Privacy Policy for Tin Soldier

At Tin Soldier, accessible from https://www.tinsoldierdesign.co.uk/, one of our main priorities is the privacy of our visitors. This Privacy Policy document contains types of information that is collected and recorded by Tin Soldier and how we use it.

Who we are:

Tin Soldier is a trading name of Tin Soldier Marketing Ltd, registered in England and Wales as a limited company.  Registration number 8002470. Registered address is 7-7c Snuff Street, Devizes, Wiltshire, SN10 1DU.  In respect of the General Data Protection Regulations (GDPR) we act as a Data Controller.

We have appointed an officer who is responsible for keeping all your data secure and their name is Kerry Roberts, if you have any questions about this privacy notice, including any requests to exercise your legal rights, please do get in touch via kerry@tinsoldierdesign.co.uk or telephone office: 01497 831052 mob: 07870 307309.

You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues.  You can get hold of them through their website ico.org.uk or by calling their helpline number 0303 123 1113. We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please do get in touch with us in the first instance.

Protecting your privacy

At Tin Soldier, we are 100% committed to protecting the privacy and security of our customers and site visitors.

It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.

The Data We Collect About You and How we Use it

We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:

What Information What for Legal right
Identity data such as contact details, name, address, email, telephone numbers, etc Respond to any queries you have   Consent
Technical information including your IP address, browser, platform and devices used and your interaction with our website

To monitor our website performance and improve our services to you.

To help prevent fraud and provide network security

  Legitimate interests
Financial data Processing your order Necessary for contract
Usage data To give you the best possible user experience Legitimate interests
Marketing and communications data To ensure we only contact you about our services should you want us to. Legitimate interests

That’s all, we do not need to know your inside leg measurements so will not collect any Special Categories of Personal Data about you, see here for more specifics.

If you are a resident of the European Economic Area (EEA), you have certain data protection rights. If you wish to be informed what Personal Information we hold about you and if you want it to be removed from our systems, please contact us.

Sharing your information

We do not, and will not, sell any of your personal data to any third party – including your name, address, email address or phone number.

However, we may share your personal data with third parties if we are required to do so by law, where it is necessary to administer the relationship between us or where we have another legitimate interest in doing so.

Which third-party service providers process my personal data?

“Third parties” includes third-party service providers. The following activities are carried out by third-party service providers on our behalf:

Hosting and Website services – Guru Hosting, Elegant themes, WordPress
Marketing services –, Google Analytics

Third-Party Links

This website includes links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you visit these third party websites, we encourage you to read the privacy notice of each website you visit.

All of our third-party service providers are required to take all reasonable and appropriate security measures to protect your personal data. We only permit our third-party service providers to process your personal data for specified purposes and in accordance with our instructions.

What about other third parties?

We may share your personal data with other third parties, for example with a regulator or to otherwise comply with the law.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

Your information and countries outside the EU

In certain circumstances, we may export personal data outside of the European Economic Area for processing, and we may use third party service providers who do the same.

We only do that if there is a good reason to do it and where either:

  1. There are adequate safeguards in place (such as the appropriate contractual arrangements with suppliers, or adequacy decisions, depending on the destination country); or
  2. We are otherwise permitted by data protection law (for instance, where you consent or such transfer is necessary to provide our service to you).

Data security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

How long do we keep your Data

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal or accounting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

By law we have to keep basic information about our customers (including Contact, Identity and Transaction Data) for six years after they cease being customers for tax purposes.

In some circumstances, we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.

We’ll hold on to your information for as long as is needed to be able to provide the services to you.

If reasonably necessary or required to meet legal or regulatory requirements, resolve disputes, prevent fraud and abuse, or enforce our terms and conditions, we may also keep hold of some of your information as required, even after you have stopped subscribing or it is no longer needed to provide the services to you.

Your legal rights

You have a lot of rights relating to your personal information. You have the right to:

Request Access – The right to access the personal information we hold about you. This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it.

Request Correction – The right to request the correction of inaccurate personal information we hold about you

Request Deletion – The right to request that we delete your data, or stop processing it or collecting it, in some circumstances where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal data where we may have processed your information unlawfully or where we are required to erase your personal data to comply with local law. Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.

Request Transfer – The right to request that we transfer or port elements of your data either to you or another service provider. We will provide to you, or a third party you have chosen, your personal data in a structured, commonly used, machine-readable format. Note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.

Object to processing where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground as you feel it impacts on your fundamental rights and freedoms. In some cases, we may demonstrate that we have compelling legitimate grounds to process your information which overrides your rights and freedoms.

Request restriction of processing – This enables you to ask us to suspend the processing of your personal data in the following scenarios: (a) if you want us to establish the data’s accuracy; (b) where our use of the data is unlawful but you do not want us to erase it; (c) where you need us to hold the data even if we no longer require it as you need it to establish, exercise or defend legal claims; or (d) you have objected to our use of your data but we need to verify whether we have overriding legitimate grounds to use it.

Withdraw consent at any time where we are relying on consent to process your personal data. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent.

Cookies

Like any other website, Tin Soldier uses ‘cookies’. These cookies are used to store information including visitors’ preferences, and the pages on the website that the visitor accessed or visited. The information is used to optimize the users’ experience by customizing our web page content based on visitors’ browser type and/or other information.

Children’s information

Another part of our priority is adding protection for children while using the internet. We encourage parents and guardians to observe, participate in, and/or monitor and guide their online activity.

Tin Soldier does not knowingly collect any Personally Identifiable Information from children under the age of 13. If you think that your child provided this kind of information on our website, we strongly encourage you to contact us immediately and we will do our best efforts to promptly remove such information from our records.

Online Privacy Policy Only

This privacy policy applies only to our online activities and is valid for visitors to our website with regards to the information that they shared and/or collect in Tin Soldier. This policy is not applicable to any information collected offline or via channels other than this website.

Changes to this Policy

Any changes we may make to our privacy policy in the future will be provided via an update on our website.

This privacy policy was last updated on 9th Mar 2020.

Consent

By using our website, you hereby consent to our Privacy Policy and agree to its terms.