Privacy Policy

This privacy policy sets out how LittleAcornMakes uses and protects any information that you give us when you use our website.

Little Acorn Makes is committed to ensuring that your privacy is protected. Should we ask you to provide certain information from which you can be identified when using this website, it will only be used in accordance with this privacy statement.

What we collect

We may collect the following information:

  • Name
  • Contact information including email address
  • Other information relevant to customer surveys and/or offers

What we do with the information we gather

  • We require this information to understand your needs and provide you with a better service, and in particular for the following reasons:
  • Internal record keeping.
  • We may use the information to facilitate after care support.
    We may periodically send promotional emails about new products, special offers or other information which we think you may find interesting using the email address which you have provided, having opted-in to receive marketing information.

 

How long do we keep this information for?

We will retain the personal information we collect for the period necessary to fulfil the purposes outlined in this Privacy Policy unless a longer retention period is required or permitted by law.

Security

We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.

We follow strict security procedures as set out by UK Data Protection laws in the storage and disclosure of information, which you have given us, to prevent, unauthorised access. Our security procedures mean that we may occasionally require proof of identity before we are able to disclose sensitive or other information to you.

All our internal systems regularly undergo vulnerability scans using approved vendors to ensure compliance with UK Data Protection laws and PCI (Payment Card Industry) Standards.

 

Controlling your personal information

Under the new GDPR legislation, you as the Data Subject have the following rights:

  • The right to be informed
  • The right of access
  • The right to rectification
  • The right to erasure
  • The right to restrict processing
  • The right to data portability
  • The right to object
  • Rights in relation to automated decision making and profiling

You can exercise these rights by emailing [email protected]

If you believe that any information we are holding on you is incorrect or incomplete, please write to or email us as soon as possible, at the above address. We will correct any information found to be incorrect.

We will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so. We may use your personal information to send you promotional information emails if you tell us that you wish this to happen.