Privacy Policy

Please choose below the privacy policy relevant to the country you are in. Thank you

Privacy Policy UK

This privacy statement was last updated on June 19, 2020 and applies to citizens of the United Kingdom.

In this privacy statement, we explain what we do with the data we obtain about you via https://www.hebrideanteastore.co.uk. We recommend you carefully read this statement. In our processing we comply with the requirements of privacy legislation. That means, among other things, that:

  • we clearly state the purposes for which we process personal data. We do this by means of this privacy statement;
  • we aim to limit our collection of personal data to only the personal data required for legitimate purposes;
  • we first request your explicit consent to process your personal data in cases requiring your consent;
  • we take appropriate security measures to protect your personal data and also require this from parties that process personal data on our behalf;
  • we respect your right to access your personal data or have it corrected or deleted, at your request.

If you have any questions, or want to know exactly what data we keep of you, please contact us.

1. Purpose, data and retention period

1.1 We use your data for the following purpose:

Contact - Through phone, mail, email and/or webforms

For this purpose we use the following data:

  • Name, Address and City
  • Email address
  • Telephone number

The basis on which we may process these data is:

Consent obtained

Retention period

We retain this data upon termination of the service for the following number of months: 6

1.2 We use your data for the following purpose:

Registering an account

For this purpose we use the following data:

  • Name, Address and City
  • Email address

The basis on which we may process these data is:

Consent obtained

Retention period

We retain this data upon termination of the service for the following number of months: 6

1.3 We use your data for the following purpose:

Newsletters

For this purpose we use the following data:

  • Name, Address and City
  • Email address

The basis on which we may process these data is:

Consent obtained

Retention period

We retain this data until the service is terminated.

1.4 We use your data for the following purpose:

To support services or products that a customer wants to buy or has purchased

For this purpose we use the following data:

  • Name, Address and City
  • Email address

The basis on which we may process these data is:

Consent obtained

Retention period

We retain this data upon termination of the service for the following number of months: 6

1.5 We use your data for the following purpose:

To be able to comply with legal obligations

For this purpose we use the following data:

  • Name, Address and City
  • Email address

The basis on which we may process these data is:

Consent obtained

Retention period

We retain this data upon termination of the service for the following number of months: 6

1.6 We use your data for the following purpose:

Compiling and analyzing statistics for website improvement.

For this purpose we use the following data:

  • Location
  • Visitor behavior

The basis on which we may process these data is:

Consent obtained

Retention period

We retain this data upon termination of the service for the following number of months: 6

2. Cookies

Our website uses cookies. For more information about cookies, please refer to our Cookie Policy

We have concluded a data processing agreement with Google.

Google may not use the data for any other Google services.

The inclusion of full IP addresses is blocked by us.

3. Security

We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorised access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.

4. Third party websites

This privacy statement does not apply to third party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.

5. Amendments to this privacy statement

We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.

6. Accessing and modifying your data

If you have any questions or want to know which personal data we have about you, please contact us. You can contact us by using the information below. You have the following rights:

  • You have the right to know why your personal data is needed, what will happen to it, and how long it will be retained for.
  • Right of access: You have the right to access your personal data that is known to us.
  • Right to rectification: you have the right to supplement, correct, have deleted or blocked your personal data whenever you wish.
  • If you give us your consent to process your data, you have the right to revoke that consent and to have your personal data deleted.
  • Right to transfer your data: you have the right to request all your personal data from the controller and transfer it in its entirety to another controller.
  • Right to object: you may object to the processing of your data. We comply with this, unless there are justified grounds for processing.

Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person.

7. Submitting a complaint

If you are not satisfied with the way in which we handle (a complaint about) the processing of your personal data, you have the right to submit a complaint to the Information Commissioner's Office:

Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

8. Children

Our website is not designed to attract children and it is not our intent to collect personal data from children under the age of consent in their country of residence. We therefore request that children under the age of consent do not submit any personal data to us.

