Privacy Policy for Glass Bloom Co
At Glass Bloom Co, we are committed to protecting the privacy and security of our clients and website visitors. This Privacy Policy outlines how we collect, use, and safeguard personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR). By using our site and services, you agree to the practices described in this policy.
1. Information We Collect
We collect various types of personal data to provide and improve our bespoke floral arrangements, artisanal ceramic vases and planters, hand-blown glass decorative items, workshops, corporate and event decor, and custom commissions.
- Personal Identifiable Information (PII): This may include your name, email address, postal address, phone number, and payment information when you purchase products, book workshops, or request custom services.
- Usage Data: We may collect information about how you access and use our site, such as your IP address, browser type, pages visited, time spent on pages, and referring URLs. This helps us understand user behavior and improve our online platform.
- Communication Data: Records of your correspondence with us, including emails and inquiries, may be kept to facilitate our services and respond to your requests.
- Workshop and Commission Details: For workshops and custom commissions, we may collect specific details related to your preferences, design ideas, and personal floral or artistic interests to tailor our services to your needs.
2. How We Use Your Information
The information we collect is used for various purposes to deliver our services and maintain our business operations:
- To process your orders and provide the products and services you have requested, including bespoke floral arrangements, ceramic items, glassware, and workshop registrations.
- To manage and facilitate bespoke commissions and corporate/event decor projects.
- To communicate with you regarding your inquiries, purchases, bookings, and service updates.
- To improve our site, services, and product offerings based on user feedback and usage patterns.
- To send periodic emails about new products, special offers, workshops, or other information we think you may find interesting, provided you have opted in to receive such communications.
- To fulfill legal and regulatory obligations.
3. Legal Basis for Processing Personal Data (GDPR)
We rely on the following legal bases for processing your personal data:
- Consent: Where you have given clear consent for us to process your personal data for a specific purpose (e.g., subscribing to our newsletter).
- Contractual Necessity: Where processing is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into a contract (e.g., fulfilling an order for custom ceramics).
- Legal Obligation: Where processing is necessary for compliance with a legal obligation to which we are subject (e.g., tax regulations).
- Legitimate Interests: Where processing is necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by your interests or fundamental rights and freedoms (e.g., improving our services, preventing fraud, direct marketing with proper opt-out).
4. Data Sharing and Disclosure
We do not sell, trade, or otherwise transfer your personal data to outside parties without your explicit consent, except in the following circumstances:
- Service Providers: We may share data with trusted third-party service providers who assist us in operating our site, conducting our business, or serving our users (e.g., payment processors, shipping companies, website hosting). These parties are bound by confidentiality agreements and are only permitted to use your data for the specific purposes we define.
- Legal Requirements: We may disclose your data when we believe release is appropriate to comply with the law, enforce our site policies, or protect ours or others' rights, property or safety.
- Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal data may be transferred as part of that transaction, provided that the recipient adheres to this Privacy Policy.
5. Data Security
We implement a variety of security measures to maintain the safety of your personal data when you place an order or enter, submit, or access your personal information. These include physical, electronic, and managerial procedures to safeguard and secure the information we collect. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.
6. Data Retention
We will retain your personal data only for as long as is necessary for the purposes set out in this Privacy Policy, including for the purpose of satisfying any legal, accounting, or reporting requirements. When we determine that we no longer need your personal data, we will securely delete or anonymize it.
7. Your Data Protection Rights (GDPR)
As a data subject, you have certain rights concerning your personal data:
- Right to Access: You have the right to request copies of your personal data.
- Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
- Right to Erasure (Right to be Forgotten): You have the right to request that we erase your personal data, under certain conditions.
- Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
- Right to Object to Processing: You have the right to object to our processing of your personal data, under certain conditions.
- Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
- Right to Withdraw Consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.
To exercise any of these rights, please contact us using the details provided below. We will respond to your request within one month.
8. Cookies and Tracking Technologies
Our site may use "cookies" and similar tracking technologies to enhance your experience. Cookies are small data files stored on your device that help us analyze web traffic, remember your preferences, and improve our services. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our site.
9. Links to Other Websites
Our site may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this Privacy Policy. You should exercise caution and look at the privacy statement applicable to the website in question.
10. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. We encourage you to review this Privacy Policy periodically for any changes.
11. Contact Us
If you have any questions or concerns about this Privacy Policy, our data practices, or if you wish to exercise any of your data protection rights, please contact us at:
Glass Bloom Co
7 Riverbend Mews,
King's Cross Road, Floor 3,
London, Greater London, N1C 4BZ, UK
Phone: 020 7946 0876
You also have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues.