The purpose of this Online Privacy Statement is to inform you about the types of information we gather about you through the use of the Internet, Radleys website (‘our Site’) and any other electronic communications networks by Radleys, how we may use that information, whether we disclose it to anyone and the choices you have regarding our use of, and your ability to correct, that information.
Radleys respects your right to privacy. When you visit our Site, we may collect information on two different levels about your visit:
- Automatic Collection of Statistics as you browse the site.
- Personal information you knowingly give us.
Please note that all data thus captured will be used and held in accordance with the requirements of UK Data Protection Law.
Radleys collect information from visitors to this website through the use of online forms / email hyperlinks and every time you knowingly provide it to us. Our web servers automatically collect statistical information about your visit such as pages visited and which browsers are used to visit our site. Please see our cookies policy for more details.
Use of personal information
If you contact us, we may keep a record of your correspondence or comments, including Personally Identifiable Information, in a file specific to you. We use this information to help us provide better service in the event you contact us again.
Your data may be used to:
- Respond to any requests you send us
- Contact you about quotes you have requested, or orders you have placed online
- Send marketing emails to users who have not opted out
- Allow you to access pricing on our website and make transactions (UK only)
- Allow you to login to your account to update your name, email, password and to view your saved quotes and orders
- Improve the site by monitoring how you use it
When you choose to register with our Site, we request accurate contact information and preferences that help us better serve you.
Anytime you register with us you may:
- Opt out. At any time after the initial registration, you can opt out by either e-mailing us your request or clicking on the link at the bottom of any e-mail alerts you receive.
- Update your contact and personal information anytime by amending the details retained by us in your online account with us.
We will use legitimate interests to send occasional marketing by post or email and for segmentation and profiling in order to send relevant targeted communications. Our legitimate interests are to communicate with our customers and other businesses to keep them informed and to grow our business.
We do not sell, share or disclose individually identifiable information obtained online about our visitors to anyone outside of Radleys, our subsidiary companies or companies directly engaged by Radleys where confidentiality agreements are in place. The only exceptions to this rule are the following:
- If you specifically authorise Radleys to share your information with another company.
- It is required by law.
On occasion, Radleys may share non-personally identifiable information with other companies in order to assess the results of a promotion or event. This information is used in aggregate only, and does not contain any information that would personally identify you.
In order to provide the best service to our audience we would like to know who our users are, when they use our site and how often they use our site.
At times, we may utilise email for any of these reasons:
- To respond to a site visitor’s email
- To send information that a visitor has requested
- To send information about Radleys and/or its subsidiary companies
- To conduct online surveys (voluntary).
In all of these situations you will be provided with direction on how to opt out of future e-mails of this nature.
Subject access requests
You have the right to see what personal data we hold about you. You can view the data held by us about you by accessing your account through the website, or by contacting us at firstname.lastname@example.org
Given that the Internet is a global environment, using it to collect and process personal data necessarily involves the transmission of data on an international basis. This means for instance that data you pass to us may be processed outside the European Economic Area, although the data will always be held securely and in line with the requirements of UK data protection legislation. By communicating electronically with us, you acknowledge and agree to our processing of personal data in this way.
Where your data is stored
We store your data on secure servers in the European Economic Area (EEA).
Keeping your data secure
We offer the use of a secure server. All supplied sensitive/credit information is transmitted via Secure Socket Layer (SSL) technology and then encrypted into our Payment gateway provider’s database only accessible to those authorised with special access rights to such systems, who are required to keep the information confidential.
Our Payment Service Provider is Sage Pay – the largest independent payment service provider (PSP) in the UK and Ireland. Sage Pay provides a secure payment gateway (Level 1 PCI DSS), processing payments for thousands of online businesses, including ours. It is Sage Pay’s utmost priority to ensure that transaction data is handled in a safe and secure way. Sage Pay uses a range of secure methods such as fraud screening, IP address blocking and 3D secure. Once on the Sage Pay systems, all sensitive data is secured using the same internationally recognised 256-bit encryption standards. Sage Pay is PCI DSS (Payment Card Industry Data Security Standard) compliant to the highest level and maintains regular security audits. They are also regularly audited by the banks and banking authorities to ensure that their systems are impenetrable. Sage Pay is an active member of the PCI Security Standards Council (PCI SSC) that defines card industry global regulation.
You can check that your session is in a secure encrypted environment when you see https:// in the web address, and/or when you see the locked padlock symbol alongside the URL.
We have procedures and security features in place to keep your data secure once we receive it, however please bear in mind that no internet transmission is 100% secure. We can’t guarantee the security of your data while it’s in transit: any data you send is at your own risk.
How long will the personal data be stored?
We will keep your personal data until you make a deletion request or for as long as necessary to provide the services you have requested or for other necessary purposes, such as fulfilling legal obligations, resolving disputes and enforcing our policies.
Hard copy data is stored securely as per the time frame outlined by government legislation.
In order to improve your experience with us, we may decide to improve our Site’s ability to obtain information about users. We will update this privacy statement continually to ensure that you are aware of developments in this area.