Privacy Policy
General
This Notice describes why and how we collect, use, and share your personal data.
This data protection notice is for this website for www.brandedbystreamline.com (this and any future website we may use including our merchandise webstores for personal consumers, hosted by Shopify: each a Site).
The data controller is Streamline Corporate Ltd, registered in England no 09624508 and our correspondence address is 7 Queen Anne Drive, Newbridge, Edinburgh EH28 8LH. We comply with the GDPR (General Data Protection Regulation 2018), the DPA (Data Protection Act 2018) and the PECR (Privacy and Electronic Communications Regulations 2003). We are registered with the Information Commissioner’s Office (ICO) no. ZA456478.
For consumers (that is: non-business customers) purchasing our products (doing so though our Shopify-hosted website), there is further information at the end of this notice.
Why do we control and process personal data?
We control and process personal data for the purposes of our business. More specifically and for example, we require personal data to enable goods and service purchases (on a Site or otherwise), despatch and invoicing, and to collect payments, to improve the customer experience, to keep accounting records, to manage enquiries and complaints, and to distribute communications of a general or marketing nature. In particular, we require your personal data for you to be able to contract with us.
What personal data do we collect?
We may collect, store, and use the following kinds of personal data:
- data about your computer and your visits to and use of our Sites (including for example your IP address, geographical location, browser type and version, operating system, referral source, length of visit, page views and website navigation)
- data relating to any transactions carried out between you and us on or in relation to a Site, including information relating to any purchases you make
- data you provide to us for the purpose of registering with us, such as your name and contact details
- data you provide to us for the purpose of subscribing to our website services, email notifications and / or newsletters
- any other data you choose to send to us
We do not process sensitive personal data.
If you intend to disclose to us another person’s personal data, you must obtain that person’s consent to both the disclosure and our processing that personal data.
Use of Cookies
Our Sites use cookies to better the user’s experience while visiting the Site. As required by legislation, where applicable the Sites use a cookie control system, allowing the user to give explicit permission or to deny the use of / saving of cookies on their computer / device.
Cookies are small files saved to the user’s computer’s hard drive that track, save, and store information about the user’s interactions and usage of websites. This allows a website, through its server, to provide users with a tailored experience within that website. For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org.
If our Sites’ users wish to deny the use and saving of cookies from our Sites on to their computers hard drive they must take necessary steps within their web browser’s security settings to block all cookies from each of our Sites and its external serving vendors or use their cookie control system if available upon their first visit.
Cookies We Use
| Cookie | Description | Duration | Type |
|---|---|---|---|
| uvc | The cookie is set by addthis.com to determine the usage of Addthis.com service. | 1 year | Analytics |
| _CAN_BId | 3 years | undefined | |
| __atuvs | This cookie is set by Addthis to make sure you see the updated count if you share a page and return to it before our share count cache is updated. | 30 minutes | Functional |
| CAN_SId | 30 minutes | undefined | |
| loc | This cookie is set by Addthis. This is a geolocation cookie to understand where the users sharing the information are located. | 1 year | Advertisement |
| _CAN_BId | null | 9 years | Uncategorized |
| _gid | This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visited in an anonymous form. | 1 day | Analytics |
| _CAN_SId | 1 hour | undefined | |
| __atuvc | This cookie is set by Add this to make sure you see the updated count if you share a page and return to it before our share count cache is updated. | 1 year | Functional |
| _gat_UA-64970644-1 | This is a pattern type cookie set by Google Analytics, where the pattern element on the name contains the unique identity number of the account or website it relates to. It appears to be a variation of the _gat cookie which is used to limit the amount of data recorded by Google on high traffic volume websites. | 1 minute | Performance |
| _ga | This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site’s analytics report. The cookies store information anonymously and assigns a randomly generated number to identify unique visitors. | 2 years | Analytics |
| _hj/ | This is cookie is from to Hotjar to analyse and track performance metrics on our website. Hotjar may temporarily process your IP address to ensure their service is running smoothly and improve the quality of Hotjar Platform. | 30 calendar days | Performance |
How we use your personal data
Personal data submitted to us will be used for the purposes set out above. We may use your personal data to, for example:
- administer our Sites
- improve your browsing experience by personalising the Sites
- enable your use of the services available on the Sites
- send you goods
- send statements and invoices to you, and collect payments from you
- send you general (non-marketing) commercial communications
- send you email notifications regarding the services you can use on our Sites
- send you our newsletter and other marketing communications relating to our business which we think may interest you
- provide third parties with statistical information about our customers etc. (this information will not include personal data that identifies an individual)
- respond to enquiries and complaints
- verify compliance with the terms and conditions governing the use of the Sites
If you submit personal data for publication, we will publish and otherwise use that data in accordance with the licence you have granted to us.
We will not, without your express consent, provide your personal data to any third parties for the purposes of direct marketing.
