Through the course of our work we collect personal information from many people. This policy outlines what information we collect, how it is stored and what it is used for. It is our policy not to use any personal information for any purpose other than which it is intended to conduct our business and provide you with services.
This policy and the provisions of the General Data Protection Regulations (GDPR) are designed to protect individual’s information. Business contacts and information are considered to be in the public domain and therefore not covered. The GDPR is in force from May 25th 2018.
- What information will we collect and how will we use it?
- We will collect basic identification information such as your name and contact details. This will be used for the supply of any products you purchase. This may include passing on contact information to our couriers in order for them to make delivery and for you to receive notifications regarding your delivery time.
- Details required to administer our accounts and billing.
- Electronic delivery of newsletters and any other internally generated information.
Both individuals and businesses may opt out of their information being passed to the above organisations by contacting us at firstname.lastname@example.org
- We will retain all given information on the following basis.
- All information required to administer our accounts system are stored on Sage software which is encrypted and backed up to a cloud drive. All paper accounting information is routinely destroyed after seven years.
- Customer website registration information / data and backups are hosted on secure servers in UK-based data centres. Backups are automatically removed after four weeks.
- All other contact details and information will be retained indefinitely either on server with cloud back up, hard disc or in paper form. Electronic backups are taken to a local drive stored offsite.
- Payments made through our website are processed securely by either Sage Pay or pay Pal. We do not retain any card details for payments made in this way. If you place your order over the phone and pay by Debit / Credit Card we will not retain any credit or debit card details beyond the period needed to take any payment due. No written or electronic record will be made of any such payment card.
- We have to abide by the law of the land and if information is legitimately requested by the Government or one of their agencies we will comply with any such request.
- You may at any time review or update any personally identifiable information we hold. In the first instance please make contact at email@example.com we will take any reasonable steps to confirm your identity before any such changes are made.
- This site may at times contain links to other, third party websites; Mystery Mountain is not responsible for the privacy practices or the content of such websites.
- We reserve the right to alter, without notice, this policy if either required to under law or to improve services to our customers. The current policy will always remain available on our website www.mystery-mountain.co.uk