GDPR Policy

Introduction

Eleanor Williams is committed to protecting the privacy and personal data of our customers and visitors. This GDPR Policy outlines how we comply with the General Data Protection Regulation (GDPR) to ensure transparency, accountability, and security in the collection, use, and storage of personal data.

Data We Collect

We collect personal data for the purpose of providing and improving our services. This data may include:

  1. Contact Information: Name, email address, phone number, and billing/shipping address.
  2. Order Details: Transaction history, payment method (encrypted), and delivery preferences.
  3. Website Activity: Cookies, IP addresses, and browsing behavior to enhance user experience.

How We Use Your Data

We use your data to:

  1. Process and fulfill your orders.
  2. Communicate with you regarding orders, updates, or promotions (with your consent).
  3. Improve our website functionality and personalize your shopping experience.
  4. Comply with legal obligations and prevent fraud.

Legal Basis for Data Processing

We process your data based on the following lawful grounds:

  1. Consent: When you subscribe to newsletters or agree to receive promotional content.
  2. Contract: To fulfill orders and deliver products.
  3. Legal Obligation: To comply with tax, accounting, and other regulatory requirements.
  4. Legitimate Interest: For internal analytics, fraud prevention, and improving our services.

Your Rights

Under the GDPR, you have the following rights regarding your personal data:

  1. Right to Access: Request a copy of the personal data we hold about you.
  2. Right to Rectification: Correct any inaccuracies in your data.
  3. Right to Erasure: Request deletion of your data where applicable.
  4. Right to Restrict Processing: Limit how your data is processed.
  5. Right to Data Portability: Request a copy of your data in a portable format.
  6. Right to Object: Opt out of data processing for specific purposes, such as marketing.
  7. Right to Withdraw Consent: Revoke your consent at any time, where processing is based on consent.

To exercise these rights, please contact us through the form available on our website.

Data Sharing

We do not sell or rent your personal data. However, we may share your data with trusted third parties, such as:

  1. Payment Processors: To securely handle transactions.
  2. Shipping Providers: To deliver your orders.
  3. Service Providers: For website hosting, analytics, or marketing (e.g., Shopify, Google Analytics).
    All third parties are contractually obligated to protect your data and comply with GDPR.

Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, or resolve disputes.

Security Measures

Eleanor Williams implements robust security measures, including encryption, firewalls, and regular audits, to protect your personal data from unauthorized access, loss, or misuse.

Cookies

We use cookies to improve your browsing experience, analyze website traffic, and personalize content. By using our website, you consent to our cookie usage as outlined in our [Cookie Policy].

Policy Updates

We reserve the right to update this GDPR Policy at any time. Any changes will be posted on this page, and significant updates will be communicated to you directly if required by law.

Contact Us

If you have any questions about this GDPR Policy or wish to exercise your rights, please contact us via the contact form on our website.