Shop Policies

Privacy Policy

The information we collect:

​Online Sales:

To fulfil shop orders we collect your email address, your name and your delivery address.  As all payments are processed via PayPal we do not store any bank or card details (please refer to Paypal’s Privacy Policy for further information).

Direct Sales:

If you shop with us at an event we use Izettle or SumUp card readers to process card payments.  We do not collect or store any personal or card details, these are held and processed by Izettle or SumUp (please refer to Izettle/SumUp’s individual Privacy Policies for further information).

Newsletters, Clubs and Promotions:

We use Shoutout to prepare and send an e-mail newsletter.  When you provide your email address to subscribe your consent is implied to receive marketing emails and we promise we will send no more than 2 marketing emails per month, you can of course choose to unsubscribe from these emails at any time using the Unsubscribe feature at the bottom of the email newsletter. 

Why do we need this information and how is it used?

​Your name and delivery address is used solely to allow us to process your order when you shop online.  We will only pass this information to Royal Mail or a courier company as required to deliver your order.

If we run a giveaway via social media we will request the winners name and address to send the giveaway item and we will destroy any records of this other than those that are required for accounting purposes. 

We use your email address if we need to contact you about an order or to send invoices for yarn clubs or special promotions such as our advent calendar payment scheme (if applicable). We will also use your email address if you have specifically given it to us in order to sign up for our email newsletter, but we will only use it for the purposes of sending these newsletters. 

We will not provide your email address or personal details to anyone else without your knowledge and consent and we will never sell email addresses to any third party organisations.

 

How is your data stored?

​All of your data is stored on secured private devices (laptop/desktop pc or mobile phone) which are protected by password or finger print. These devices are not shared with any person unaffiliated with our business. Regular reviews of information held will be conducted and anything no longer required for accounting purposes will be deleted from digital files and if a hard copy is present it will be shredded.

 

Occasionally we offer clubs and special pre-orders.  If these are purchased through the website then we do not collect any information other than that already stated.  We may occasionally use Google Forms for bookings for workshops in which case, your email address and name are stored in private Google Forms. These forms are only kept for the duration of the event and are then deleted. If we need to hold Google forms for longer than usual, for example, to form a waiting list we will notify you that we are holding your details in this manner and you will be given the option to have your details removed from the forms.  All of our spreadsheets are password protected.  Please refer to Google’s Privacy Policy for further information.

​Your order/payment details are stored with PayPal, Izettle or Sumup.  To process your order PayPal provide us with: your registered email address, your registered delivery address and your name or business name (for business accounts). Izettle and Sumup do not provide us with any such personal information.  We do not have access to any of your bank or card details through PayPal, Izettle or Sumup, Please refer to PayPal/Izettle/SumUps individual Privacy Policies for further information.​

​Our website is powered by Wix. Your order information such as your name, address and email address are all stored within our Wix account. Access to our Wix account is password protected. Please refer to Wix Privacy Policy for further information.

We have an email account through our domain provider Webmail and Gmail where we store all correspondence with customers/order details.  Once we consider that emails are no longer relevant we delete them.  All email accounts are password protected. Please refer to Webmail/Gmail individual Privacy Policies for further information.

​We also use Etsy for some sales, any personal information provided through Etsy is only used for the purposes of processing orders as per our website sales.  Etsy is also password protected. Please refer to Etsy’s Privacy Policy for further information.

How long do we keep your information?

​Information that is required for accounting purposes is held for six years then will be shredded.  Email addresses are held as long as required for purposes of yarn clubs or special promotions.  In relation to our Newsletter your email address is held digitally until you choose to unsubscribe.  When email conversations are considered no longer relevant these are deleted (these are held no longer than 6 months).

Your rights

​If you wish to have any of your personal data amended or deleted please contact us by email info@giddyauntyarns.com. Please state GDPR in the email title.

You can unsubscribe from our email newsletter using the link at the bottom of the email, if you have previously made a purchase you will however still be registered as a customer of the website unless you request deletion.

Please note order information required for accounting purposes is held for six years and cannot be deleted in line with accounting regulations.

Data Breaches

In the event we encounter a data breach we will contact any affected persons to advise of the nature of the breach and any likely consequences. 

We are happy to answer any other queries you may have in relation to your privacy if you wish to contact us by email.

​By ordering from our website, PayPal invoice or in person at an event, or by use of email or completing Google forms, you are choosing to agree with our Privacy Policy.