As of 6th January 2020
We value the trust you place in Sussex Uniforms Ltd and SussexUniforms.co.uk (the site) and we want you to be aware of the safeguards we have in place to respect your privacy.
Types of personal information we may gather:
Personal information will only be collected with your consent. Your personal information (which includes your name, email address and any other details you provide to us which identify you as an individual) will be processed by us for administering our relationship with you:
• Your name – so we know what to call you
• Your email address – so we can email you order confirmations, delivery delays, offers (If signed up to)
• Your delivery address – so that we know where to deliver
• Your invoice address – if different from your delivery address
• Your telephone number – we’ll only call if there is a delivery problem
• Device information - help us screen for potential risk and fraud (in this case your IP address)
• Where you have agreed, we may use your information to inform you of special offers; undertake product or customer research/development and provide other Sussex Uniforms marketing information to you which we think you may find of interest.
Your credit card details are never received or held by us. When an order is placed on our website, we use Sage Pay to process credit and debit card payments. You can see further information about this process in our Security Policy section below.
If for any reason any personal information is recorded at point of purchase in our stores i.e. a back-order or enquiry this information is only used for the purposes of fulfilling your order and will not be used further unless consent is given by you to do so.
If an enquiry is made directly to us via email or over the telephone this information is only used for the purposes of fulfilling your order or to answer your enquiry and will not be used further unless consent is given by you to do so.
How we use personal information:
We ask you for certain kinds of personal information in order to provide you with the services you request and to process and deliver your order.
We do share your Personal Information with certain third parties:
We use Shopify to power our online store and to process your order (you can read more about how Shopify uses your Personal Information here: https://www.shopify.com/legal/privacy)
We also use Google Analytics to help us understand how our customers use the Site (you can read more about how Google uses your Personal Information here: https://www.google.com/intl/en/policies/privacy/). Please note Google Analytics tracking is enabled at standard anonymous settings on the site and no personal data is recorded.
If you wish you can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.
We also may use your personal information if you have actively opted-in on our website or via a promotional leaflet to provide you with customised communications - via email only - and keep you updated on the latest promotions or products that may interest you. The site guarantees that your personal data collected for these reasons will not be sold, exchanged or shared with any third parties.
An exception to this would be cases in which sharing information with third parties is required by law or if the user requests us to share their information.
In addition, our site utilizes “cookies.” Cookies do not gather any of your personally identifiable information. They do allow us to provide you with a more personalized shopping experience and enable you to fully interact with and complete your transaction on our site.
What are cookies?
“Cookies” are small data files that one of our servers sends to your computer via your Web browser when you connect with our Web site. Their primary function is to help us remember you by tracking your browsing sessions, which enables us to collect non-personally identifiable information (such as your IP address, browser type, and domain name, etc.), and provide you with a more relevant shopping experience.
Cookies are not computer programs, and can't read other information saved on your hard drive. They cannot be used to disseminate viruses, or get a user's e-mail address etc. They only contain and transfer to the website as much information as the users themselves have disclosed to that website.
If you have any concerns about leaving cookies on your computer for extended periods, you can delete them using your browser preferences or privacy menus.
DO NOT TRACK
Please note that we do not alter our Site’s data collection and use practices when we see a Do Not Track signal from your browser.
If you are a European resident, you have the right to access personal information we hold about you and to ask that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us through the contact information below.
Additionally, if you are a European resident we note that we are processing your information in order to fulfil contracts we might have with you (for example if you make an order through the Site), or otherwise to pursue our legitimate business interests listed above. Additionally, to enable us to process your order, please note that your information will be transferred outside of Europe, including to Canada and the United States as part of our website’s platform, Shopify.
When you place an order through the Site, we will maintain your Order Information for our records unless and until you ask us to delete this information.
You have the right to request what information we have on you as a user and for us to remove that information, provided we are not required by law to keep it. For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact us by e-mail at firstname.lastname@example.org or in writing to the below address:
Sussex Uniforms Ltd
6 Delaware Road
SussexUniforms.co.uk uses Sage Pay to process credit and debit card payments. Credit card details are never received or held by SussexUniforms.co.uk.
Sage Pay provides secure online credit and debit card payment solutions for thousands of online and mail order businesses across the UK. They have become one of the largest independent Payment Service Providers in the UK. All transaction information passed between merchant sites and the Sage Pay Systems is encrypted using 128-bit SSL certificates. No cardholder information is ever passed unencrypted and any messages sent to SussexUniforms.co.uk from Sage Pay are signed using MD5 hashing to prevent tampering. You can be completely secure in the knowledge that nothing passed to the Sage Pay servers can be examined, used or modified by any third parties attempting to gain access to sensitive information.
Sage Pay uses 3D secure Authentication, which stands for 3 Domain Secure and is the latest fraud prevention initiative launched by the card schemes as a more secure method for authenticating you at the time of transactions.
ABOUT SAGE PAY ENCRYPTION AND DATA STORAGE
Once on our systems, all sensitive data is secured using the same internationally recognised 256-bit encryption standards used by, among others, the US Government. The encryption keys are held on state-of-the-art, tamper proof systems in the same family as those used to secure VeriSign’s Global Root certificate, making them all but impossible to extract. The data we hold is extremely secure and we are regularly audited by the banks and banking authorities to ensure it remain so.
Sage Pay’s systems are scanned quarterly by Trustwave which are an independent Qualified Security Assessor (QSA) and an Approved Scanning Vendor (ASV) for the payment card brands.
Sage pay is also audited annually under the Payment Card Industry Data Security Standards (PCI DSS) and is a fully approved level 1 payment service provider, which is the highest level of compliance. We are also active members of the PCI Security Standards Council (SSC) that defines card industry global regulation.
LINKS TO BANKS
Sage Pay has multiple private links into the banking network that are completely separate from the Internet and which do not cross any publicly accessible networks. Any cardholder information sent to the banks and any authorisation message coming back is secure and cannot be tampered with.
Sage Pay is controlled by Iris Scanners, which are the latest and most precise biometric security devices available for identification. As used by; chemical plants, airports, police stations, prisons and other facilities where security is paramount. No one can enter or leave the building without a valid security pass.
Sage Pay operates on twin data centres to ensure optimal system security and up-time and has a full disaster recovery and business continuation policy.
We urge children under 18 years of age to check with their parents or guardians before using the internet, as usages will often result in personal information being collected.