9. Contact details

Hebridean Tea Store
22 Cromwell Street
Stornoway
Eilean Siar
HS1 2DD
United Kingdom
Website: https://www.hebrideanteastore.co.uk
Email: shop@hebrideanteastore.scot
Phone number: 08002289294

We have appointed a representative within the United Kingdom. If you have any questions or requests with respect to this privacy statement or for our representative, you may contact Sabine Weiten, via shop@hebrideanteastore.scot or by telephone on 08002289294.

Annex

We collect information about you during the checkout process on our store.

What we collect and store

While you visit our site, we’ll track:
  • Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
  • Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
  • Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!
We’ll also use cookies to keep track of basket contents while you’re browsing our site.When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:
  • Send you information about your account and order
  • Respond to your requests, including refunds and complaints
  • Process payments and prevent fraud
  • Set up your account for our store
  • Comply with any legal obligations we have, such as calculating taxes
  • Improve our store offerings
  • Send you marketing messages, if you choose to receive them
If you create an account, we will store your name, address, email and phone number, which will be used to populate the checkout for future orders.We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, we will store order information for 6 years for tax and accounting purposes. This includes your name, email address and billing and shipping addresses.We will also store comments or reviews, if you choose to leave them.

Who on our team has access

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:
  • Order information like what was purchased, when it was purchased and where it should be sent, and
  • Customer information like your name, email address, and billing and shipping information.
Our team members have access to this information to help fulfill orders, process refunds and support you.

What we share with others

In this section you should list who you’re sharing data with, and for what purpose. This could include, but may not be limited to, analytics, marketing, payment gateways, shipping providers, and third party embeds.

We share information with third parties who help us provide our orders and store services to you; for example --

Payments

We accept payments through PayPal. When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the purchase total and billing information.Please see the PayPal Privacy Policy for more details.We also accept payments through FIS Worldpay. When processing payments, some of your data will be passed to FIS Worldpay, including information required to process or support the payment, such as the purchase total and billing information.Please see the FIS Worldpay Privacy Policy for more details.Other PluginsReally Simple SSL and Really Simple SSL add-ons do not process any personal identifiable information, so the GDPR does not apply to these plugins or usage of these plugins on your website. You can find our privacy policy here

Really Simple SSL

Really Simple SSL and Really Simple SSL add-ons do not process any personal identifiable information, so the GDPR does not apply to these plugins or usage of these plugins on your website. You can find our privacy policy here.

Privacy Policy EU

This privacy statement was last updated on June 19, 2020 and applies to citizens of the European Economic Area.

In this privacy statement, we explain what we do with the data we obtain about you via https://www.hebrideanteastore.co.uk. We recommend you carefully read this statement. In our processing we comply with the requirements of privacy legislation. That means, among other things, that:

  • we clearly state the purposes for which we process personal data. We do this by means of this privacy statement;
  • we aim to limit our collection of personal data to only the personal data required for legitimate purposes;
  • we first request your explicit consent to process your personal data in cases requiring your consent;
  • we take appropriate security measures to protect your personal data and also require this from parties that process personal data on our behalf;
  • we respect your right to access your personal data or have it corrected or deleted, at your request.

If you have any questions, or want to know exactly what data we keep of you, please contact us.

1. Purpose, data and retention period

1.1 We use your data for the following purpose:

Contact - Through phone, mail, email and/or webforms

For this purpose we use the following data:

  • Name, Address and City
  • Email address
  • Telephone number

The basis on which we may process these data is:

Consent obtained

Retention period

We retain this data upon termination of the service for the following number of months: 6

1.2 We use your data for the following purpose:

Registering an account

For this purpose we use the following data:

  • Name, Address and City
  • Email address

The basis on which we may process these data is:

Consent obtained

Retention period

We retain this data upon termination of the service for the following number of months: 6

1.3 We use your data for the following purpose:

Newsletters

For this purpose we use the following data:

  • Name, Address and City
  • Email address

The basis on which we may process these data is:

Consent obtained

Retention period

We retain this data until the service is terminated.

