General Data Protection Policy
Introduction
Beechwood Gardens is committed to complying with the General Data Protection Regulation (GDPR) and protecting the privacy and security of personal data that we process. This GDPR Policy outlines our obligations under GDPR and how we collect, use, and protect personal data.
Definitions
We will only process personal data when we have a lawful basis to do so. The lawful bases we rely on are:
1. Consent: We will obtain explicit consent from the data subject before processing personal data for specific purposes.2. Contract: We will process personal data to fulfill contractual obligations with the data subject. 3. Legal obligation: We will process personal data to comply with legal or regulatory requirements.4. Legitimate interests: We may process personal data to pursue our legitimate interests, provided that they are not overridden by the interests or fundamental rights and freedoms of the data subject. Personal Data we Collect
We may collect the following types of personal data:
We may process personal data for the following purposes:
We may share personal data with third-party processors, such as payment processors or shipping companies, to provide products and services to data subjects. We require these processors to comply with GDPR and take appropriate measures to protect personal data.
Data Subject Rights
Data subjects have the following rights under GDPR:
Data Retention
We will retain personal data only for as long as necessary to fulfill the purposes for which we collected it or as required by law. We may anonymize or delete personal data after it is no longer necessary for its original purpose.
Security
We take appropriate measures to protect the security and confidentiality of personal data. We use industry-standard encryption and other security technologies to prevent unauthorized access, use, or disclosure of personal data.
Data Breach Notification
In the event of a data breach that is likely to result in a risk to the rights and freedoms of data subjects, we will notify the Information Commissioner's Office (ICO) within 72 hours of becoming aware of the breach.
Contact Us
If you have any questions or concerns about this GDPR Policy or our data practices, please contact us at beechwoodgardens@btconnect.com.
Changes to this GDPR Policy
We may update this GDPR Policy from time to time to reflect changes in our data practices or legal requirements. We will notify data subjects of any material changes to this GDPR Policy.
Beechwood Gardens is committed to complying with the General Data Protection Regulation (GDPR) and protecting the privacy and security of personal data that we process. This GDPR Policy outlines our obligations under GDPR and how we collect, use, and protect personal data.
Definitions
- "Personal data" means any information relating to an identified or identifiable natural person.
- "Data subject" means the individual to whom personal data relates.
- "Processing" means any operation or set of operations performed on personal data.
We will only process personal data when we have a lawful basis to do so. The lawful bases we rely on are:
1. Consent: We will obtain explicit consent from the data subject before processing personal data for specific purposes.2. Contract: We will process personal data to fulfill contractual obligations with the data subject. 3. Legal obligation: We will process personal data to comply with legal or regulatory requirements.4. Legitimate interests: We may process personal data to pursue our legitimate interests, provided that they are not overridden by the interests or fundamental rights and freedoms of the data subject. Personal Data we Collect
We may collect the following types of personal data:
- Contact information, such as name, email address, and phone number, when a data subject submits a form on our website or signs up for our newsletter.
- Website usage information, such as IP address, browser type, and pages viewed, when a data subject visits our website.
- Cookies and similar technologies, which may collect information about a data subject's device and browsing activity on our website.
- Purpose of Processing Personal Data
We may process personal data for the following purposes:
- To provide products and services to data subjects, such as responding to inquiries and fulfilling orders.
- To communicate with data subjects, such as sending promotional materials or updates on our products and services.
- To analyze website usage and trends to improve our website design and content.
- To comply with legal and regulatory requirements, such as responding to requests from law enforcement or government authorities.
- Third-party Processors
We may share personal data with third-party processors, such as payment processors or shipping companies, to provide products and services to data subjects. We require these processors to comply with GDPR and take appropriate measures to protect personal data.
Data Subject Rights
Data subjects have the following rights under GDPR:
- The right to access their personal data.
- The right to correct inaccurate or incomplete personal data.
- The right to delete their personal data.
- The right to restrict or object to processing of their personal data.
- The right to data portability.
- Data subjects may exercise these rights by contacting us using the information below.
Data Retention
We will retain personal data only for as long as necessary to fulfill the purposes for which we collected it or as required by law. We may anonymize or delete personal data after it is no longer necessary for its original purpose.
Security
We take appropriate measures to protect the security and confidentiality of personal data. We use industry-standard encryption and other security technologies to prevent unauthorized access, use, or disclosure of personal data.
Data Breach Notification
In the event of a data breach that is likely to result in a risk to the rights and freedoms of data subjects, we will notify the Information Commissioner's Office (ICO) within 72 hours of becoming aware of the breach.
Contact Us
If you have any questions or concerns about this GDPR Policy or our data practices, please contact us at beechwoodgardens@btconnect.com.
Changes to this GDPR Policy
We may update this GDPR Policy from time to time to reflect changes in our data practices or legal requirements. We will notify data subjects of any material changes to this GDPR Policy.