OverviewMaintaining the security of your data is of paramount importance to us and we are committed to respecting your privacy rights. This notice, which including without limitation applies when using our sites, provides you with information about:
How we use your data What personal data we collect Who we share your data with How we ensure your privacy is maintained; and Your rights relating to your personal dataPlease read the following carefully to understand our views and practices regarding your personal data and how we will treat it. For the purpose of the General Data Protection Regulation (EU Regulation 2016/679, when applicable, the “GDPR”), and the EU Data Protection Directive (Directive 95/46/EC), the data controller is Snugglebundl Ltd, Unit 7, 27 Buckingham Road, Shoreham by Sea, West Sussex, BN43 5UA.
Information we may collect from you and other sourcesAlthough the precise details of the personal information collected will vary according to the specific purpose for which we are collecting the information, we may collect and process the following data about you: Information that you provide by filling in forms on our social media pages or on our sites. This includes information provided at the time of registering to use our sites, subscribing to our service, purchasing goods, posting material or requesting further services. Examples of such data are Name, Company, Address, Email Address, Telephone Number. We may also ask you for information when you report a problem with our sites. If you contact us by phone, email or otherwise and is provided voluntarily, we may keep a record of that correspondence. We may also ask you to complete surveys that we use for research purposes, although you do not have to respond to them. Details of transactions you carry out through our sites and of the fulfilment of your orders. Details of your visits to our sites including, but not limited to, traffic data, location data, weblogs and other communication data, whether this is required for our own billing purposes or otherwise and the resources that you access. We also collect behavioural and browsing data from you for the purposes of offering you a tailored or personalised online shopping experience. We may collect information about your computer, including where available your IP address, operating system and browser type, for system administration and to report aggregate information. This is statistical data about our users' browsing actions and patterns, and does not identify any individual. We collect some of this information using Cookies, see below and our cookies policy at here. We may also collect any personal information which you allow to be shared that is part of your public profile on a third party social network. We obtain certain personal information about you from sources outside our business which may include our group of companies (further defined below). We may receive your personal information from other sources, such as: public databases, our retail and supplier partners, referrals from insurance and accident management companies, joint marketing partners; social media platforms; from people with whom you are friends or otherwise connected on social media platforms, as well as from other third parties. For example, this other personal data helps us to: Provide the relevant services in an accurate manner; Review and improve the accuracy of the data we hold; and improve and measure the effectiveness of our marketing communications, including online advertising.
Uses made of the InformationWe use information held about you in the following ways: To ensure that content from our sites is presented in the most effective manner for you and for your computer. To provide you with information, products or services that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes. To carry out our obligations arising from any contracts entered into between you and us. For example, we pass your contact details to our courier company who may contact you via SMS to confirm delivery of your order. We may notify our suppliers of your details for any warranty purposes. To allow you to participate in interactive features of our service, when you choose to do so. To enhance your experience whilst using our sites. To notify you about changes to our service. If you are an existing customer, we will only contact you by electronic means with information about goods and services that we offer. If you are a new customer, we will contact you by electronic means if you have consented to this. We may use your personal information to contact you in the event of any urgent safety or product recall notices to communicate to you where we otherwise reasonably believe that the processing of your personal information will prevent or reduce any personal harm to you. It is in your vital interests for us to use your personal information in this way.
International TransfersIt is sometimes necessary for us to share your data outside of the European Economic Area (EEA). This generally occurs when our service providers are located outside of the EEA or you are based outside of the EEA. If this happens, we will ensure that the transfer will be compliant with the relevant data protections laws including the GDPR. Our standard practice is to use standard contractual clauses which have been approved by the European Commission for such transfers. Those clauses can be accessed here. Where standard contractual clauses are not used and your data is transferred to the United States, we will ensure that the service providers have signed up to the EU-US Privacy Shield which is a framework designed to protect the fundamental rights of anyone in the EU whose personal data is transferred to the United States for commercial purposes.
How do we protect your dataWe are committed to keeping your personal data safe and secure and employ a number of security measures such as: We ensure our sites and data is supported with TLS1.2 technology using RSA 2048 bit security standard; Monitoring and auditing our service providers to ensure they have an adequate level of protection as required under the PCI DSS; All credit and debit card payment transactions are initiated on our sites via our online shopping basket; All information you provide to us is stored on our secure servers. For registered users, where we have given you (or where you have chosen) a password which enables you to access certain parts of our sites, you are responsible for keeping this password confidential. We ask you not to share a password with anyone. We use reasonable, organisational, technical and administrative measures to protect personal information under our control. Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our sites; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access. Legal basis for processing your personal data The personal data that you provide to us in order to purchase goods and other personal data generated for transactional agreements is processed as it is necessary for the performance of a contract with you. All other personal data is processed for our legitimate interests (as set out below) and to comply with our legal obligations. In general, we only rely on consent:
to send direct marketing communications to customers via email or text message to contact (and allow for selected third parties to contact) new customers by electronic means.You have the right to withdraw your consent at any time.