1.4 We use your data for the following purpose:

To support services or products that a customer wants to buy or has purchased

For this purpose we use the following data:

  • Name, Address and City
  • Email address

The basis on which we may process these data is:

Consent obtained

Retention period

We retain this data upon termination of the service for the following number of months: 6

1.5 We use your data for the following purpose:

To be able to comply with legal obligations

For this purpose we use the following data:

  • Name, Address and City
  • Email address

The basis on which we may process these data is:

Consent obtained

Retention period

We retain this data upon termination of the service for the following number of months: 6

1.6 We use your data for the following purpose:

Compiling and analyzing statistics for website improvement.

For this purpose we use the following data:

  • Location
  • Visitor behavior

The basis on which we may process these data is:

Consent obtained

Retention period

We retain this data upon termination of the service for the following number of months: 6

2. Cookies

Our website uses cookies. For more information about cookies, please refer to our Cookie Policy

We have concluded a data Processing Agreement with Google.

Google may not use the data for any other Google services.

The inclusion of full IP addresses is blocked by us.

3. Security

We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorised access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.

4. Third party websites

This privacy statement does not apply to third party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.

5. Amendments to this privacy statement

We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.

6. Accessing and modifying your data

If you have any questions or want to know which personal data we have about you, please contact us. You can contact us by using the information below. You have the following rights:

  • You have the right to know why your personal data is needed, what will happen to it, and how long it will be retained for.
  • Right of access: You have the right to access your personal data that is known to us.
  • Right to rectification: you have the right to supplement, correct, have deleted or blocked your personal data whenever you wish.
  • If you give us your consent to process your data, you have the right to revoke that consent and to have your personal data deleted.
  • Right to transfer your data: you have the right to request all your personal data from the controller and transfer it in its entirety to another controller.
  • Right to object: you may object to the processing of your data. We comply with this, unless there are justified grounds for processing.

Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person.

7. Submitting a complaint

If you are not satisfied with the way in which we handle (a complaint about) the processing of your personal data, you have the right to submit a complaint to the Data Protection Authority.

8. Data Protection Officer

Our Data Protection Officer has been registered with the data protection authority in an EU Member State. If you have any questions or requests with respect to this privacy statement or for the Data Protection Officer, you may contact Sabine Weiten, via shop@hebrideanteastore.scot or by telephone on 08002289294.

9. Contact details

Hebridean Tea Store
22 Cromwell Street
Stornoway
Eilean Siar
HS1 2DD
United Kingdom
Website: https://www.hebrideanteastore.co.uk
Email: shop@hebrideanteastore.scot
Phone number: 08002289294

Annex

We collect information about you during the checkout process on our store.

What we collect and store

While you visit our site, we’ll track:
  • Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
  • Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
  • Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!
We’ll also use cookies to keep track of basket contents while you’re browsing our site.When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:
  • Send you information about your account and order
  • Respond to your requests, including refunds and complaints
  • Process payments and prevent fraud
  • Set up your account for our store
  • Comply with any legal obligations we have, such as calculating taxes
  • Improve our store offerings
  • Send you marketing messages, if you choose to receive them
If you create an account, we will store your name, address, email and phone number, which will be used to populate the checkout for future orders.We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, we will store order information for 6 years for tax and accounting purposes. This includes your name, email address and billing and shipping addresses.We will also store comments or reviews, if you choose to leave them.

Who on our team has access

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:
  • Order information like what was purchased, when it was purchased and where it should be sent, and
  • Customer information like your name, email address, and billing and shipping information.
Our team members have access to this information to help fulfill orders, process refunds and support you.

What we share with others

In this section you should list who you’re sharing data with, and for what purpose. This could include, but may not be limited to, analytics, marketing, payment gateways, shipping providers, and third party embeds.

We share information with third parties who help us provide our orders and store services to you; for example --

Payments

We accept payments through PayPal. When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the purchase total and billing information.Please see the PayPal Privacy Policy for more details.We also accept payments through FIS Worldpay. When processing payments, some of your data will be passed to FIS Worldpay, including information required to process or support the payment, such as the purchase total and billing information.Please see the FIS Worldpay Privacy Policy for more details.Other PluginsReally Simple SSL and Really Simple SSL add-ons do not process any personal identifiable information, so the GDPR does not apply to these plugins or usage of these plugins on your website. You can find our privacy policy here

Really Simple SSL

Really Simple SSL and Really Simple SSL add-ons do not process any personal identifiable information, so the GDPR does not apply to these plugins or usage of these plugins on your website. You can find our privacy policy here.

