Privacy Policy

We respect your privacy and want to protect your personal data. 

This privacy policy sets out the basis on which any personal data we collect from you through your entire use of this website, including any information you provide, is used and processed. We will also provide information regarding your privacy rights and how the law protects you. Please read this information thoroughly to understand how and why we are using your data, our views and practices regarding your personal data and how we will treat it. It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.

 

Definitions & Interpretations

Data: Collectively all information that you submit to Bisous Bath Luxuries via the Website. This definition incorporates, where applicable, the definitions provided in the Data Protection Laws;

Data Protection Laws: Any applicable law relating to the processing of Personal Data, including but not limited to the Directive 96/46/EC (Data Protection Directive) or the GDPR, and any national implementing laws, regulations and secondary legislation, for as long as the GDPR is effective in the UK;

GDPR: the General Data Protection Regulation (EU) 2016/679;

Bisous Bath Luxuries: We may mention "Bisous", ‘’Bisous bath luxuries’’, "we", "us" or "our" in this privacy notice, we are referring to the relevant company in Bisous Bath Luxuries responsible for processing your data. Each entity which collects or receives your data under the privacy notice does so as a data controller. Bisous Bath Luxuries if the data controller and responsible for this UK website. This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements, so when visiting or using these services please make sure you are informed of how they also use your information..

User or you: any third party that accesses the Website and is not either (i) employed by Bisous Bath Luxuries and acting in the course of their employment or (ii) engaged as a consultant or otherwise providing services to Bisous Bath Luxuries and accessing the website in connection with the provision of such services

Website: the website that you are currently using and any sub-domains of this site unless expressly excluded by their own terms and conditions.

General:

In this privacy policy, unless the context requires a different interpretation:

a. the singular includes the plural and vice versa;

b. references to sub-clauses, clauses, schedules or appendices are to sub-clauses, clauses, schedules or appendices of this privacy policy;

c. a reference to a person includes firms, companies, government entities, trusts and partnerships;

d. "including" is understood to mean "including without limitation";

e. reference to any statutory provision includes any modification or amendment of it;

f. the headings and sub-headings do not form part of this privacy policy

 

The data we collect about you

• Identity Data: title, first name, maiden name, surname name, username, date of birth, gender and marital status.

 • Contact Data: billing address, delivery address, email address and contact numbers.  

• Profile Data: username and password, purchases or orders made by you, your interests, preferences, feedback and survey responses.

• Transaction Data: Payment details and transaction history with us.

• Technical Data: internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website and how you use our website, products and services.

• Marketing and Communications Data: you preferences in receiving marketing from us

 

How your personal data is collected

Data is collected by either: data that is given to us by you and data being collected automatically. In each case, it is in accordance with this privacy policy.

Data that is given to us by you:

Bisous Bath Luxuries will collect your Data in a number of ways, for example:

• When you contact us through the Website, by telephone, post, e-mail or through any other means;

• When you register with us and set up an account to receive our products/services;

• When you make payments to us, through this website or otherwise;

• When you select to receive marketing communications from us;

Data that is collected automatically:

To the extent that you access the website, we will collect your data automatically, for example:

We automatically collect data about your visit to our website to help us to make improvements to website content and navigation. This data includes your IP address, the date, times and frequency with which you access the website and the way you use and interact with its content.

 

How we use your personal data

We will only use your personal data when the law allows us to and we will never sell your data to third parties. Most commonly, we will use your personal data in the following circumstances:

Where we need to perform the contract we are about to enter into or have entered into with you.

 Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.

Where we need to comply with a legal or regulatory obligation.

Purposes for using personal data:

 • To register you as a new customer

• To process and deliver your order for products or services, including to manage payments, fees and charges & collect money owed to us

• To manage our relationship with you which, including notifying you about changes to our terms or privacy policy & asking you to leave a review or take a survey

• To enable you to partake in a prize draw, event, competition or complete a survey

• To administer and protect our business and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data)

• To deliver relevant website content to you and measure or understand the effectiveness of the marketing we serve to you

• To use data analytics to improve our website, products/services, marketing, customer relationships and experiences

• To make suggestions and recommendations to you about goods or services that may be of interest to you

• To carry out email marketing and send you marketing communications by email. Such communications will include information about the products, services, events, offers and promotions we offer from time to time.

If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.

Please note that we may process your personal data without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.

 

Who we share data with

We may share your Data with the following groups of people for the following reasons:

Our employees, agents and/or professional advisors- in order to print and send orders and reset any details if unable to access your personal account; in each case, in accordance with this privacy policy.

They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

 

Data Security

We will use technical and organisational measures to safeguard your Data, for example:

• Access to your account is controlled by a password and a user name that is unique to you.

• We store your Data on secure servers.

• Technical and organisational measures include measures to deal with any suspected data breach. If you suspect any misuse or loss or unauthorised access to your data, please let us know immediately by contacting us.

• We regularly monitor our system for possible vulnerabilities and attacks, and we carry out vulnerability testing to identify ways to further strengthen security.

• We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

 

Data Retention

Unless a longer retention period is required or permitted by law, we will only hold your data on our systems for the period necessary to fulfil the purposes outlined in this privacy policy or until you request that the data be deleted or anonymised. If data is anonymised it will be non-identifiable and used for only business improvements and decisions. However, even if we delete your data, it may persist on backup or archival media for legal, tax or regulatory purposes.

 

Your legal rights

You have the following rights in relation to your Data:

• Right to access - the right to request copies of the data we hold about you at any time, or that we modify, update or delete such information. If we provide you with access to the information we hold about you, we will not charge you for this, unless your request is "manifestly unfounded or excessive." Where we are legally permitted to do so, we may refuse your request. If we refuse your request, we will tell you the reasons why.

• Right to correct - the right to have your Data rectified if it is inaccurate or incomplete.

• Right to erase - the right to request that we delete or remove your data from our systems.

• Right to restrict our use of your Data - the right to "block" us from using your data or limit the way in which we can use it.

• Right to data portability - the right to request that we move, copy or transfer your data.

• Right to object - the right to object to our use of your Data including where we use it for our legitimate interests.

To make enquiries, exercise any of your rights set out above, or withdraw your consent to the processing of your data (where consent is our legal basis for processing your Data), please contact us via email.

If you would like to make a complaint you make in relation to how your data is handled by us, you may be able to refer your complaint to the relevant data protection authority. For the UK, this is the Information Commissioner's Office (ICO). The ICO's contact details can be found on their website at https://ico.org.uk/.

It is important that the data we hold about you is accurate and current. Please keep us informed if your Data changes during the period for which we hold it.