Spread the love

Privacy and Cookies Policy

We at Everything Dinosaur respect your concerns about your personal data. In addition, we are committed to safeguarding and preserving your privacy. This Privacy and Cookies Policy explains what data we collect about you and how we use it. We are transparent, lawful, and fair in how we handle personal data. Furthermore we hold, process, store, and dispose of personal data responsibly.

This policy applies whether you visit one of our websites or use our products and services. It also applies if you contact Everything Dinosaur via other communication channels such as letter, telephone, or email.

It provides you with information about:

  • what personal data we collect
  • how we use it
  • how we protect your privacy
  • your rights relating to your personal data

What Personal Data do we Collect?

Typically we collect your name, delivery address (and billing address if different), and contact details like email and phone number. Additionally, we collect details of your orders, payment methods, user account information, and any communication or marketing preferences. In addition, information such as your browsing habits, which web pages you visited and the products viewed may also be collected.

How do we Use your Data?

We use the personal data we gather to deliver the goods and services you purchase. For example, this data is necessary for fulfilling your orders. Personal data may help us to verify your identity and assist with fraud prevention.  Such information will also help us to resolve issues such as lost or forgotten user account passwords.  With your consent, we can contact you about updates and news on our products and services that may interest you.

Your website browsing habits and page visits help us better manage and develop our on-line presence. This allows us to provide a more user-friendly, tailored website.

How do we Protect your Privacy?

We use appropriate technical and organizational systems to protect your personal data at Everything Dinosaur. These measures include the safe and secure disposal of written records.  We minimise the amount of data we hold, where practical. However, we still ensure we comply with all legal obligations. We also store information securely, undertake data encryption and all our sites are safeguarded by HTTPS protocols.

Everything Dinosaur is PCI DSS (Payment Card Industry Data Security Standard), compliant, it adheres to a set of security standards and protocols designed to ensure that credit/debit card information is processed, stored, transmitted and maintained in a secure environment.  There are also a number of simple precautions that you can take to help protect your privacy and personal data.  For further information and some helpful tips check out our blog article on safeguarding and personal security: Keeping Safe Online – Some Helpful Tips

Your Rights Relating to your Personal Data?

At Everything Dinosaur, we respect your rights regarding your personal data:

  • you have the right to ask what personal data we hold about you and access this information at any time.
  • you have the right to ask us to update, correct or erase any personal data that we hold about you.
  • you have the right to opt out of any marketing communications that we may send you, for example, we always ensure that there is a prominent “unsubscribe” button on our e-newsletters.
  • you have the right to object to and to restrict the processing of your personal data.
  • you have the right to data portability.
  • you have the right not to be subject to automated decision-making including profiling.

If you wish to exercise any of the above rights, please get in touch with us using the contact details set out below:

Email: [email protected] addressing your email to the Data Protection Officer.  Alternatively, you can write to the Data Protection Officer, Everything Dinosaur, Unit 1, Moreton Business Park, Midbrook Way, Middlewich, Cheshire, United Kingdom CW10 0GR.  Please ensure that you include your name, address and if applicable, your email address in any correspondence to us along with an outline of how you would like us to assist you.  We will take all reasonable steps to confirm your identity before providing you with details of any personal data.

Lawful Grounds for Processing

Everything Dinosaur collects, holds, processes and stores personal data because it is necessary for entering into or performing a contract with a data subject such as supplying goods and services.  In addition, we gather personal data to comply with legal obligations related to running the business.  In general, we only rely on consent for processing data in relation to direct marketing communications.

Withdrawing your Consent

You have the right to withdraw your consent at any time.  The contact details of the Data Protection Officer have been provided within this Privacy and Cookies policy statement to help expedite your right to withdraw consent should you wish to exercise this right.