Privacy Policy US

This privacy statement was last changed on June 19, 2020, last checked on November 21, 2020, and applies to citizens of the United States.

In this privacy statement, we explain what we do with the data we obtain about you via https://www.hebrideanteastore.co.uk. We recommend you carefully read this statement. In our processing we comply with the requirements of privacy legislation. That means, among other things, that:

  • we clearly state the purposes for which we process personal data. We do this by means of this privacy statement;
  • we aim to limit our collection of personal data to only the personal data required for legitimate purposes;
  • we first request your explicit consent to process your personal data in cases requiring your consent;
  • we take appropriate security measures to protect your personal data and also require this from parties that process personal data on our behalf;
  • we respect your right to access your personal data or have it corrected or deleted, at your request.

If you have any questions, or want to know exactly what data we keep of you, please contact us.

1. Purpose and categories of data

Categories of personal information to be collected and the purpose for which the categories shall be used.

1.1 We use your data for the following purpose:

Contact - Through phone, mail, email and/or webforms

The following categories of data is collected

  • A first and last name
  • A home or other physical address, including street name and name of a city or town
  • An email address

1.2 We use your data for the following purpose:

Registering an account

The following categories of data is collected

  • A first and last name
  • Account name or alias
  • A home or other physical address, including street name and name of a city or town
  • An email address

1.3 We use your data for the following purpose:

Newsletters

The following categories of data is collected

  • A first and last name
  • An email address

1.4 We use your data for the following purpose:

To support services or products that a customer wants to buy or has purchased

The following categories of data is collected

  • A first and last name
  • A home or other physical address, including street name and name of a city or town
  • An email address

1.5 We use your data for the following purpose:

To be able to comply with legal obligations

The following categories of data is collected

  • A first and last name
  • A home or other physical address, including street name and name of a city or town
  • An email address

1.6 We use your data for the following purpose:

Compiling and analyzing statistics for website improvement.

The following categories of data is collected

  • Internet activity information, including, but not limited to, browsing history, search history, and information regarding a consumer's interaction with an Internet Web site, application, or advertisement
  • Geolocation data

2. Sharing with other parties

We do not share data with third parties.

We disclose personal information if we are required by law or by a court order, in response to a law enforcement agency, to the extent permitted under other provisions of law, to provide information, or for an investigation on a matter related to public safety.

3. How we respond to Do Not Track signals

Our website responds to and supports the Do Not Track (DNT) header request field. If you turn DNT on in your browser, those preferences are communicated to us in the HTTP request header, and we will not track your browsing behavior.

4. Cookies

Our website uses cookies. For more information about cookies, please refer to our Cookie Policy on our Cookie Policy webpage. 

We have concluded a data processing agreement with Google.

Google may not use the data for any other Google services.

The inclusion of full IP addresses is blocked by us.

5. Security

We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorized access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.

6. Third party websites

This privacy statement does not apply to third party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.

7. Amendments to this privacy statement

We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.

8. Accessing and modifying your data

If you have any questions or want to know which personal data we have about you, please contact us. Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person. We shall provide the requested information only upon receipt of a verifiable consumer request. You can contact us by using the information below. You have the following rights:

8.1 Right to know what personal information is being collected about you

  1. A consumer shall have the right to request that a business that collects personal information about the consumer disclose to the consumer the following:
    1. The categories of personal information it has collected about that consumer.
    2. The categories of sources from which the personal information is collected.
    3. The business or commercial purpose for collecting or selling personal information.
    4. The categories of third parties with whom the business shares personal information.
    5. The specific pieces of personal information it has collected about that consumer.

