Your data and privacy are important, and we will handle them securely, fairly and legally always. Prad Glass Ltd complies fully with the General Data Protection Regulation (GDPR) and below we tell you about what data we collect and how we store and use it.
1 What Information Do We Collect?
We keep all the data that you give us when you open an account or purchase goods or services with us. This information is shown in your account and much of it can be changed by you at any time. These are things like your name, address, email, telephone number etc.
We do not store any credit card details once they have been processed. Not even the last 4 digits. We do NOT keep or even see your CVV security number. We will contact you for your details each time a payment is required to be processed for the purchase of goods and services.
When you place an order, we store the IP Address of your device and the type of device used to carry out the transaction. We do not store any other geo-location data.
2 What Information do we Not Collect
We don't see and therefore do not store or use your credit/debit card details or security number (CVV) with orders placed online. When payment is made over the phone, the card details are processed straight into the card terminal.
All payments are directly handled by payment gateways. Gateways such as PayPal and World Pay are encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only if is necessary to complete your purchase trans-action. After that is complete, your purchase transaction information is deleted. All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
We do not keep the content of any websites browsed, and we do not keep records of the websites you visit or the times and dates you visited them.
We regularly delete stored voicemails, faxes and text messages.
3 Where We Keep Your Data - Security
The security of your personal data is a major concern for us. We have legal obligations to keep it safe and handle it with care and the penalties for not doing so are very high.
We store your personal data securely and it's backed up in two geographically separated locations so that it cannot be lost in the event of a catastrophic failure in our data centres or systems.
4 How Do We Use Your Information?
The GDPR says that we can use and share your personal data only where we have a proper reason for doing so.
The permitted Legal Bases for processing are set out in article 6 of the GDPR. At least one of these must apply whenever we process your personal data:
5 Who We Share Your Information with And Why?
Prad Glass Ltd works with several trusted suppliers to provide the high-quality services you expect from us. In all cases our suppliers have been carefully vetted and only the minimum personal data is shared to fulfil your orders or provide the services you have requested.
We also have a legal obligation to share data in response to properly made requests from:
6 How Long Do We Keep Your Personal Data?
We keep your data while you have an account with us, and sometimes for a longer period, depending on whether there are legal or regulatory reasons for doing so.
7 Transfers to Third Countries
At Prad Glass your data is stored in our secure data centres which are in the United Kingdom and United States. Your information may be transferred to our data centres in the United States. It is not transferred to any other third country (defined under the GDPR as a country outside of the European Economic Area).
8 Keeping in Touch with You
We want to keep you updated about our new products, services and any exclusive offers that may become available. We promise to never share your personal information with any third-party marketing company.
You can opt-in or opt-out of receiving these messages at any time, either from the marketing preferences page in your Control Panel or by using the 'unsubscribe' link contained in our marketing emails.
9 What Are Your Rights?
You have the following rights under the GDPR:
If you have any questions about how Prad Glass Ltd uses your personal data that are not answered here, or if you want to exercise your rights regarding your personal data, please contact our Customer Service team on 020 3332 2003.
You have the right to lodge a complaint with the Information Commissioner’s Office. Further information, including contact details, is available at https://ico.org.uk
If you would like to access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information, contact our Privacy Compliance Officer at email@example.com.
10 Data Controller
The GDPR makes a distinction between organisations that process personal data for their own purposes, known as 'Data Controllers', and organisations that process personal data on behalf of other organisations, known as 'Data Processors'.
11 Cookie Notice
"a small piece of data sent from a website and stored on the user's computer by the user's web browser while the user is browsing. Cookies were designed to be a reliable mechanism for websites to remember information (such as items added in the shopping cart in an online store) or to record the user's browsing activity (including clicking certain buttons, logging in, or recording which pages were visited in the past). They can also be used to remember arbitrary pieces of information that the user previously entered into form fields such as names, addresses, passwords, and credit card numbers."
12 Changes to Privacy Notice
We recognise that transparency is an ongoing commitment, so we will keep this privacy notice under regular review.
This privacy notice was last updated on 24th May 2018.