Legal & ethical policies
Maintaining the security of your data is a priority on this site, and we are committed to respecting your privacy rights. We pledge to handle your data fairly and legally at all times. We are also dedicated to being transparent about what data we collect about you and how we use it.
This policy, which applies when you use your mobile device or go online, provides you with information about:
– how we use your data;
– what personal data we collect;
– how we ensure your privacy is maintained; and
– your legal rights relating to your personal data.
- How we use your data.
This site uses your personal data:
– to provide goods and services to you;
– to make a tailored website available to you;
– to manage any registered account(s) that you hold with us;
– to verify your identity;
– for crime and fraud prevention, detection and related purposes;
– with your agreement, to contact you electronically about promotional offers and products and services which we think may interest you;
– for market research purposes – to better understand your needs;
– to enable us to manage customer service interactions with you; and
– where we have a legal right or duty to use or disclose your information (for example in relation to an investigation by a public authority or in a legal dispute).
- Marketing and Promotional Communications.
This site uses your personal data for electronic marketing purposes (with your consent).
This site aims to update you about products & services which are of interest and relevance to you as an individual.
You have the right to opt out of receiving promotional communications at any time, by:
1. making use of the simple “unsubscribe” link in emails or the “STOP” number for texts; and/or
2. contacting this site via the contact channels set out in this Policy.
- We may collect data directly from you, as well as analysing your browsing and purchasing activity, both online and in store, and your responses to marketing communications. The results of this analysis, together with other demographic data, allows us to ensure that we contact you with information on products and offers that are relevant to you.
- Web Banner Advertising
If you visit our website, you may receive personalised banner advertisements whilst browsing other websites. Any banner advertisements you see will relate to products you have viewed whilst browsing our website on your computer or other devices.
- Sharing data with third parties.
Our service providers and suppliers:
Aside from our service providers, This site will not disclose your personal data to any third party, except as set out below. We will never sell or rent our customer data to other organisations for marketing purposes.
- We may share your data with:
if we have your consent to do so;
– credit reference agencies and payment card issuers (such as Visa, Mastercard and American Express) where necessary for card payments;
– governmental bodies, regulators, law enforcement agencies, courts/tribunals and insurers where we are required to do so: –
– to comply with our legal obligations;
– to exercise our legal rights (for example in court cases);
– for the prevention, detection, investigation of crime or prosecution of offenders; and
– for the protection of our employees and customers.
- International transfers.
To deliver products and services to you, it is sometimes necessary for this site to share your data outside of the European Economic Area. This will typically occur when service providers are located outside the EEA or if you are based outside the EEA. These transfers are subject to special rules under data protection laws.
If this happens, we will ensure that the transfer will be compliant with data protection law and all personal data will be secure. Our standard practice is to use ‘standard data protection clauses’ which have been approved by the European Commission for such transfers.
- How long do we keep your data?
We will not retain your data for longer than necessary for the purposes set out in this Policy. Different retention periods apply for different types of data, however, the longest we will normally hold any personal data is 6 years.
- What personal data do we collect?
This site may collect the following information about you:
– your name, age/date of birth and gender;
– your contact details: postal address including billing and delivery addresses, telephone numbers (including mobile numbers) and e-mail address;
– purchases and orders made by you;
– your online browsing activities on this site ;
– your password(s);
– when you make a purchase or place an order with us, your payment card details;
– your communication and marketing preferences;
– your interests, preferences, feedback and survey responses;
– your location;
– your correspondence and communications with this site; and
– other publicly available personal data, including any which you have shared via a public platform (such as a Twitter feed or public Facebook page).
- Our website is not intended for children and we do not knowingly collect data relating to children.
- This list is not exhaustive and, in specific instances, we may need to collect additional data for the purposes set out in this Policy. Some of the above personal data is collected directly, for example when you set up an online account on our website, or send an email to our customer services. Other personal data is collected indirectly, for example, your browsing or shopping activity. We may also collect personal data from third parties who have your consent to pass your details to us, or from publicly available sources.
- How we protect your data.
This site is committed to keeping your personal data safe and secure. Our security measures include: –
– encryption of data;
– daily penetration testing of systems;
– security controls which protect the entire site IT infrastructure from external attack and unauthorised access; and
– internal policies setting out our data security approach.
- What you can do to help protect your data.