Cookies

In common with most websites, Everything Dinosaur uses cookies to collect information.  We may collect information about your visits to our websites and your browsing habits, using cookies helps with the effective operation of our websites and helps you to shop on-line with us.  For further information on cookies: Cookies Policy

Disclosure of Data to Third Parties

Everything Dinosaur does not sell or pass on your personal data to third parties (other than as set out under the lawful grounds for processing), unless you have given us permission.  Passing on your data to a third party under our lawful grounds for processing would be, for example, disclosing your payment card details to validate a credit/debit card purchase or passing on your contact details and delivery address to a mail fulfilment company or courier in order for us to send out your purchase.

Everything Dinosaur’s Blogs, Social Media and Product Reviews (Collecting Feedback)

Everything Dinosaur operates a substantial blog (https://blog.everythingdinosaur.co.uk/), we have an extensive social media platform which includes, Facebook, Pinterest, a YouTube channel, Twitter and Instagram accounts.  In addition, our main site (http://www.everythingdinosaur.com/) contains feedback on purchases either as reviews placed on-line by customers themselves or via our partnering relationship with Feefo, which provides independent product and customer service ratings.  Feedback and reviews are regarded as forms of market research.  Collecting feedback about a specific transaction demonstrates how customers have rated their experience shopping with Everything Dinosaur.  The reviews and feedback help us to understand how we can improve our customer service.  Please note, as a result of a specific sale or service, you may be asked to provide feedback on your transaction experience.

Blog comments, reviews and feedback that you make about us on our websites will be shared with all other members of that service and the public at large.  With respect to the third party social media platforms, for example, a comment posted up onto Everything Dinosaur’s Facebook page, this will be shared under the terms of the relevant social media platform upon which the data has been posted.  Everything Dinosaur is not responsible for this kind of social media sharing.

We suggest that you review the terms, conditions and privacy policies of any social media platforms that you might use.  With knowledge of the terms and conditions of social media sites such as Facebook, Google Plus, Twitter and Pinterest, you can gain a better understanding of how these sites might use your data.  It is advisable to check your account settings with such platforms, if necessary you can adjust the site’s privacy controls.

Links to Other Websites

On occasion, Everything Dinosaur includes links to third parties on our various websites.  When we provide a link, it does not mean that we endorse or approve that site in terms of the management of your personal data or safeguarding of your privacy.  You should review that third party’s Privacy and Cookies Policy before sending them any personal data.

How Long do we Keep Your Information For?

One way of helping to protect your privacy and personal data is to minimise the information that we hold, process and store.  We keep your personal data to ensure that we comply with our legal obligations, such as the storage of invoices and sales records in accordance to HM Revenue & Customs requirements.  Everything Dinosaur might keep data for a period after you stop using our products and services, to permit us to try and persuade you to come back to us.  At any time, you have the right to unsubscribe to any marketing communications and you have the right to ask us to update, correct or erase any personal data that we hold about you.

We undertake regular data cleaning processes to minimise the amount of personal data that we might hold either on our servers, via a cloud or another data storage device.  Paper records that may contain personal data are held to ensure we comply with legal requirements related to our business records for at least 5 years after the 31st January submission deadline of the relevant tax year.  After which, these records are shredded and disposed of as part of our data security policy.

Contact Information

If you have any questions about how Everything Dinosaur holds, processes, stores and disposes of your personal data, or if you want to exercise any of your rights regarding your personal data, please contact us by any of the following means:

  • Email: [email protected] addressing your email to the Data Protection Officer
  • Write to us at: Data Protection Officer, Everything Dinosaur, Unit 1, Moreton Business Park, Midbrook Way, Middlewich, Cheshire, United Kingdom CW10 0GR

You have the right to lodge a complaint with our Supervisory Authority (the Information Commissioner’s Office). The Information Commissioner’s Office is based in the UK.  Further information, including contact details can be found here: The Information Commissioner’s Office.

This text explains our privacy and cookies policy. This policy covers how we collect, use, and protect your personal data. Additionally, it includes information from your website activity. Our goal is to deliver a better user experience.