Our registered address is 168 Church Road, Hove, East Sussex, BN3 2DL and additional contact details are available from our website at www.spitfire-print.co.uk
We are committed to protecting any data that we collect concerning you and processing it in accordance with the Data Protection Act 1998 ("the DPA") and the General Data Protection Regulation (Regulation (EU) 2016/679) ("the GDPR").
This Policy explains what personal data we collect about you, what we do with it, and explains the legal basis on which we process your personal data under the GDPR.
We collect information about you online when you provide it, such as when you make a purchase from our website, create an account and subscribe to our email service. Website usage is collected using cookies.
We may also obtain personal data through offline methods, for example, over the telephone.
In order to promote our services and provide you with information which may be helpful to you, we will use your information to contact you via direct mail, email, SMS and/or telephone with selected material that you may find of interest.
From 25 May 2018, the GDPR will replace the existing DPA. From that date, we will only contact you via direct mail, email, SMS and/or telephone if we have explicit consent to do so. Please note that this does not apply to emails containing services, maintenance and transactional information.
Where we hold your information for these purposes, we may also process it in order to deal with any enquiry, to personalise our information we provide to you, and to ensure that our records are accurate and up-to-date.
We will not share your information for marketing purposes. However, under the GDPR we will have the right to contact you and pass your details to third parties where we have a genuine and legitimate reason to do so, unless this is outweighed by harm to your rights and interests. We also have the right to share your details in the event the sharing of such information is necessary for the performance of a contract.
You have the right to tell us not to process your personal data for direct marketing purposes. We will give you the option to refuse marketing when we collect your details. You can also exercise this right at any time by contacting us directly.
Under the DPA and GDPR, you have the right of access to information we hold on our records about you. We will not charge you for requests made to access such information. Please contact us if you would like a copy of some or all of your personal information.
We will take appropriate security measures to ensure that any information you provide to us is stored securely and confidentially and is processed in accordance with the DPA and GDPR.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our website; and transmission is at your own risk. Once we have received your personal information, we will use strict procedures and security features to try and prevent unauthorised access.
You have the following rights in relation to your personal data under the GDPR from 25 May 2018:
Cookies are text files placed on your computer to collect standard internet log information and visitor behaviour information. This information is used to track visitor use of the website and to compile statistical reports for website activity.
You can set your browser not to accept cookies, however, in a few cases some of our website features may not function as a result.
We reserve the right to update our Policy at any time. We will take reasonable steps to draw your attention to any changes to our Policy. Should you disagree with any changes made, you may withdraw your consent at any time using the methods outlined above. This Policy was last updated on 9 February 2018.