Collecting Data - What do we do with your Information?
When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address.
When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system.
Email marketing (if applicable): With your permission, we may send you emails about our store, new products and other updates.
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, it is for this particular reason only that we may contact you via the contact details you have supplied to us. If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no. We have an opt-in to supply us with an e-mail address for a marketing newsletter, if you choose to subscribe, you may also unsubscribe at any time.
Our store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services to you.
Your data is stored through Shopify’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall. We use SSL (secure socket layer) encryption If you subscribe to ewsletter, your data automatically transfers to the database and is stored securely. We do not hold any other personal data, or special category data on Sugar Hill computer systems or on local records. To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you choose a direct payment gateway to complete your purchase, then Shopify stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover.
PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
Our store uses Google Analytics to help us learn about who visits our site and what pages are being looked at.
You may e-mail us at any time at firstname.lastname@example.org to opt out of any marketing newsletter, or to ask us to remove your details from our website. This may include any details of previous orders, and the address associated with those orders.
If you receive a marketing newsletter from us (mailchimp) you have automatically the option to unsubscribe at the bottom of the e-mail with one click. Or you may also mail us at: 7 St. Pauls Rise Addingham, ILKLEY GB LS29 0QD.
We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.
Lucy Townsend 18 February 2018