1. Policy Statement
1.2 Slater Menswear (trading as Slaters) (we, us, our) is a registered data controller under the terms of data protection legislation, and we are responsible for protecting the personal data we gather about you. Details of our notification to the data protection regulator may be found in the Information Commissioner’s Office Public Register of Data Controllers at www.ico.gov.uk under registration number Z589692. Our registered office address is at 165 Howard Street, Glasgow.
2. General Information
3. What information do we collect?
3.1 When you register to use our services and/or our sites we may ask you to provide certain information.
3.2 When you place an order for goods we will request your name, billing address, delivery address, email address, contact number, company name (if relevant) and payment details. If you do not provide us with the fields which are marked with an asterisk in the order form we will not be able to process your order. You do not need to fill in the fields which do not have an asterisk (such as your company name and telephone number) but it will help us to process your order if you do. Our website will work best if you sign up for an account with us rather than checking out as a guest as for example we will be able to display details of your previous orders.
3.3 When you register to use our in store Wi-Fi you will need to either enter a valid email address or log in using a social media account. If you do not provide an email address or a social media account we will not be able to give you access to the Wi-Fi, as we need to be able to identify you as a user of Wi-Fi to meet our legal obligations.
3.4 When you register for Wi-Fi and where you have indicated that you would like to:
(a) receive updates, we may send marketing to this email address to tell you about developments in the services available through the Wi-Fi system;
(b) receive marketing from us (including personalised marketing), we shall use your registration details (including your email address) and social media account information if you login this way or provide these details to us, and we will use any personal preferences which you have told us about, so we can provide information on products and services which we think will be of interest to you. For example, we might access your birthday from Facebook (if it is set to public information) so that we can send you a special message on your birthday.
3.5 If you choose to login to the Wi-Fi using a social media account, we will obtain access to your public profile information and email address. We will use this information to allow you to login and to identify you to meet our legal requirements. If you have consented, we will also use this information for marketing purposes. If you give us permission (via the relevant social media site's preference settings) we may also obtain access to your friends/contact list; we will only use this to see if people on your friends/contact list are also using our website.
4. What do we use your information for?
We may use your information for the following purposes:
(a) in the normal course of our business, to allow us to register you to receive our services and to provide you with our services on the basis that processing is necessary in order to perform our contract with you to provide our services;
(b) to allow us to manage your account on the basis that processing is necessary in order to perform our contract with you to provide our services;
(c) to allow us to analyse your personal preferences and personalise our services to you on the basis that you have consent to such processing separately;
(d) to store your data to pre-populate fields to make it easier for you to provide information when you return to our sites on the basis that you have consent to such processing separately;
(e) to communicate with you, including sending you information about products and services which we think may be of interest to you on the basis that you have consented to such processing separately. You will be able to opt-out of such communications at any time by using the unsubscribe option on email communication from us, by emailing us at firstname.lastname@example.org or by managing your account preferences;
(f) to validate your information (and, in some cases, match it against information that has been collected by a third party such as Experian) to check that the data we hold about our customers/users is accurate, consistent and up to date on the basis that processing is necessary in order to perform our contract with you to provide our services; and
(g) to comply with any legal obligations to which we are subject.
4.2 We shall periodically check that the personal data we store for you is accurate. If you would like to update the personal data we hold about you, please contact us on email@example.com with your request.
4.3 The provision of the information fields marked with an asterisk in the order form is mandatory if you are to receive our services. If you fail to provide such data we shall be unable to provide our services. Likewise to use our in store Wi-Fi you must provide a valid email address or log in via your social media account.
5. Who do we share your information with?
5.1 In order to deliver services to you, we are required to share your personal data with our service providers, suppliers and third party partners, who process and store data on our behalf and only in accordance with our instructions in compliance with data protection laws.
5.2 We may also share your personal data with third parties:
(a) in the event that we, our business, or substantially all of its assets are acquired by a third party (in which case personal data about customers will be one of the transferred assets) - if this happens, you will be notified;
(b) if we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply any contract with you; or to protect our rights, property, or safety of our employees, customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction; and
(c) where we are required to process your online order with payment service providers.
