GDPR DATA PROTECTION UPDATE
Parched Tea Bar is committed to ensuring that your privacy is protected. Should we ask you to provide certain information by which you can be identified when using this website, then you can be assured that it will only be used in accordance with this privacy statement. Parched Tea Bar may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes.
Our company is hosted on the Wix.com platform. Wix.com provides us with the online platform that allows us to sell our products and services to you. Your data may be stored through Wix.com’s data storage, databases and the general Wix.com applications. They store your data on secure servers behind a firewall.
2. Parched Tea Bar strictly comply with the requirements laid down by the Data Protection Act 1998, and the Distance Selling Directives and are therefore obliged to ensure that your personal data is kept secure and up to date, and to respect your wishes.
Third-party disclosure - We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information unless we provide users with advance notice. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when it's release is appropriate to comply with the law, enforce our site policies, or protect ours or others' rights, property or safety. However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.
3. You may contact us at any time to request a copy of all data and information we hold on you as a customer.
4. You may also contact us to amend or update your details at any time by calling: 07878122549
5. If you use this site, you are responsible for maintaining the confidentiality of your account and password and for restricting access to your computer, and you agree to accept responsibility for all activities that occur under your account or password. Parched Tea Bar uses “cookies” to collect information.A cookie is a small data file that most major Web sites write to your hard drive for record keeping purposes when you visit them.
9. How do we protect your information?
Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our site as safe as possible.
Fair Information Practices:
The Fair Information Practices Principles form the backbone of privacy law in the European Union and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:We will notify you via email
• Within 7 business days
• Within 72 hours any breaches will be sent to the Information Commisioners Office (UK).
We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
11. If at any time you would like to unsubscribe from receiving future emails, you can email us at firstname.lastname@example.org
and we will promptly remove you from ALL correspondence.
12. Right to Erasure : Under Article 17 of the GDPR individuals have the right to have personal data erased. This is also known as the ‘right to be forgotten’. The right is not absolute and only applies in certain circumstances.
The GDPR specifies two circumstances where you should tell other organisations about the erasure of personal data:
the personal data has been disclosed to others; or
the personal data has been made public in an online environment (for example on social networks, forums or websites).
When does the right to erasure not apply?
The right to erasure does not apply if processing is necessary for one of the following reasons:
to exercise the right of freedom of expression and information;
to comply with a legal obligation;
for the performance of a task carried out in the public interest or in the exercise of official authority;
for archiving purposes in the public interest, scientific research historical research or statistical purposes where erasure is likely to render impossible or seriously impair the achievement of that processing; or
for the establishment, exercise or defence of legal claims.
The GDPR also specifies two circumstances where the right to erasure will not apply to special category data:
if the processing is necessary for public health purposes in the public interest (eg protecting against serious cross-border threats to health, or ensuring high standards of quality and safety of health care and of medicinal products or medical devices); or
if the processing is necessary for the purposes of preventative or occupational medicine (eg where the processing is necessary for the working capacity of an employee; for medical diagnosis; for the provision of health or social care; or for the management of health or social care systems or services). This only applies where the data is being processed by or under the responsibility of a professional subject to a legal obligation of professional secrecy (eg a health professional).
We may require ID. If we have doubts about the identity of the person making the request we can ask for more information. However, it is important that you only request information that is necessary to confirm who they are. The key to this is proportionality. You should take into account what data you hold, the nature of the data, and what you are using it for.You will be notified without undue delay and within one month that we need more information from you to confirm your identity. We reserve the right not to comply with the request until we have received the additional information.
We will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so. We may use your personal information to send you promotional information about third parties which we think you may find interesting if you tell us that you wish this to happen. You may request details of personal information which we hold about you under the Data Protection Act 1998. If you would like a copy of the information held on you please write to us. If you believe that any information we are holding on you is incorrect or incomplete, please write to or email us as soon as possible. We will promptly correct any information found to be incorrect.
Last Edited on 24th May 2018