8.2 The right to know whether personal information is sold or disclosed and to whom

  1. A consumer shall have the right to request that a business that sells the consumer’s personal information, or that discloses it for a business purpose, disclose to that consumer:
    1. The categories of personal information that the business collected about the consumer.
    2. The categories of personal information that the business sold about the consumer and the categories of third parties to whom the personal information was sold, by category or categories of personal information for each third party to whom the personal information was sold.
    3. The categories of personal information that the business disclosed about the consumer for a business purpose.

8.3 The Right to equal service and price, even if you exercise your privacy rights

We shall not discriminate against a consumer because the consumer exercised any of the consumer’s privacy rights, including, but not limited to, by:

  1. Denying goods or services to the consumer.
  2. Charging different prices or rates for goods or services, including through the use of discounts or other benefits or imposing penalties.
  3. Providing a different level or quality of goods or services to the consumer, if the consumer exercises the consumer’s privacy rights.
  4. Suggesting that the consumer will receive a different price or rate for goods or services or a different level or quality of goods or services. However, nothing prohibits us from charging a consumer a different price or rate, or from providing a different level or quality of goods or services to the consumer, if that difference is reasonably related to the value provided to the consumer by the consumer’s data.

8.4 The right to delete any personal information

  1. A consumer shall have the right to request that a business delete any personal information about the consumer which the business has collected from the consumer.
  2. A business that receives a verifiable request from a consumer to delete the consumer’s personal information pursuant to subdivision (a) of this section shall delete the consumer’s personal information from its records and direct any service providers to delete the consumer’s personal information from their records.
  3. A business or a service provider shall not be required to comply with a consumer’s request to delete the consumer’s personal information if it is necessary for the business or service provider to maintain the consumer’s personal information in order to:
    1. Complete the transaction for which the personal information was collected, provide a good or service requested by the consumer, or reasonably anticipated within the context of a business’s ongoing business relationship with the consumer, or otherwise perform a contract between the business and the consumer.
    2. Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity; or prosecute those responsible for that activity.
    3. Debug to identify and repair errors that impair existing intended functionality.
    4. (Exercise free speech, ensure the right of another consumer to exercise his or her right of free speech, or exercise another right provided for by law.
    5. Comply with the California Electronic Communications Privacy Act pursuant to Chapter 3.6 (commencing with Section 1546) of Title 12 of Part 2 of the Penal Code.
    6. Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the businesses’ deletion of the information is likely to render impossible or seriously impair the achievement of such research, if the consumer has provided informed consent.
    7. To enable solely internal uses that are reasonably aligned with the expectations of the consumer based on the consumer’s relationship with the business.
    8. Comply with a legal obligation.
    9. Otherwise use the consumer’s personal information, internally, in a lawful manner that is compatible with the context in which the consumer provided the information.

9. Selling and disclosure of personal data to third parties

We have not sold consumers’ personal data in the preceding 12 months.

A list of the categories we have disclosed for a business purpose in the preceding 12 months:

  • Internet activity information, including, but not limited to, browsing history, search history, and information regarding a consumer's interaction with an Internet Web site, application, or advertisement

10. Children

Our website is not designed to attract children and it is not our intent to collect personal data from children under the age of consent in their country of residence. We therefore request that children under the age of consent do not submit any personal data to us.

11. Contact details

Hebridean Tea Store
22 Cromwell Street
Stornoway
Eilean Siar
HS1 2DD
United Kingdom
Website: https://www.hebrideanteastore.co.uk
Email: shop@hebrideanteastore.scot
Toll free phone number: n/a

Phone number: 08002289294

Annex

We collect information about you during the checkout process on our store.

What we collect and store

While you visit our site, we’ll track:
  • Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
  • Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
  • Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!
We’ll also use cookies to keep track of basket contents while you’re browsing our site.When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:
  • Send you information about your account and order
  • Respond to your requests, including refunds and complaints
  • Process payments and prevent fraud
  • Set up your account for our store
  • Comply with any legal obligations we have, such as calculating taxes
  • Improve our store offerings
  • Send you marketing messages, if you choose to receive them
If you create an account, we will store your name, address, email and phone number, which will be used to populate the checkout for future orders.We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, we will store order information for 6 years for tax and accounting purposes. This includes your name, email address and billing and shipping addresses.We will also store comments or reviews, if you choose to leave them.

