Privacy Policy

At Care Clothing, your privacy, security and the way your data is handled is of paramount importance to us. The information you give to us will only be used with your consent, and should you request that your data be removed from our database, we will do just that.

How do we protect visitor information

We implement a variety of security measures to maintain the safety of your personal information. Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. When you place orders or access your personal information, we offer the use of a secure server. All sensitive/credit information you supply is transmitted via Secure Socket Layer (SSL) technology and then encrypted into our databases to be only accessed as stated above.

As set out in the new GDPR guidelines, we handle your data under the ‘Legitimate Business Use’ category. This doesn’t affect any of your rights under this regulation.

How does GDPR affect you, the customer

Simply, this regulation ensures that you (as a customer) have the right to know how your data is stored, and with who. Under GDPR you will have the absolute right to:

· Be processed lawfully, fairly and in a transparent manner

· Be forgotten

· Not be profiled or to limit profiling

· Not have your data passed elsewhere

· See a copy of all data stored by us

· Object

· Data portability

Here at Care Clothing, we will comply with all of the above rights. You as the customer will also be informed of any instances where we have not been able to comply with specific data requests and why.

Web Payment Processing on our Website

Sage Pay

Card transactions processed through our website and over the phone are handled by Sage Pay, our payment processor. They are a secure card processing company, who are fully PCI DSS compliant.

Alongside this, we also use 3D secure to keep you safe online, and protect your existing card account against unauthorised use while shopping with us.

www.sagepay.co.uk

PayPal

We also accept payment via PayPal, in order to provide an alternative way of purchasing from us, without giving us your card details. PayPal are also fully PCI DSS compliant.

www.paypal.com/uk/home

Our Host Site

Volusion

We host our site using a platform called Volusion. They are also fully GDPR compliant and are ensuring that all of their merchants, including us, are too.

What data do we collect about our customers?

For the purposes of processing your order, we will collect your personal data, such as your name, telephone number, email address and billing/shipping address.

Details are stored of what you have purchased from us, or returned goods that you have sent back for either an exchange or for a refund.

Occasionally, we will ask if you are a relative, carer or the end user of our product. This is to better tailor the product directly to your needs.

Card payment details are encrypted prior to the transition to our payment processors, either Sage Pay or PayPal.

The last four digits of your PAN (the long card number) and the expiry date are visible within our system, and this is allowed under the PCI DSS. These standards are set by the PCI DSS Security Council, and you can read more about them here:

https://www.sagepay.co.uk/our-payment-solutions/ad...

When you visit our website, we also collect information about your visit through the live chat function, and through tracking information (Use of Cookies).

Use of Cookies

Whilst using the internet, you may have come across the phrase ‘cookie’ many times. Simply put, this is a small piece of information sent by a web server to a web browser, which enables the server to collect information from the browser. This is used to identify where our sales traffic is coming from, what times we get the most traffic and in order to build up a profile of our most popular items. This information is NEVER passed to any other company or party. For more information on cookies, please visit www.allaboutcookies.org

We may contract with third-party service providers to assist us in better understanding our site visitors. These service providers are not permitted to use the information collected on our behalf except to help us conduct and improve our business.

In your browser, there is a way to turn off cookies, and if you would like to do this, follow the instructions laid out on www.allaboutcookies.org

PLEASE NOTE, if you turn off your browser cookies, you may experience problems logging into your customer account with us, or going to the checkout. You will need to place your order over the phone, on 01785 228159.

Who your data is shared with

The ONLY people we share your data with are the individuals who ensure that your parcels reach you safely, and on time. These are listed below:

· Royal Mail: www.royalmail.com

· DPD (UK): www.dpd.co.uk

· Parcel Force: www.parcelforce.com

Questions and Feedback

We welcome your questions, comments, and concerns about privacy. Please send us any and all feedback pertaining to privacy, or any other issue.

Changes to our Policy

IF we decide to change our policy, we will post those changes on this page. Policy changed will apply only to information collected after the date of the change.

This policy was last modified on May 21st 2018 (In line with GDPR regulations)