Prezzybox.com takes the privacy of its customers seriously and is committed to the following policy.
Prezzybox.com Limited (“Prezzybox”, “we”, “us”, “our”) of Hollybank Farm House, No Mans Heath Lane, Austrey, Warwickshire, CV9 3EW are committed to the protection of the personal data we process in line with the data protection principles set out in the UK and EU General Data Protection Regulation (“GDPR”) and the Data Protection Act 2018 (“DPA18”).
This privacy notice explains what personal data Prezzybox collects from individuals who visit the Prezzybox website, contact us using our web forms, by email, phone or through one of our social channels; or other marketing communications (“you”, “your”). It also explains what information we collect automatically when you visit our website.
Prezzybox is the data controller for the purposes of the GDPR in instances where you make any form of enquiry with us, registered in the UK with the Information Commissioner’s Office, registration number Z9389651.
As an information-led business, we place great importance on ensuring the quality, confidentiality, integrity, and availability of the data we hold and in meeting our data protection obligations when processing personal data. Prezzybox are also committed to protecting the security of your personal data. We use a variety of technical and organisational measures to help protect your personal data from unauthorised access, use or disclosure.
We update this privacy notice from time to time in response to changes in applicable laws and regulations, to our processing practices, and to the products and services we offer. When changes are made, we will update the date at the top of this document. Please review this privacy notice periodically to check for updates.
What information do we process?
Information you provide to us
We process all information you give to us, either through our website (“our site”) or by corresponding with us by telephone, email or otherwise. This includes information you provide when you use our site, make a purchase, subscribe to a service, search for a product or service, use the social media functions linked to our site, or when you report a problem with our site.
- Full name
- Email address
- Telephone number
- Delivery address
- Billing address
We may use these details to contact you about your order or enquiry, if necessary.
We may also monitor or record telephone calls for training and quality purposes. Call recordings are retained in accordance with the Prezzybox Personal Data Retention and Destruction Policy and Schedule.
Cookies and Web Beacons
For users who have consented to receiving marketing emails, we use web beacons to monitor the performance of campaigns and send you the most relevant special offers. A web beacon allows us to see when you have opened an email from us, provides information about the type of device you are using and from where you are viewing. This allows us so to better tailor marketing content to our users' needs.
When you consent to receiving marketing emails from us, we collect the IP address of the device used, as well as the date and time of registration, which allows us to maintain an accurate register of when consent to marketing was provided.
To learn more about cookies, web beacons and what you can do to opt out of receiving them, please view our Cookies Notice here.
Purposes and bases for processing your personal data
We may use your data for the following purposes and on the following lawful bases:
||Lawful Bases for Processing
|Responding to correspondence from you
||It is our legitimate interest to respond to enquiries made via our website, by email, through our social channels or any other means
|Sending you information such as Prezzybox news and information which may be of interest
||When you agree to be contacted for marketing, we will rely on your consent, which may be withdrawn at any time by emailing firstname.lastname@example.org
|Maintaining and improving consistently high standards of customer care
||It is our legitimate interest to monitor and record telephone calls in and out of our customer service centre to ensure compliance with company call-handling procedures and protocols
|Business management, forecasting and statistical purposes
||It is our legitimate interest to identify areas for managing current business relationships, develop new products and services, and for managing our business
|Improving our website and the overall website visitor and user experience
||It is our legitimate interest to allow analytics and search engine providers to help improve and personalise the user experience and to optimise our website
|Improving our website and the overall website visitor and user experience
Sharing your information
We will rarely share your personal data outside the United Kingdom (UK) or the European Economic Area (EEA). If it becomes necessary for the purposes of providing our services to you, we will only share it where appropriate safeguards are in place to ensure your personal data is protected to the same standard expected within the UK and EEA.
Our website includes links to our five social media platforms (Facebook, Twitter, Instagram, Pinterest and YouTube). Once you navigate away from our site via one of the links, the next site may collect your IP address and may set a cookie on your device. When you use one of these links, you are sharing information to another website or service and this privacy notice will no longer apply. Please read the privacy notices provided by the particular service website you are directed to before posting any personal information using these links.
The GDPR provides you with certain rights in relation to the processing of your personal data, including to:
- Request access to personal data about you (commonly known as a “data subject access request”). This enables you to receive a copy of the personal data we hold about you, and to check that we are processing it lawfully.
- Request rectification, correction, or updating to any of the personal data that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
- Request personal data provided by you to be transferred in machine-readable format (“data portability”).
- Request erasure of personal data. This enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove personal data where you have exercised your right to object to processing (see below).
- Request the restriction of processing of your personal data. This enables you to ask us to suspend the processing of personal data about you (e.g. if you want us to establish its accuracy or the reason for processing it).
- Object to the processing of your personal data in certain circumstances. This right may apply where the processing of your personal data is based on the legitimate interests of Prezzybox.
Some of these rights are not absolute and are subject to various conditions under applicable data protection and privacy legislation, laws, and regulations to which we are subject. If at any time you decide that you no longer wish to be contacted for marketing purposes, or if you would like to exercise any of your rights as set out above, you can contact us at email@example.com. You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.
In addition to the above, please note that you have the right to make a complaint at any time to the Information Commissioner’s Office if you are concerned about the way in which we are handling your personal data.
Data retention period
We will retain your personal data for as long as is necessary to provide you with our products and ongoing services and for a reasonable period thereafter, to enable us to meet our contractual and legal obligations and to deal with complaints and claims.
At the end of the retention period, your personal data will be securely deleted in accordance with the Prezzybox Personal Data Retention and Destruction Policy and Schedule.
You can contact Prezzybox in relation to data protection and this privacy notice by emailing firstname.lastname@example.org.