Who on our team has access

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:
  • Order information like what was purchased, when it was purchased and where it should be sent, and
  • Customer information like your name, email address, and billing and shipping information.
Our team members have access to this information to help fulfill orders, process refunds and support you.

What we share with others

In this section you should list who you’re sharing data with, and for what purpose. This could include, but may not be limited to, analytics, marketing, payment gateways, shipping providers, and third party embeds.

We share information with third parties who help us provide our orders and store services to you; for example --

Payments

We accept payments through PayPal. When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the purchase total and billing information.Please see the PayPal Privacy Policy for more details.We also accept payments through FIS Worldpay. When processing payments, some of your data will be passed to FIS Worldpay, including information required to process or support the payment, such as the purchase total and billing information.Please see the FIS Worldpay Privacy Policy for more details.Other PluginsReally Simple SSL and Really Simple SSL add-ons do not process any personal identifiable information, so the GDPR does not apply to these plugins or usage of these plugins on your website. You can find our privacy policy here

Really Simple SSL

Really Simple SSL and Really Simple SSL add-ons do not process any personal identifiable information, so the GDPR does not apply to these plugins or usage of these plugins on your website. You can find our privacy policy here.

Privacy Policy CA

This privacy statement was last changed on June 19, 2020, last checked on November 21, 2020, and applies to citizens of Canada.

In this privacy statement, we explain what we do with the data we obtain about you via https://www.hebrideanteastore.co.uk. We recommend you carefully read this statement. In our processing we comply with the requirements of privacy legislation. That means, among other things, that:

  • we clearly state the purposes for which we process personal data. We do this by means of this privacy statement;
  • we aim to limit our collection of personal data to only the personal data required for legitimate purposes;
  • we first request your explicit consent to process your personal data in cases requiring your consent;
  • we take appropriate security measures to protect your personal data and also require this from parties that process personal data on our behalf;
  • we respect your right to access your personal data or have it corrected or deleted, at your request.

If you have any questions, or want to know exactly what data we keep of you, please contact us.

1. Purpose and categories of data

Categories of personal information to be collected and the purpose for which the categories shall be used.

1.1 We use your data for the following purpose:

Contact - Through phone, mail, email and/or webforms

The following categories of data is collected

  • A first and last name
  • A home or other physical address, including street name and name of a city or town
  • An email address

1.2 We use your data for the following purpose:

Registering an account

The following categories of data is collected

  • A first and last name
  • Account name or alias
  • A home or other physical address, including street name and name of a city or town
  • An email address

1.3 We use your data for the following purpose:

Newsletters

The following categories of data is collected

  • A first and last name
  • An email address

1.4 We use your data for the following purpose:

To support services or products that a customer wants to buy or has purchased

The following categories of data is collected

  • A first and last name
  • A home or other physical address, including street name and name of a city or town
  • An email address

1.5 We use your data for the following purpose:

To be able to comply with legal obligations

The following categories of data is collected

  • A first and last name
  • A home or other physical address, including street name and name of a city or town
  • An email address

1.6 We use your data for the following purpose:

Compiling and analyzing statistics for website improvement.

The following categories of data is collected

  • Internet activity information, including, but not limited to, browsing history, search history, and information regarding a consumer's interaction with an Internet Web site, application, or advertisement
  • Geolocation data

2. Sharing with other parties

We do not share data with third parties.

We disclose personal information if we are required by law or by a court order, in response to a law enforcement agency, to the extent permitted under other provisions of law, to provide information, or for an investigation on a matter related to public safety.

3. How we respond to Do Not Track signals

Our website responds to and supports the Do Not Track (DNT) header request field. If you turn DNT on in your browser, those preferences are communicated to us in the HTTP request header, and we will not track your browsing behavior.

4. Cookies

Our website uses cookies. For more information about cookies, please refer to our Cookie Policy on our Privacy Policy webpage. 

We have concluded a data Processing Agreement with Google.