Disclosures
We may disclose your personal data to our employees, officers, agents, suppliers, providers or subcontractors and those of any companies in a group to which we may belong so far as reasonably necessary for the purposes set out in this privacy policy. In addition, we may disclose your personal data:
- to the extent that we are required to do so by law
- in connection with any ongoing or prospective legal proceedings
- to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk)
- to any person who we reasonably believe may apply to a court or other competent authority for disclosure of that personal information where, in our reasonable opinion, such court or authority would be reasonably likely to order disclosure of that personal information
Except as set out in this Notice, we will not provide your information to third parties.
Retention
Other than as regards the cookie durations above, we retain your personal data for so long as we have a reasonable need to do so. Specifically, we shall normally retail your data for five years after you last visit a Site unless we have legitimate reasons to retain it longer.
Whom we share your personal information with
We routinely share personal information with:
- companies within the Streamline group
- third parties we use to help deliver our products ( eg payment service providers, warehouses and delivery companies)
- other third parties we use to help us run our business, eg marketing agencies or website hosts and our professional advisers
International Data Transfers
Information may be held at our offices and those of our group companies, third party agencies, service providers, representatives and agents as described above. However, personal data we collect may be stored and processed in and transferred between any of the countries in which we operate to enable us to use the data, including outside the UK and EEA. Such may be transferred to countries which may not have data protection laws equivalent to those in force in the EEA. This might happen if you or our service providers are outside the UK/EEA.
These transfers are subject to special rules under European and UK data protection law. This means we can only transfer your personal information to a country or international organisation outside the UK/EEA where:
- the European Commission has issued an ‘adequacy decision’ in relation to that country or international organisation; or
- there are appropriate safeguards in place, together with enforceable rights and effective legal remedies for data subjects; or
- a specific exception applies under data protection law
If you would like further information on this, please contact us.
In addition, personal data you submit for publication on the website (such as reviews of products or blog comments etc.) may be published on the internet. We cannot prevent the use or misuse of such information by others.
You expressly agree to such transfers of personal data.
Security of your personal data
We will take reasonable technical and organisational precautions to prevent the loss, misuse, or alteration of your personal data.
We or our IT providers will store all the personal data you provide on our/their secure password- and firewall-protected servers.
You acknowledge that the transmission of data over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet.
You are responsible for keeping your password and other login details confidential. We will not ask you for your password (except when you log in to the website).
Policy amendments
We may update this data protection notice from time to time by posting a new version on our website. You should check this page occasionally to ensure you are happy with any changes. We may also notify you of changes to our privacy policy by email.
Your rights
You may instruct us to provide you with any personal data we hold about you. Our providing of such data to you will be subject to your first providing appropriate evidence of your identity (for this purpose, we will usually accept a photocopy of your passport certified by a solicitor or bank, plus an original copy of a utility bill showing your current address).
We shall provide such personal data to the extent required by law.
You may instruct us not to process your personal data for marketing purposes, by sending an email to marketing@streamlinecorporate.com In practice, you will usually either expressly agree in advance to our using your personal information for marketing purposes, or we will provide you with an opportunity to opt out of the use of your personal information for marketing purposes.
You may instruct us to delete your personal data to the extent that we do not need to retain it for our legitimate purposes.
If you are dissatisfied with how we process your data, and if you and we cannot resolve the issue between us, you have the right to complain to the ICO. The ICO’s details are: https://ico.org.uk/make-a-complaint/ or you can contact them on 0303 123 1113, or write to them at Wycliffe House, Water Lane, Wilmslow SK9 5AF.
Third party websites
Our Sites may contain links to other websites. We are not responsible for the privacy policies or practices of third-party websites.
Updating information
Please let us know if the personal data which we hold about you needs to be corrected or updated.
Contact
If you have any questions about this privacy policy or our treatment of your personal information, please contact our Marketing Manager via email at marketing@streamlinecorporate.com or by post to 7 Queen Anne Drive, Newbridge, Edinburgh, EH28 8LH.
Website Visitor Tracking
Our Sites use tracking software to monitor visitors to better understand how they use the Sites. The software will save a cookie to your computer’s hard drive to track and monitor your engagement and Site usage, but will not store, save, or collect personal data.
Tracking software used includes, but is not limited to:
- Google Analytics
- Candii
- Infinity Call Tracking
- Hotjar
Adverts and Sponsored Links
This website does not contain sponsored links and adverts.
Downloads and Media Files
Any downloadable documents, files or media made available on this website are provided to users at their own risk. While all precautions have been undertaken to ensure only genuine downloads are available, users must verify their authenticity using appropriate antivirus software or similar applications.
We accept no responsibility for third party downloads and downloads provided by external third-party websites and advise users to verify their authenticity using third party antivirus software or similar applications.
Contact and Communication
Users contacting us through a Site do so at their own discretion and provide any personal data at their own risk.
Where we have clearly stated and made you aware of the fact, and where you have given your express consent, we may use your personal data to send you products / services information through a mailing list system.