6. How long do we store your personal data for?
6.1 We only store your personal data for as long as necessary for the purposes listed in paragraph 3.
7. What are your rights?
7.1 Access to your personal data: You may request access to a copy of your personal data.
7.2 Right to withdraw: Where you have given your consent for us to use your personal data you may withdraw your consent at any time. Please contact us using the details located at section 13 of this policy if you would like to withdraw your consent and we will delete your data in line with your right to erasure at 7.4 below.
7.3 Rectification: You may ask us to rectify inaccurate information held about you. If you would like to update the data we hold about you, please contact us using the details below and provide the updated information or log on to your profile at slaters.co.uk and update your information.
7.4 Erasure: You may ask us to delete your personal data. If you would like us to delete the personal data we hold about you, please contact us using the details below, specifying why you would like us to delete your personal data.
7.5 Portability: You may ask us to provide you with the personal data that we hold about you in a structured, commonly used, machine readable form, or ask for us to send such personal data to another data controller.
7.7 Make a complaint: You may make a complaint about our data processing activities to our customer services team below and/ or to a supervisory authority, for the UK this is the Information Commissioner's Office, at ico.org.uk.
8. Cookies policy
8.1 The primary purpose for collection data from your visits is to allow us to provide a smooth efficient and personalised experience while using our store.
These are cookies that we use to remember your log in details and what you’ve added to your basket. These are 100% necessary to ensuring the website functions correctly and that you can make purchases. More info: http://www.allaboutcookies.org/cookies/session-cookies-used-for.html
Google Analytics is used to track visits and orders places. It also helps us attribute traffic and sales to third party advertising. This cookie is triggered upon arriving on slaters.co.uk. More info: http://www.google.com/policies/privacy/ads/
AdWords Tracking code is used to track visits and orders place from advertising on Google’s search and display network. This cookie is triggered when a user visits and makes a purchase via Google’s sponsored ads and is triggered on the confirmation page. More info: http://www.google.com/policies/privacy/ads/
These are cookies which are the trigger to allow you to share pages, products via social networks.
Additionally, when you use our in store Wi-Fi some of your personal data may also be derived from cookies within the Wi-Fi system, which are required for the functioning of the service. If you disable cookies, the service will not be able to operate. The Wi-Fi system uses a temporary cookie file named “PHPSESSID” which is required for the functioning of the service. This is a cookie that establishes a user session and reflects the status of that session and is removed from your device once your session expires. This cookie does not store any sensitive user data and is not used for tracking users’ activity. Where social media logins are used, cookies may be used by these third parties; likewise websites and apps which are viewed whilst connected to the Wi-Fi may use their own cookies and analytics services, but these are all independent of the Wi-Fi system provided by Slater Menswear. Please review these third party policies before using these third party website or apps.
9. Fair Processing
9.1 We are committed to using your personal data fairly and would like you to be aware of the following:
(a) We do not transfer or store your data out with the EEA;
(c) If you visit us in store please be aware that we have CCTV in operation to ensure the safety and security of our premises, staff and customers.
10. Security and Data Storage
We will treat all of your information in strict confidence and we will endeavour to take all reasonable steps to keep your personal data secure once it has been transferred to our systems. We adopt appropriate data collection, storage and processing practices and security measures to protect against unauthorised access, alteration, disclosure or destruction of your personal data, and data stored on the [website/app] and associated database.
All online purchases made through our sites take place safely, using the latest internet security technology to protect our customers. We encrypt your entire transaction including your credit card information to ensure your purchases with us are private and protected as they travel to us via the internet. Our transactions are processed using Braintree which is fully PCI DSS compliant. We accept orders only from web browsers that can use Secure Socket Layer (SSL) technology - this means you cannot inadvertently place an order through an unsecured connection. Most web browsers now support this. Your payment details are held in an encrypted format until we process your order and we do not hold or store your credit card information. This additional level of encryption makes it virtually impossible for unauthorised parties to read any information that you send us. The site is thawte assured, which is an independent hallmark and is industry standard security.
If you have questions regarding our credit card security policies, please email us at firstname.lastname@example.org. Please note that the internet is not a secure medium and we cannot guarantee the security of any data you disclose online. You accept the inherent security risks of providing information and dealing online over the Internet and will not hold us responsible for any loss or damage that you incur.