Privacy and Data

     

    PRIVACY POLICY

    1. Introduction

    Timshel Ltd (Timshel Design) are committed to protecting the privacy of all customers irrespective of the relationship that you have with us. This Consumer Privacy Policy applies to the personal data that we collect and use for our retail/markets/show customers and online shop customers. The company covered by this policy are Timshel Ltd  (company number 10540237 - trading as Timshel Design, and as Toby Chairs).

    By providing your personal data to us you acknowledge that it will be processed in accordance with this policy.

    1. Who is responsible for your data

    To facilitate the delivery of our products and services Timshel Ltd is responsible for customer data. Our company registration number is 241882 and our registered office is Unit 2, Seasons Close, Hanwell, W7 3SW. We can also be contacted via email to hello@timsheldesign.co.uk.

    1. Personal data we collect about you

    We collect personal data for a variety of purposes as outlined in section 3. You will provide much of this data to us directly by completing online forms, sign up to our newsletter forms, or by communicating with our employees but we also gather some data via the digital interactions that you have with us. 

    Name and contact details (email address, telephone number and postal address)

    When you place an order with us online, or via a show/market or shop.

    When you choose to receive marketing communication.

    When you provide us with feedback or submit an enquiry.

    Information about other individuals you provide us

    When you provide them on behalf of others as part of ordering a product from us, or arranging delivery to them or with them/via them

    The correspondence that you have with us (eg emails, letters, calls, online chat service)

    When you contact us or we contact you. This may include telephone call recording.

    Your location / visit information

    When you order a product to be delivered to you.

    When you make an order at a market, show or shop

    When you sign up to our e-newsletter at a market, show or shop

    When you visit our workshop or studio

    Information about how you use our websites including IP address and Google Analytics.

    When you browse our websites.

    1. How and why we use your personal data
    • We use your personal data to provide the following services
    • To deliver products that you purchase. When you buy from us at markets, shops or shows, or our online store, or social media, we will use your information to deliver your purchases, confirm your order and payments you have made and to send a follow up email for your valued feedback. 
    • To keep you informed of our products, services, offers and promotions. We may send you marketing communications about our furniture and accessories if you have indicated that you are happy to receive these (e.g. when you opt in to marketing when you complete our website checkout process or sign up to our newsletter). 
    • We will monitor opens / clicks and offer redemption on marketing emails to assess engagement. 
    • To personalise and improve your customer experience. We may use your personal data in order to tailor our services to your needs and preferences and to provide you with a personalised customer experience. 
    • To optimise the performance of our websites. We may also collect information on how you use our websites including the pages that you visit and the search criteria that you perform in order to optimise the performance of the website and personalise content that you see.
    • To meet our legal obligations. We are required to keep certain records for legal reasons – for example invoices that we issue and sales related communications. We will keep and use this data in line with our legal requirements. 
    • For market research and to deliver business insight to help us ensure that our products and services remain relevant.
    1. Sharing your personal data.
    • We are reliant on a small number of 3rd party providers in order to provide our products and services. Where this is the case we will remain in control of the data and we will ensure that the 3rd parties comply with high security standards for the protection of your personal data and the data will only Timshel Ltd’s purposes. Our 3rd party providers include:
    • Legal authorities and legal advisors, our accountants for the purposes of producing out financial and accounting documents. 
    • We will also share your name and address details with our delivery partners in order to transport the product that you have ordered.
    1. Transfer of Data outside the EU

    All of Timshel Ltd’s operations covered by this policy are based in the EU. However, the technical infrastructure of some of our providers is located in data centres outside the EU. The data will be transferred outside the EU as follows: 

    • Online Shop Purchases. Shopify (www.shopify.com) provide the shopping cart technology that powers the fullers.co.uk and darkstarbrewing.co.uk online shops. Shopify have data centres in the United States and Canada. Data transfer to the US is covered by EU-US Privacy Shield and to Canada on the basis of adequate protection as determined by the European Commission.
    • POS purchases through iZettle’s data centres
    • Email newsletters through Mailchimp.com’s data centres

    We are currently auditing all of our suppliers and this policy will be updated if new information comes to light.

    1. The legal basis for processing your Data

    We rely on the following reasons for using your data.

    • Compliance with a legal obligation / regulatory authority.
    • Performance of a Contract. In order to deliver the service/product that we have agreed to provide you with (such as a piece or furniture or accessory).
    • Legitimate Interest. In order to improve customer experience and develop our products & services.
    • Consent – where you have specifically consented to us using the data. 
    1. Retention and Security of your Data
    • We will only retain your personal data for as long as is necessary. This duration will depend on the type of data and the reason for processing it. For example:
      • We will view consent to receive marketing communication as revoked if the marketing communication hasn’t been engaged with (opened or clicked) within 13 months.
      • We are required to keep invoices for 6 years.
      • We will ensure that we use appropriate technical and organisational security measures in order to ensure that your data remains secure. These measures include internal policies and staff training, appropriate contracts with 3rd party suppliers and role based access control.
    1. Your Rights

    You have certain rights in relation to the personal information we hold about you. Some of these rights only apply in certain circumstances. In order to exercise these rights please contact us using the contact details below. Please note that we will require proof of identity as part of this request and most rights are subject to limitations and exceptions. We will provide reasons if we are unable to comply with any request for the exercise of your rights.

    • Right of Access. You have the right at any time to ask us for a copy of the data that we hold about you and how it is used.
    • Right of Correction or Completion. If the data that we have collected is inaccurate you have the right to update it.
    • Right of Erasure. In certain circumstances, you have the right to request that Information we hold about you is erased. This usually applies if the data is no longer necessary for the purpose that it was collected for, or you withdraw your consent for its processing and request its erasure.
    • Right to Object to or Restrict Processing. If you wish to challenge our need to process your data on legitimate interest grounds or if you wish to withdraw your consent.
    • Right of Data Portability.  You have a right to request that we transfer your data to another data processor.
    1. Cookies

    Like many other businesses we use cookies on our website. Cookies are small pieces of information that are stored on your computer or mobile device that record how you use the site.

    1. Updates to our Privacy Policy

    We may make changes to this Privacy Policy from time to time, when we do we will publish the updated version on our websites.

    1. Contact Information

    If you have any questions about this policy or how your data is processed, please contact us at Timshel Ltd, Unit 2 Seasons Close, Hanwell, W7 3SW, via phone on 020 8144 4987 or via email to hello@timsheldesign.co.uk.

    You can unsubscribe from our marketing communication at any time by clicking the unsubscribe link at the bottom of any of our marketing communications. Alternatively you can email hello@timsheldesign.co.uk.

    Should you have any concerns about this policy or the way that we are processing data you have the Right to Lodge a Complaint with the Information Commissioner’s Office. Please look at www.ico.org.uk for more detail.

    GDPR Version 1.0. This policy was last updated on 24th May 2018.