- the personal information we collect about you;
- what we do with your information, and
- who your information might be shared with.
- DATA PROTECTION
1.1 This policy and any other documents referred to on it sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. By visiting http://www.kitbox.co you are accepting and consenting to the practices described in this policy.
1.2 For the purpose of the Data Protection Act 1998 (Act) and the General Data Protection Regulation (EU) 2016/679, which comes into force on 25 May 2018 (GDPR) (together the Act and the GDPR being the Data Protection Laws), we are the data controller (i.e. we are responsible for, and control the processing of, your personal information).
1.3 We fully comply with the Data Protection Laws and all other relevant legislation.
- INFORMATION WE COLLECT FROM YOU
2.1 Information you give us
We collect personal information about you, including your name, billing address, shipping address, e-mail address, phone number, mobile number, the pattern collected, order details, password (if you have created an account on our website) and, financial and credit card information when you purchase products from us. We also collect your personal information when you sign up for our newsletter and when you contact us.
Your personal information and communication preferences are kept securely within the ‘My Account’ area of the website and can be accessed by signing in and selecting ‘My Account’ from the main menu. You can use this area to update your personal information, communication options and view your previous order history.
2.2 Information we collect about you
With regard to each of your visits to our site we will automatically collect the following information:
(a) technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform and
(b) information about your visit, including the full Uniform Resource Locators (URL), clickstream to, through and from our site (including date and time), products you viewed or searched for page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), methods used to browse away from the page and any phone number used to call our customer service number.
2.3 Information we receive from other sources
We are working closely with third parties (including, for example, business partners, sub-contractors in technical, payment and delivery services, advertising networks, analytics providers, search information providers, credit reference agencies). We will combine this information with information you give to us and information we collect about you, for the purposes set out above (depending on the types of information we receive).
2.4 Recorded Sessions
Our website may also use a website recording service which may record mouse clicks, mouse movements, page scrolling and any text keyed into website forms. Data collected by this service is used to improve our website usability. The information collected is stored and is used for aggregated and statistical reporting, and is not shared with anybody else.
2.5 Monitoring and recording communication
We may monitor and record communications with you (such as telephone conversations and emails) for the purpose of [insert details, eg quality assurance, training, fraud prevention and compliance.
3.1 The use of a "cookie" involves storing a small file on your computer which can be used to identify your browser to our server. You can usually modify your browser to prevent this happening, although if you do "disable cookies", then you will be unable to make a purchase from our online shop.
3.2 We use "cookie" technology to enable the shopping system to distinguish you from other users of our website, record the contents of your basket, to ensure that the correct products are ordered when you progress through the checkout and to facilitate navigation throughout the shopping and catalogue pages.
Remarketing – What is this?
3.3 In operating our website, we may collect any data that you provide to us even without completion of registration and or transaction by clicking submit/next. These details may be used to contact you to assist with your registration, transaction or should you abandon your basket.
3.4 You may see our adverts on other websites*. For these adverts, we will be using software that may set a cookie** to your browser. This software will allow us to monitor if you see our adverts, if you click on them and if you go on to buy from our website. The browsing data collected is always anonymous and does not include any personally identifiable information including your name, home address or any other personal information that can identify you.
3.5 By registering on our website, your email address may also be shared with Google AdWords Customer Match. This will allow us to target you with paid search advertising based on your order history or exclude you from advertising that we feel isn’t relevant.
*Using Google’s Display Network, we take care to ensure all Burleigh Ads only appear on relevant, apolitical websites. **You may set your browser to notify you when you receive a cookie, giving you the chance to decide whether or not to accept it. If you decline to accept a cookie, some web pages may not function properly or you may not be permitted to access certain services offered on the website.
- USES MADE OF THE INFORMATION
4.1 Information you give us
We will use this information:
(a) identify you and manage any accounts you hold with us;
(b) process your order;
(c) contact you and update you on the status of your order;
(d) if you agree, let you know about other products or services that may be of interest to you—see clause 5.1 below;
(e) to carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you request from us;
(f) to notify you about changes to our products,
(g) to ensure that content from our site is presented in the most effective manner for you and for your computer.
4.2 Information we collect about you
We will use this information:
(a) to administer our site and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;
(b) to improve our site to ensure that content is presented in the most effective manner for you and for your computer;
(c) to allow you to participate in interactive features of our service, when you choose to do so;
(d) as part of our efforts to keep our site safe and secure;
(e) to measure or understand the effectiveness of advertising we serve to you and others, and to deliver relevant advertising to you; and
(f) to make suggestions and recommendations to you and other users of our site about goods or services that may interest you or them.
- DISCLOSURE OF YOUR INFORMATION
5.1 We would like to use your personal information to provide you, or permit selected third parties to provide you with information about goods or services we feel may interest you. We would like to send you this information by post, email, telephone, text message (SMS) or automated call about our products, competitions and special offers which may be of interest to you.
5.2 We and other businesses will only send you marketing messages to you when you tick the relevant boxes when you complete an online order. If you consent to receiving such marketing communication from us or other businesses, you can opt out at any time by:
(a) clicking on the ‘unsubscribe’ button at the bottom of email newsletters or an SMS;
(b) accessing the My Account’ area of the website and updating your preferences; or
(c) e-mailing, calling or writing to us.
5.3 Your personal information will be shared with our email service provider- Mapp, to:
(a) allow us to keep you updated via e-mail and SMS on the latest product updates and special offers, if you have consented to receive marketing communication; and
(b) notify you of any discontinued products.