This site will never ask you to confirm any bank account or credit card details via email. If you receive an email claiming to be from this site asking you to do so, please ignore it and do not respond. If you are using a computing device in a public location, we recommend that you always log out and close the website browser when you complete an online session. In addition, we recommend that you take the following security measures to enhance your online safety both in relation to this site and more generally: -
– keep your account passwords private. Remember, anybody who knows your password may access your account.
– when creating a password, use at least 8 characters. A combination of letters and numbers is best. Do not use dictionary words, your name, email address, or other personal data that can be easily obtained. We also recommend that you frequently change your password. You can do this accessing your account, clicking ‘your account’, clicking ‘your data’ and selecting ‘change password’.
– avoid using the same password for multiple online accounts.
- The legal basis for using data.
We are required to set out the legal basis for our ‘processing’ of personal data.
- The legal basis for this site processing customer personal data general.
This site collects and uses customers’ personal data because it is necessary for:
- the pursuit of our legitimate interests (as set out below);
- the purposes of complying with our duties and exercising our rights under a contract for the sale of goods to a customer; or
- complying with our legal obligations.
- In general, we only rely on consent as a legal basis for processing personal data in relation to sending direct marketing communications to customers via email or text message. Customers have the right to withdraw consent at any time. Where consent is the only legal basis for processing, we will cease to process data after consent is withdrawn.
- Our legitimate interests.
The normal legal basis for processing customer data that it is necessary for the legitimate interests of this site, including:-
- selling and supplying goods and services to our customers;
- protecting customers, employees and other individuals and maintaining their safety, health and welfare;
- promoting, marketing and advertising our products and services;
- sending promotional communications which are relevant and tailored to individual customers (including administering the Sparks loyalty scheme);
- understanding our customers’ behaviour, activities, preferences, and needs;
- improving existing products and services and developing new products and services;
- complying with our legal and regulatory obligations;
- preventing, investigating and detecting crime, fraud or anti-social behaviour and prosecuting offenders, including working with law enforcement agencies;
- handling customer contacts, queries, complaints or disputes;
- managing insurance claims by customers;
- protecting this site, its employees and customers, by taking appropriate legal action against third parties who have committed criminal acts or are in breach of legal obligations to this site;
- effectively handling any legal claims or regulatory enforcement actions taken against this site; and
- fulfilling our duties to our customers, colleagues, shareholders and other stakeholders.
What are cookies?
- Information collected
- How are cookies managed?
The cookies stored on your computer or other devices when you access our website are designed by:
- this site, or on behalf of this site, and are necessary to enable you to make purchases on our website;
- third parties who participate with us in marketing programmes; and
- third parties who broadcast web banner advertisements on behalf of this site.
- What are cookies used for?
The main purposes for which cookies are used are: –
- For technical purposes essential for the effective operation of our website, particularly in relation to online transactions and site navigation.
- For this site to market to you, particularly web banner advertisements and targeted updates.
- To enable this site to collect information about your browsing and shopping patterns, including to monitor the success of campaigns, competitions etc.
- To enable this site to meet its contractual obligations to make payments to third parties when a product is purchased by someone who has visited our website from a site operated by those parties.
- How do I disable cookies?
If you want to disable cookies you need to change your website browser settings to reject cookies. How you can do this will depend on the browser you use. Further details on how to disable cookies for the most popular browsers are set out below: –
- For Microsoft Internet Explorer:
- Choose the menu “tools” then “Internet Options”
- Click on the “privacy” tab
- Select the setting the appropriate setting
- For Google Chrome:
- Choose Settings> Advanced
- Under “Privacy and security,” click “Content settings”.
- Click “Cookies”
- For Safari:
- Choose Preferences > Privacy
- Click on “Remove all Website Data”
- For Mozilla Firefox:
- Choose the menu “tools” then “Options”
- Click on the icon “privacy”
- Find the menu “cookie” and select the relevant options
- For Opera 6.0 and further:
- 1. Choose the menu Files”> “Preferences”
- 2. Privacy
- What happens if I disable cookies?
This depends on which cookies you disable, but in general, the website may not operate properly if cookies are switched off. If you only disable third-party cookies, you will not be prevented from making purchases on our site. If you disable all cookies, you will be unable to complete a purchase on our site.
Hopefully, that has clarified things for you and as was previously mentioned if there is something that you aren’t sure whether you need or not it’s usually safer to leave cookies enabled in case it does interact with one of the features you use on our site.
However, if you are still looking for more information then you can contact us through one of our preferred contact methods by visiting this link: osiangwent.com/contact
This policy was last updated in October 2018.