Johnny Roxburgh Designs Limited ("we" or "us") is committed to protecting and respecting your privacy, and to keeping your personal data safe and confidential. This policy sets out the basis on which any personal data we collect from you, or that you provide to us, is processed by us.
INFORMATION WE COLLECT FROM YOU CUSTOMERS
We collect and process the following data in order to be able to send you quotes, orders and invoices and to take payment: client name, client name (if applicable), named contact, postal address, phone number(s), email address, credit card or other payment details. We also collect and process the following data in order to be able to organise your event: names and contact details of guests and other attendees, dietary and similar requirements, date of your event, other relevant dates, venue name and mobile number on site. We may also collect and process other data but the above are the main categories.
Emails sent to our Company email addresses or via our website are stored as correspondence so that we may answer your enquiry.
Sending data via the Internet is never entirely secure, and although we will do our best to protect your personal data once we have received it, we cannot guarantee the security of your data whilst in transmission. Once we receive your information, we use procedures and systems designed to try to prevent unauthorised access wherever possible. All information you provide to us via the website is stored on our secure servers; all data we process within our office is protected with a secure network. All data is processed and stored within the European Economic Area.
DISCLOSURE OF YOUR INFORMATION
We will not disclose your information to any third parties unless strictly necessary. For the purposes of providing your quotes and orders, and to meet our legal obligations, we may from time to time need to share the data we hold with service providers and the suppliers who provide and maintain our systems, the venues and associate suppliers for your event, payment service providers, our accountants and if necessary our solicitors; plus any authority if required to by law, or if disclosure is necessary to protect the rights, property, or safety of Johnny Roxburgh Designs Limited, our staff, customers and suppliers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
USE OF YOUR DATA We will only use your personal data to the extent that the law allows us to do so. Under the EU General Data Protection Regulation (the GDPR) we will rely on the following legal bases for processing your personal data:
● where it is necessary to perform a contract we have entered into or are about to enter into with you;
● where it is necessary for the purposes of our legitimate interests (or those of a third party) and your interests or fundamental rights and freedoms do not override those interests. Our legitimate interest means our interest in conducting and managing our business, including enabling us to provide you and our other customers with the best products and services we can and the best and most secure experience when dealing with us. In assessing our legitimate interests, we make sure we consider and balance any potential impact (both positive and negative) on you and others and your rights;
● where you have given us your consent.
DISCLOSURE OF YOUR INFORMATION
We will not disclose your information to any third parties unless strictly necessary. For the purposes of providing your quotes and orders, to fulfil any contract with you and to meet our legal obligations, we may from time to time need to share the data we hold with service providers and the suppliers who provide and maintain our systems, the venues and associated suppliers for your event, credit reference agencies, credit card processors and payment service providers, our accountants and if necessary our solicitors; plus if required to by law, or if disclosure is necessary to protect the rights, property, or safety of JRD, our staff, customers and suppliers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
RETENTION OF YOUR INFORMATION
We will only retain your personal data for as long as necessary to fulfil the purposes for which we collected your personal data. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of that personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements. If by law we are required to retain any information about our customers or their interactions with us, we will retain your personal data as far as required to comply with such law.
YOUR RIGHTS MARKETING & INFORMATION UPDATES
You have the right to ask us not to process your personal data for marketing purposes, such as using information you supply to us to provide you with any news letters and other information we believe may be of interest to you (e.g. occasional key site updates), currently announced via our occasional newsletters. We will usually inform you (before collecting your data) if we intend to use your data for such purposes. You can exercise your right to prevent such processes by contacting firstname.lastname@example.org. We will then cease to press your data where the law allows as soon as possible but in any event within 30 days. ACCESS TO INFORMATION You have the right in certain circumstances to request access or request changes to or request other actions be taken in relation to information held about you in accordance with the GDPR. If you wish to make such a request please see the “Contact” section below.
We reserve the right to change this statement at any time by posting revisions on our website; if we make any significant changes then we will endeavour to notify by email as well.