1.0 Core principles.
We are committed to our customers by:
- Having a duty of care with regards to your personal data.
- Only collecting and processing data when necessary to fulfil our obligations to you.
- Never selling, renting or otherwise distributing or make public any personal information
- Only disclosing personal information where we are required to by law.
- We do not hold any credit card data.
2.0 Relevant legislation
Our website is designed to comply with the following national and international legislation with regards to data protection and user privacy:
- UK Data Protection Act 1988 (DPA)
- EU Data Protection Directive 1995 (DPD)
- EU General Data Protection Regulation 2018 (GDPR)
As a result, our site is likely to be compliant with the data protection and user privacy legislation set out by many other countries.
3.0 What our website collects and why we collect it
Personal information is collected on our website for the following reasons:
- Processing your order
Hence, when an order is placed with us we will only collect the following necessary information:
Delivery Address if different
Telephone Number (optional – helps when sending parcels via a courier).
- Site visitation tracking
Like most websites, our site uses Google Analytics to track user interactions.
Data collected is used to determine the number of people using our site. We also use it to better understand how they find us and to analyse their journey through our website.
Google Analytics records data such as your approximate geographical location, device, internet browser and operating system. However, none of this information personally identifies you to us.
Google Analytics also records your computer’s IP address which could be used to personally identify you. Again, Google does not grant us access to this. We consider Google to be a third-party data processor.
For your information our website uses the Google Analytics Dashboard for WordPress.
Disabling cookies on your internet browser will stop Google Analytics from tracking any part of your visit to pages within our website.
- Contact forms, Newsletters and email links
When contacting us using the contact form on our Contact us page your data will be stored on the WordPress database associated with www.qwerkemporium.co.uk .
If you subscribe to our Newsletter, we will only email you with information of new products, events or to keep you up to date with environmental issue that Qwerkemporium are passionate about. Your email address will NOT be provided to any 3rd party. You can unsubscribe at any time by using the unsubscribe link in any email or by using the contact us form on this site.
If you email us using an email link like this one, this website does not store any of the data within that email.
4.0 How we store your personal information
When buying from this website, your details (not including any financial details/credit card details etc) are stored in our Woodpress/Woocommerce database . We use this informstion purely to fulfil your order(s) and also to refer back to your email and/or postal details in order that we may track any orders you have queries on. Financial information is not stored or used by us as all our transactions are made within the PayPal platform or the Worldpay platform so we do not retain any financial information once the transaction has been processed.
The only occasions where personal data will be stored on this website is when you make a purchase or when you contact us via the Contact us page.
We will only retain your personal data for as long as necessary to fulfil the purposes we collect it for, subject to any legal, accounting and reporting requirements
4.1 Your Legal Rights
Under certain circumstances, you have rights under data protection laws in relation to your personal data. These include the right to:
- Have access to your personal data.
- Request correction of your personal data.
- Request erasure of your personal data.
- Object to processing of your personal data.
- Restrict the of processing your personal data.
- Request transfer of your personal data.
- Right to withdraw consent.
More details can be found at:
If you wish to exercise any of the rights set out above, please email us at firstname.lastname@example.org
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). Charges may be made if your request is clearly unfounded, repetitive or excessive. We also retain the right to refuse to comply with your request in these circumstances.
Occasionally we may need to ask for more specific information from you in order for us to confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
We will endeavour to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
5.0 About this website’s server
Our website is hosted in data centres in London.
All traffic (transferral of files) between this website and your browser is encrypted and delivered over HTTPS.
6.0 Our third-party data processors
We use four third parties to process personal data on our behalf. The third parties we use are PayPal, Worldpay, WordPress and Woocommerce and Siteground.
Paypal process payments for any products purchase from our website. Neither us or PayPal retain any financial information you may submit as part of the purchasing process. PayPal monitor every transaction, 24/7 to prevent fraud, email phishing and identity theft. Every transaction is heavily guarded behind PayPal’s advanced encryption. If something appears suspicious, their dedicated team of security specialists will identify suspicious activity and help protect you from fraudulent transactions.
Your data as mentioned below is encrypted before transmission to prevent misuse of the transmitted data by third parties. SSL (Secure Socket Layer) is a security technology which guarantees that your personal data, including credit card information, login data and payment method, are securely transferred via the Internet. The data is encrypted so that is only readable by the PayPal payment system.
Your data which is encrypted, is as follows:
- personal data (address data, telephone number, etc.)
- login data (username and password) if created.
- all methods of payment selected, credit card and bank account
Siteground, WordPress and Wocommerce – together provide our Customer Engagement platform to fulfil your orders. No personal financial information is ever taken or stored on these system as during the process, everything is transferred out to PayPal or Worldpay. Hence, neither us nor our third-parties has access to your financial information.
7.0 Data breaches
Above all, it is our duty to report any unlawful data breach of this website’s database or the database(s) of any of our third-party data processors to all relevant persons and authorities. We aim to do this within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen.
8.0 Data controller
Our data controller for this website is:
Qwerkemporium Ltd, a UK Private Limited Company with company number: 06185475
And whose operating office is situated at:
3 Red Farm Cottage,
Upper Raby Road,
9.0 Data protection officer
Ms Lynne Richards
Director, Qwerkemporium Ltd
Telephone: 07708 769866
If you are not happy with any aspect of how we collect and use your data? Then you have the right to complain to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would be grateful if you would contact us first if you do have a complaint so that we can try to resolve it for you.
It is very important that the information we hold about you is accurate and up to date. Please let us know if at any time your personal information changes by emailing us at email@example.com
We do not collect any Sensitive Data about you. Sensitive data refers to data that includes:
- details about your race or ethnicity,
- religious or philosophical beliefs,
- sex life,
- sexual orientation,
- political opinions,
- trade union membership, or
- information about your health and genetic and biometric data.
We do not collect any information about criminal convictions and offences.
10.0 Summary of how we use your data
- To proces you as a customer on our website, however you are not required to create an account with us.
- To process and deliver your order, including all financial transactions such as payments and refunds.
- Data analysis to improve our website products, services and customer experience.
Therefore, we recommend that you check this page occasionally for any policy changes. Specific policy changes and updates are mentioned in the change log below.
11.1 Change log
10th May 2018