Please read the following carefully to understand our views and practices regarding your sensitive information and how we will deal with it. For the purposes of the Data Protection Act (‘the DPA’) and the EU General Data Protection Regulation (‘the GDPR’), sensitive information includes what is defined as your ‘personal data’.
Who we are
Our website address is: https://www.thosethatknow.co.uk
What personal data we collect and why we collect it
When you submit an order on our website we collect the data necessary for us to process your order. This includes your name, address, contact details and the products you have ordered.
Neither of these services receive or store data relating to the usage of our website or the personal information of our users.
If you sign up for an account on our website we collect basic personal information including your name and email address.
If you submit an enquiry through our website the information you enter into the form is sent to us. We only collect the basic information required to establish the nature of your enquiry and to give a means of responding to you.
If you sign up to our email newsletter we will collect your email address. We will store your email address on our mailing list permanently or until your tell us you’d like it to be removed.
Every email we send will contain a link you can use to visit a page that allows you to update your preferences and unsubscribe to our list.
Our emails are delivered to you using MailChimp and you can view how MailChimp handle your personal data by visiting their website here.
Embedded content from other websites
Pages on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
We use Google Analytics to anonymously track usage of our website. We use data from Google Analytics to improve our services. The data we collect is not personally identifiable.
The information we collect includes:
Including the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform.
Information about your visit
This includes the full Uniform Resource Locators (URL), clickstream to, through and from our Website (including date and time), pages you have visited, page response times, download errors, length of visits to certain page and page interaction information (such as scrolling, clicks, and mouse-overs).
Who we share your data with
The information and content held on our Website is deployed geographically to maximise user experience. All information that could identify individuals within the European Union is stored exclusively within the European Union. We will never share your user information with third parties for promotional purposes.
We collect information about you during the checkout process at our store. While you visit our site, we’ll track:
- Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
- Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
- Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!
When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:
- Send you information about your account and order
- Respond to your requests, including refunds and complaints
- Process payments and prevent fraud
- Set up your account for our store
- Comply with any legal obligations we have, such as calculating taxes
- Improve our store offerings
- Send you marketing messages, if you choose to receive them
If you create an account, we will store your name, address, email and, optionally, your phone number, which will be used to populate the checkout for future orders.
We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, we will store order information for seven (6) years for tax and accounting purposes. This includes your name, email address and billing and shipping addresses.
Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:
- Order information like what was purchased, when it was purchased and where it should be sent, and
- Customer information like your name, email address, and billing and shipping information.
Our team has access to this information to help fulfil orders, process refunds and support you.
We use MailChimp to provide email marketing services. When you sign up for our mailing list, your email address will be stored on MailChimp’s servers. Our marketing emails will only ever be sent to customers who have explicitly agreed to receive them.
If you no longer wish to receive emails from us, you can use the unsubscribe link at the bottom of any email we send to completely remove yourself from our mailing list.
MailChimp provides analytics that allows us to see which of our mailing list subscribers have taken action on emails we send. This includes opening the email, clicking a link in the email and unsubscribing from our list. These analytics are used only to measure the success of our mailing list campaigns.
When you subscribe to our mailing list during the checkout process on our website, the details of your order are linked to your profile.
In order for Google Analytics to determine that two distinct hits belong to the same user, a unique identifier, associated with that particular user, must be sent with each hit.
The analytics.js library accomplishes this via the Client ID field, a unique, randomly generated string that gets stored in the browsers cookies, so subsequent visits to the same site can be associated with the same user.
Using cookies allows analytics.js to identify unique users across browsing sessions, but it cannot identify unique users across different browsers or devices.
Persistent marketing and analytics cookies
These cookies contain a unique user ID which will enable Klarna to recognize the user’s device the next time that the user returns to a merchant using Klarna’s services. These are persistent cookies, stored on the device for a period of up to 540 days as of the last interaction with Klarna, or until they are deleted and allow Klarna (i) to show personalized marketing of Klarna products, including credit promotions to the user, and (ii) to perform analytics of the user behaviour.
By connecting the unique user ID stored in the cookie on the device to the information Klarna has about the user, Klarna will be able to recognize the user of that device. The information Klarna collects through the cookies is not shared with any third party.
The user’s consent and revocation of consent
Klarna Bank AB (publ) is subject to Swedish Data Protection legislation and is the data controller for the purpose of processing the personal data as described above. Klarna has a data protection officer and a team consisting of personal data experts. Klarna also has a customer service team handling questions relating to personal data. You are welcome to contact Klarna at [email protected] Please visit www.klarna.com for more information about Klarna, and how Klarna processes personal data.
How long we hold your information for
We store information about orders for a period of time necessary to comply with accounting, business and tax law in the UK.
We have procedures in place to regularly review every twelve months what personal data we hold. If you have not interacted with us or accessed our services during this or the subsequent period then we will delete your personal data from our systems, but will send you an email first informing you of our intention to do so. Of course, you have the right to be forgotten at any point and can find out more about this in the ‘What rights you have over your data’ section below.
How we protect your data
We have security measures in place to protect our website and your data. These include:
- A web application firewall and login protection to prevent malicious access to our website
- Daily security scans and 24/7 monitoring in place to detect issues before they become problems
- Timely updates to software including security fixes
- Daily backups of all website files and data, kept for one month then deleted
What data breach procedures we have in place
Should we be subject to a data breach we will contact any person whose personally identifiable data has been compromised and inform them within 48 hours of the breach.
A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer if you agree. Cookies contain information that is transferred to your computer’s hard drive.
This section describes what cookies are and what their use means to you. At the end, we’ve included some links to help you research cookies and their impact, and how you can use your web browser to control the way it manages cookies.
We use the following types of cookies:
- Strictly necessary cookies – these are cookies that are required for the operation of our Website. They include, for example, cookies that enable you to log into secure areas of our Website, use a shopping cart or make use of an e-payment system.
- Analytical/performance cookies – These allow us to recognise and count the number of visitors and to see how visitors move around our Website when they are using it. This helps us to improve the way our Website works, for example, by ensuring that users are finding what they are looking for easily.
More information about cookies
If you’d like to find out more about cookies and their use, the website All About Cookies provides more information about what they are and how they work.
What rights you have over your data
You have the right to find out what information we hold about you. You can exercise that right by contacting us and we will send you any request for information in a suitable electronic form within 30 days. To make a request for information please contact [email protected] and a member of our team will be in touch.
If your personal data is incorrect then you have the right to rectify this information and ensure that it is accurate and up to date. If your data is incorrect then please contact us at the email address above and a member of the team will rectify this on your behalf.
You have the right to be forgotten and to have your personally identifiable information permanently deleted from our systems. Again, if you would like to exercise this right then please contact us at [email protected].
There will be no charge made for reasonable electronic access to your information, your right to rectification or for your right to be forgotten from our systems.
Our contact information