Google may not use the data for any other Google services.

The inclusion of full IP addresses is blocked by us.

5. Security

We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorised access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.

6. Third party websites

This privacy statement does not apply to third party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.

7. Amendments to this privacy statement

We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.

8. Accessing and modifying your data

If you have any questions or want to know which personal data we have about you, please contact us. Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person. We shall provide the requested information only upon receipt of a verifiable consumer request. You can contact us by using the information below.

8.1 You have the following rights with respect to your personal data

  1. You may submit a request for access to the data we process about you.
  2. You may request an overview, in a commonly used format, of the data we process about you.
  3. You may request correction or deletion of the data if it is incorrect or not or no longer relevant. Where appropriate, the amended information shall be transmitted to third parties having access to the information in question.
  4. You have the right to withdraw consent at any time, subject to legal or contractual restrictions and reasonable notice. You will be informed of the implications of such withdrawal.
  5. You have the right to address a challenge concerning non-compliance with PIPEDA to our organisation and, if the issue is not resolved, to the Office of the Privacy Commissioner of Canada.
  6. We shall give access to personal information in an alternative format to an individual with a sensory disability who has a right of access to personal information under PIPEDA and who requests that it be transmitted in the alternative format if (a) a version of the information already exists in that format; or (b) its conversion into that format is reasonable and necessary in order for the individual to be able to exercise rights.

9. Children

Our website is not designed to attract children and it is not our intent to collect personal data from children under the age of consent in their country of residence. We therefore request that children under the age of consent do not submit any personal data to us.

10. Contact details

Hebridean Tea Store
22 Cromwell Street
Stornoway
Eilean Siar
HS1 2DD
United Kingdom
Website: https://www.hebrideanteastore.co.uk
Email: shop@hebrideanteastore.scot
Toll free phone number: n/a

Phone number: 08002289294

We have appointed a contact person for the organisation's policies and practices and to whom complaints or inquiries can be forwarded:
Sabine Weiten
c/o Hebridean Tea Store
22 Cromwell Street
Stornoway
HS1 2DD
Eilean Siar
UK - Scotland

Annex

We collect information about you during the checkout process on our store.

What we collect and store

While you visit our site, we’ll track:
  • Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
  • Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
  • Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!
We’ll also use cookies to keep track of basket contents while you’re browsing our site.When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:
  • Send you information about your account and order
  • Respond to your requests, including refunds and complaints
  • Process payments and prevent fraud
  • Set up your account for our store
  • Comply with any legal obligations we have, such as calculating taxes
  • Improve our store offerings
  • Send you marketing messages, if you choose to receive them
If you create an account, we will store your name, address, email and phone number, which will be used to populate the checkout for future orders.We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, we will store order information for 6 years for tax and accounting purposes. This includes your name, email address and billing and shipping addresses.We will also store comments or reviews, if you choose to leave them.

Who on our team has access

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:
  • Order information like what was purchased, when it was purchased and where it should be sent, and
  • Customer information like your name, email address, and billing and shipping information.
Our team members have access to this information to help fulfill orders, process refunds and support you.

What we share with others

In this section you should list who you’re sharing data with, and for what purpose. This could include, but may not be limited to, analytics, marketing, payment gateways, shipping providers, and third party embeds.

We share information with third parties who help us provide our orders and store services to you; for example --

Payments

We accept payments through PayPal. When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the purchase total and billing information.Please see the PayPal Privacy Policy for more details.We also accept payments through FIS Worldpay. When processing payments, some of your data will be passed to FIS Worldpay, including information required to process or support the payment, such as the purchase total and billing information.Please see the FIS Worldpay Privacy Policy for more details.Other PluginsReally Simple SSL and Really Simple SSL add-ons do not process any personal identifiable information, so the GDPR does not apply to these plugins or usage of these plugins on your website. You can find our privacy policy here

Really Simple SSL

Really Simple SSL and Really Simple SSL add-ons do not process any personal identifiable information, so the GDPR does not apply to these plugins or usage of these plugins on your website. You can find our privacy policy here.