Privacy Policy

This website www.catswithredshoes.co.uk is owned and operated by Hayley Dancy
trading as Cats With Red Shoes.

1. Introduction

We’re committed to protecting and respecting your privacy in line with new EU-wide
Data Protection Regulations (GDPR).
This policy explains (hopefully in plain English) how and why we use the information you
have given us and how we keep it secure. GDPR also gives you new rights and much
more control over your personal data. We’ll tell you about all this below as well.

2. How we collect information from you

Obviously, we collect information about you when you contact us about our products
and services. We also collect limited information when you visit our website via cookies.
These help us improve and personalise our site. We’ve explained more about both in
sections 3 and 4 below.

3. What are cookies and how do we use them

Most websites use cookies in some way. Cookies are just small pieces of code that
work away in the background to help website owners measure how visitors interact with
website content. However, on our website the only cookies we use are what are known
as ‘necessary’ cookies. The cookies ‘devicePixelRatio’ is used to make sure our site
displays properly on your device. Once you leave the site it is automatically deleted and
no personal data is stored.
Overall, cookies help website owners to give you a better website experience. However,
if you prefer, you can easily turn cookies off in your browser settings. Here are some
links to popular browser’s’ instructions as to ‘how to disable cookies’.
a. Firefox:
https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
b. Chrome: https://support.google.com/chrome/answer/95647?hl=en
c. Opera: http://www.opera.com/help/tutorials/security/cookies/
d. Microsoft Edge:
https://privacy.microsoft.com/en-us/windows-10-microsoft-edge-and-privacy
e. Microsoft Internet Explorer: https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies

4. How we handle information collected when you contact us about products or services

GDPR requires all businesses to have a lawful basis to process personal data about a
customer/prospective customer. The law sets out six different lawful bases to choose
from. Business owners have to explain to you how and when we process your data and
the legal basis for each occurance. Currently our processing fits into four of the six
available bases.
‘Contractual’ basis – this is when processing you data is obvious and necessary, for
example you submit an enquiry and ask us to get back to you or you contact us to hire
our services. Please be assured, we will only use this data for the purposes of offering
relevant services to you.

‘ Legitimate Interests’ basis – we may contact you again after we have provided our
services. For example we might email you in the future to remind you about our
services. Of course we will always give you the opportunity to request we never contact
you again (opt-out).

‘ Legal Obligation’ basis – some processing is necessary because we have to comply
with the law. For example, when you make purchases. HMRC require us to keep
records for at least 5 years.
‘Consent’ basis – if we are given photographs from a show we’ll always ensure prior
consent is obtained to display them on our site.

5. Security of your data

When you give us personal information, we take steps to ensure that it’s treated
securely. We will absolutely not share your information with third parties for marketing
purposes.

a)When you call, email or contact us via our website or social media, any personal
information you give is processed electronically and stored safely. Typically, to
process an enquiry, personal information will include names, email addresses
and phone number

b)When you hire us we also generate a paper copy for preparation of our annual
accounts and tax return. GDPR doesn’t prohibit keeping personally identifiable
information on paper but we must take all reasonable steps to make sure it’s
stored securely. We confirm that we always adhere fully to the safe storage of
your personal data be that electronic or paper. Methods include lockable
cabinets for paper based data and password protected encrypted storage for
electronic data.

c)We use BookingBug as a third party customer bookings & appointments system.
BookingBug are UK based and adhere to GDPR. Any data we input into the
BookingBug system is secured on password and firewall protected servers.

d)Our website is hosted on Commerce Magic servers which are located in the UK.
Commerce Magic adhere to GDPR and when you sue our website any personal
data you give us in encrypted by default (https).

e)We occasionally use PayPal as a third party payment portal online. PayPal use
robust banking-standard security and protection to make sure your data is
processed securely. Read more here
https://www.paypal.com/uk/webapps/mpp/ua/privacy-prev

6.Access to your personal information

General Data Protection Regulation (GDPR) provides increased rights for individuals.
This is the full list of individual’s rights. They don’t apply in all circumstances. However,
if you wish to exercise any of these rights please contact us using the details below and
we’ll be happy to help.

The right to be informed about the processing of your personal information.
● The right to have your personal information corrected if it is inaccurate and to
have incomplete personal information completed.
● The right to object to processing of your personal information.
● The right to restrict processing of your personal information.
● The right to have your personal information erased (the “right to be forgotten”).
● The right to request access to your personal information and to obtain
information about how we process it.
● The right to move, copy or transfer your personal information (“data portability”).
● Rights in relation to automated decision making which has a legal effect or
otherwise significantly affects you.
After receiving any request, we will tell you if and when we expect to provide you with
the information.

7. Data retention period

GDPR says we shouldn’t retain your data for longer than is necessary.
We’ll only hold your personal information:-
a) For as long as we have reasonable business needs – like carrying out bookings.
b) To comply with our legal obligations – for example, HMRC require us to keep records
for at least 5 years after the 31 January submission deadline of the relevant tax year.

8. How you can complain

a. If you are not happy with how we handle your data or you have any complaint
then you should tell us by email. Our address is info@catswithredshoes.co.uk

b. If you are in any way dissatisfied about how we process your personal
information, you have a right to lodge a complaint with the Information
Commissioner’s Office. This can be done at https://ico.org.uk/concerns/

9.Contact details

You can contact us:
a. by post, to
Rear 147/149 Highfield Road,
South Shore,
Blackpool,
Lancashire,
FY4 2HG.
b. using our website contact form
c. by telephone, on 01253 310401
d. by email, using info@catswithredshoes.co.uk

© Cats With Red Shoes 2018