5.4 You agree that we will have the right to share your personal information with:
(a) third party banking organisations, including Shopify Payments and PayPal, who handle our credit/debit card transactions. They receive the information needed to verify and authorise your payment card and to process your order. These companies are under strict obligation to keep your personal information private. Operating on the Shopify platform, our website is certified Tier 1 PCI DSS Compliant. This means your data is kept secure when making a purchase.
(b) DPD, Royal Mail, UPS, UK Mail and Exact Abacus our delivery service provider, if you place an order with is. This is to enable our couriers to update you on status of your delivery;
(c) any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006;
Selected third parties including:
(a) third parties in the event that we sell or buy any business or assets, in which case we will disclose your personal data to the prospective seller or buyer of such business or assets;
(b) third parties if we or substantially all of our assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets; and
- USER GENERATED CONTENT (UGC) #KITBOX
6.1 We love it when you take and share photos of our products. By uploading a photo to Instagram or Twitter with the hashtag ‘Kitbox’, your photos can be found by the Kitbox digital team and selected to use on our website.
How will my photo and others details submitted by me be used?
6.2 You can provide your permission for us to use your content by replying to our social media post (e.g. Instagram, Twitter or Facebook) or by uploading your photo directly. By providing permission, you acknowledge that your photo may be seen worldwide and may be used to promote and/or link to any product on our website.
6.3 By submitting a photo you hereby grant to us a perpetual, worldwide, non-exclusive, royalty-free licence (with the right to sub-licence) to use, edit, alter, reproduce, translate, publish and/or distribute the photos and/or incorporate it in other works on our websites using any and all media or distribution methods.
6.4 Please note - we will select photos at its absolute discretion and is under no obligation to use all the photos submitted. We are happy to remove UGC images on request. If you would prefer your image not to be displayed or for all other UGC enquiries, please email: email@example.com
- SECURITY STATEMENT
7.1 We will use technical and organisational measures to safeguard your personal data, for example:
(a) access to your account is controlled by a password;
(b) your personal data is encrypted and stored on secure servers; and
(c) when you place orders on our secure server we use industry-standard Secure Sockets Layer (SSL) technology to encrypt your information, such as your name and credit card details, as it is passed from your computer to our web server. This encrypted information cannot be read in the event of it being intercepted by someone else. During the checkout process you can tell whether a page is secure as ‘https’ will replace the ‘http’ at the front the www.kitbox.co in your browser address window. A small padlock will also appear in the bottom bar of your browser window.
7.2 If you do not wish to send your details over the web for any reason, you can ring us on +44 (0) 1772 331837and we will be happy to take your order by phone. Alternatively, contact us at firstname.lastname@example.org.
7.3 Unfortunately, the transmission of information via the internet is not completely secure. Although we will use reasonable efforts protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
7.4 Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
- COPYRIGHT STATEMENT
8.1 All rights reserved. The material on this site is protected by copyright throughout the world and is owned by us.
8.2 You may read, print and download it for private use only.
8.3 You may not commercialise or otherwise copy it without our permission.
8.4 Use of this site is subject to our terms and conditions of use
- YOUR RIGHTS
9.1 The Data Protection Laws give you the right to access information held about you. Your right of access can be exercised in accordance with the Data Protection Laws. A copy of the information we hold about you will provided free of charge. If unfounded, excessive or repetitive requests are made, a fee of £10 will be payable for each request to meet our costs in providing you with details of the information we hold about you.
9.2 You can require us to correct any mistakes in your information which we hold free of charge. If you would like to do this, please:
(a) update the information in the “My Account” area on the website; or
(b) email, call or write to us and let us have enough information to identify you, what is incorrect and what the incorrect information should be replaced with.
9.3 You have the right to ask us not to process your personal data for marketing purposes, in accordance with clause 5.2.
9.4 Subject to clause 9.6, you have the right to request that we erase your personal data in the following circumstances:
(a) your personal data is no longer necessary for the purposes it was collected or otherwise processed by us;
(b) you withdraw your consent to us processing your personal data and there is no other legal ground for processing;
(c) you object to us processing your personal data and there are no overriding legitimate grounds;
(d) your personal data has been unlawfully processed; or
(e) your personal data has to be erased for compliance with a legal obligation to which we are subject.
9.5 Subject to clause 9.6, you have the right to request that we restrict the processing of your personal data in the following circumstances:
(a) if you contest the accuracy of the personal data we hold, processing of your personal data will be restricted until we have verified the accuracy of your personal data;
(b) if you object to the processing (where it was necessary for the performance of a public interest task or purpose of legitimate interests), and we are considering whether our legitimate grounds override yours;
(c) processing is unlawful and you oppose erasure and request restriction instead; or
(d) if we no longer need the personal data but you require the data to establish, exercise or defend a legal claim.
We will securely delete existing copies (unless storage of any data is required by Data Protection Laws and, if so, we will inform you of any such requirement).
9.9 If you are dissatisfied with our use of your personal information, you have the right to refer such matters of dispute to the Information Commissioner’s Office by e-mail to: email@example.com, by phone on: 0303 123 1113 or by post to: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.
- WHEN TO CONTACT CUSTOMER SERVICES
If you have any further questions on our Privacy and Security Policy or require help with your online order, please email: firstname.lastname@example.org. If you are still unsure about how your data will be used or if you have been unable to make a purchase via the website you can also ring us on +44 (0) 1772 331837 and we will be happy to take your order by phone.
If you would like this policy in another format (for example: audio, large print, braille) please contact us using the contact details in clause 10.