspect fraud, we will record this and may share it with other people and organisations. We, and other credit and insurance organisations, may also use technology to detect and prevent fraud.
2.5.3. If you need details of those credit agencies and fraud prevention agencies from which we obtain and with which we record information about you, please write to our Data Protection Manager at It’s Tea ltd, 223 Ashley Road, Poole. Bh12N 2AX.
3. Protecting Information
We have strict security measures to protect Personal Data.
3.1. We work to protect the security of your information during transmission by using Secure Sockets Layer (SSL) software, which encrypts information you input.
3.2. We reveal only the last five digits of your credit card numbers when confirming an order. Of course, we transmit the entire credit card number to the appropriate credit card company during order processing.
3.3. We maintain physical, electronic and procedural safeguards in connection with the collection, storage and disclosure of personally identifiable customer information. Our security procedures mean that we may occasionally request proof of identity before we disclose personal information to you.
3.4. It is important for you to protect against unauthorised access to your password and to your computer. Be sure to sign off when you finish using a shared computer.
4. The internet
4.1. If you communicate with us using the internet, we may occasionally email you about our services and products. When you first give us Personal Data through the Website, we will normally give you the opportunity to say whether you would prefer us not to contact you by email. You can also always send us an email (at the address set out below) at any time if you change your mind.
4.2. Please remember that communications over the internet, such as emails and webmails (messages sent through a website), are not secure unless they have been encrypted. Your communications may go through a number of countries before they are delivered – this is the nature of the internet. We cannot accept responsibility for any unauthorised access or loss of Personal Data that is beyond our control.