Email Mailing List and Marketing Messages
We operate an email mailing list program, used to inform subscribers about products, services and / or news we supply / publish. Users can subscribe through an online automated process where they have given their explicit consent. Subscribers can unsubscribe at any time through an automated online service, or if not available, other means as detailed in the footer of sent marketing messages (or email us directly marketing@streamlinecorporate.com and request to be removed). The type and content of marketing messages subscribers receive, and if it may contain third party content, is clearly outlined at the point of subscription.
Email marketing messages may contain tracking beacons / tracked clickable links or similar server technologies to track subscriber activity within email marketing messages. Where used, such marketing messages may record a range of subscriber data relating to engagement, geographic, demographics and already stored subscriber data.
Our EMS (email marketing service) provider is; Mailchimp and you can read their privacy policy here.
External Website Links and Third Parties
Although we aim to include quality, safe and relevant external links only, users should be cautious before clicking any such external links. (External links are clickable text / banner / image links to other websites).
Shortened URLs – URL shortening is a technique used on the web to shorten URLs (Uniform Resource Locators) to something substantially shorter. This technique is especially used in social media and looks similar to this (example: http://bit.ly/zyVUBo). Users should be cautious before clicking on shortened URL links and verify their authenticity before proceeding.
We cannot guarantee or verify the contents of any externally linked website despite our best efforts. Users click on external links at their own risk. We cannot be held liable for any damages or implications caused by visiting any external links mentioned.
In the instances of online ordering, we work with courier companies to ship the goods ordered. To be able to send items out of our warehouse to the correct location marked with the correct contact information, your details will be shared with courier companies.
Social Media Policy and Usage
We adopt a Social Media Policy to ensure our business and our staff conduct themselves appropriately online. While we may have official profiles on social media platforms, users must verify the authenticity of such profiles before engaging with, or sharing information with such profiles. We will never ask for user passwords or personal details on social media platforms. Users should conduct themselves appropriately when engaging with us on social media.
There may be instances where our Sites feature social sharing buttons, which help share web content directly from web pages to the respective social media platforms. You use our social sharing buttons at your own discretion and accept that doing so may publish content to your social media profile, feed, or page. You can find further information about some social media privacy and usage policies in the resources section below.
Behavioural Advertising
We may use your personal data to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (NAI) educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.
You can opt out of targeted advertising by:
- FACEBOOK – https://www.facebook.com/settings/?tab=ads
- GOOGLE – https://www.google.com/settings/ads/anonymous
- BING – https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads
Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: http://optout.aboutads.info/.
Do Not Track
We do not alter our Sites’ data collection and use practices when we see a Do Not Track signal from your browser.
The following is additional and directed at consumers purchasing our products (doing so though our Shopify-hosted website),
- What do we do with your information?
- When you purchase something from our store hosted by Shopify, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address
- When you browse our Shopify-hosted store, we also automatically receive your computer’s internet protocol (IP) address to provide us with information that helps us learn about your browser and operating system.
- Email marketing (if applicable): With your permission, we may send you emails about our store, new products and other updates.
- Consent
- How do you get my consent?
- When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, it is understood that that you consent to our collecting it and using it for that specific reason only. If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
- How do I withdraw my consent?
- If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at any time, by contacting us.
- Disclosure
- We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
- Shopify
- Our consumer sales store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall. - If you choose a direct payment gateway to complete your purchase, then Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
- All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
- For more insight, you may also want to read Shopify’s Terms of Service here or Privacy Statement here.
- Our consumer sales store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
- Third-party services
- In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
- However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the way your personal information will be handled by these providers. - In particular, certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So, if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
- As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.
- Once you leave our Shopify-hosted store’s website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy or our Shopify website’s Terms of Service.
- When you click on links on our Shopify-hosted store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
- Security
- To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed. If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
- Cookies
- Here is a list of cookies that we use on the Shopify website. We’ve listed them here so you that you can choose if you want to opt-out of cookies or not.
Cookie Description etc. _session_id _session_id unique token, sessional, Allows Shopify to store information about your session (referrer, landing page, etc.) _shopify_visit no data held, Persistent for 30 minutes from the last visit, Used by our website provider’s internal stats tracker to record the number of visits _shopify_uniq no data held, expires midnight (relative to the visitor) of the next day, Counts the number of visits to a store by a single customer. cart, unique token, persistent for 2 weeks, Stores information about the contents of your cart. _secure_session_id unique token, sessional, unique token, indefinite _storefront_digest If the shop has a password, this is used to determine if the current visitor has access.
- Here is a list of cookies that we use on the Shopify website. We’ve listed them here so you that you can choose if you want to opt-out of cookies or not.
- Changes to this privacy policy (consumers)
If our Shopify-hosted store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.
Resources / Further Information
Overview of the GDPR – General Data Protection Regulation
Data Protection Act 2018
Privacy and Electronic Communications Regulations 2003
The Guide to the PECR 2003
Twitter Privacy Policy
Google Privacy Policy
LinkedIn Privacy Policy
Mailchimp Privacy Policy
UK GDPR
Streamline Corporate Ltd, September 2022