Privacy, Cookies & our GDPR Policy

PRIVACY STATEMENT

SECTION 1 - WHAT DO WE DO WITH YOUR INFORMATION?

When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address. When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system. Email marketing: With your permission only, we may send you emails about our store, new products and other updates.

SECTION 2 - CONSENT

How do you get my consent? When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only. If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no. How do I withdraw my consent? If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at info@blackpop.co.uk or mailing us at: Blackpop Studios, 98 Fairfield Rd, Derby, DE23 6PH, UK. If you have signed up to our newsletter then you will see an 'unsubscribe link' at the bottom of each e-mail, you may use this to remove your details from our database - this applies only to our newsletter service.

SECTION 3 - DISCLOSURE

We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.

COOKIE POLICY SECTION 4 - COOKIES (SHOPIFY & STRIPE)

Cookies are small text files that are placed on your computer by websites that you visit. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site. Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit https://www.aboutcookies.org/ or https://www.allaboutcookies.org/. http://www.blackpop.co.uk uses the below cookies to operate:

crumb - Session cookie(expires when you exit your browser)

JSESSIONID - Session cookie(expires when you exit your browser)

ss_lastvisit - Persistent cookie(helps us remember returning visitors)

CART - Persistent cookie(essential for providing e-commerce facilities)

Our store is hosted on SHOPIFY and payments are managed by STRIPE. They provide us with the online e-commerce platform that allows us to sell our products and services to you. Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall. When you move to our checkout pages you are transferred to ...... and they use the below cookies:

Session cookies(expire when you exit your browser):

crumb JSESSIONID __utmc

Persistant Cookies: __qca __utma __utmb __utmz mp_4213922e56ac2f6df331f80a45f65ed3_mixpanel SQ6 ss_cid SS_MATTR SS_MID f89ed01d-4a05-4ea7-80e0-c90623e543e8hgw9dk2l user_segment

More information on both of these services and their terms can be found here: https://stripe.com/gb/terms | https://stripe.com/gb/privacy | http://www.shopify.co.uk/legal/terms | http://www.shopify.co.uk/legal/privacy

SECTION 5 - THIRD-PARTY SERVICES

In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us. However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions. For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers. In particular, remember that certain providers may be located in or have facilities that are located under a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located. As an example, if you are located in the United Kingdom and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act. Once you leave our store’s website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy or our website’s Terms of Service. Links: When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.

SECTION 6 - SECURITY

To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed. If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.

SECTION 8 - AGE OF CONSENT

By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site.

SECTION 9 - CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it. If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.

QUESTIONS AND CONTACT INFORMATION

If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information you can do so by contacting us at info@blackpop.co.uk or mailing us at: Blackpop Studios, 98 Fairfield Rd, Derby, DE23 6PH, UK.

 

OUR GDPR POLICY

Blackpop complies with GDPR that came into EU Law on the 25th May 2018.  Blackpop is committed to safeguarding
the privacy of our site visitors and clients in the way we manage and store data. Data is stored by Blackpop in a number of ways -  digitally on in-house software, mail chimp, shopify, quick books and is always password protected.  

1. WHAT INFORMATION DO WE HOLD

We may collect and store data in a number of ways. These include:

• Information that you provide by filling in forms on our website/online store site www.blackpop.co.uk  (our site) which is manged by www.shopify.com. This includes information provided at the time of registering for an account on our site or subscribing to our marketing. If you contact us by email, we may also keep a record of that correspondence.

• Details of purchases you may make through our site and of the fulfilment of any orders.

• Details of your visits to our site and the resources that you access.
When you use our site, we may gather information like your name, your email address, delivery and billing addresses and your phone number etc. This can be when you place an order, create an account or sign up for the newsletter.
Any information you hand over from the account or checkout pages reaches us fully encrypted through an SSL – a special security layer added to your account and checkout pages. On some pages, you can submit information about other people. For example, if you order a gift online or on behalf of another person and want it sent directly to the recipient, you will need to submit the recipient’s name, address and phone number.

• Details of yourself or company gathered directly at Trade show events such as Decorex.
The data we hold comprises of your name, company name [where appropriate] postal address [where appropriate],
email address, web site [where appropriate] and telephone number/s [where appropriate].

2. WHY DO WE HOLD THIS DATA AND HOW DO WE USE IT

We use your data for the following purposes:

Name & Address – to send you your purchases from our site.
Email address – to send you order confirmations, updates, delivery progress and refund updates. We would also use your email address for newsletters etc. if you opt in to receive these.
Phone number – to send update texts regarding delivery information. We may also use your number to contact you if there are any issues with your order. We will never use your phone number for any other purpose.

We use the information you provide about yourself when placing an order only to complete that order. We do not share this information with outside parties except to the extent necessary to complete that order such as providing the delivery address to a third-party courier to deliver your purchase.

We do not, and will not, sell any of your personal data to any third party. We want to earn and maintain your trust, and we believe this is absolutely essential in order do that.

All data is stored securely on in house software that is password protected.


NEWSLETTERS AND MARKETING MATERIALS
We want to make sure that we only contact you if you want to hear from us. We use your data to keep you informed of events, news, special offers and/or any other Blackpop related activity. We take every care to ensure that we collect and store your data safely and securely. We will never pass your personal detail to a third party without your specific consent.

Ticking the box to opt-in or adding your email address to our marketing subscribe form will mean that you are signed up to receive our emails. Our emails include  product updates, cart abandonment. However, if you do change your mind and decide you do not wish to receive the Blackpop’s newsletters or new product launches, you can unsubscribe by clicking on the ‘unsubscribe’ link at the bottom of any emails you receive from us, or by emailing us at info@blackpop.co.uk

3. HOW LONG WE HOLD YOUR DATA


We keep your details on file indefinitely. You can request to view what information we store on you at any time. You may also request that these details be deleted at any time by emailing us or clicking ‘unsubscribe’ link at the foot of any
digital newsletter we send you.

Third party email service provider
In addition to direct contact, we use MailChimp as our marketing automation platform. Mailchimp is a US based email
service provider who takes the security of data very seriously. Mailchimp has a data processing agreement in place for EU/EEA and Swiss customers or non-EU/EEA and Swiss customers processing data on behalf of EU/EEA and Swiss
individuals, in addition to their publicly posted Privacy Policy. Adequate level of provision to EU law has been put into
place by Mailchimp, which is called The Privacy Shield.


Issued by Paula Moss
Data Protection Officer
info@blackpop.co.uk
m. 07743 666 422

Thank you

BLACKPOP