Skip to content

Country

Privacy and Cookie Policy

The Bathroom Shed understands that your privacy is important to you and that you care about how your personal data is used. We respect and value the privacy of all of our customers, suppliers and partners and will only collect and use personal data in ways that are described here and in a way that is consistent with our obligations and your rights under the law.

1. INFORMATION ABOUT US

The Bathroom Shed is an online retailer of bathroom furniture, fittings and accessories.

Address: Unit 2, Higham Mead, Chesham, Buckinghamshire, HP5 2AH

Tel: 0808 108 8585

Email: info@thebathroomshed.com

 

2. WHAT IS PERSONAL DATA?

Personal data is defined by the General Data Protection Regulation (GDPR) as any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier.

Personal data is, in simpler terms, any information about you that enables you to be identified. Personal data covers obvious information such as your name and contact details, but it also covers less obvious information such as identification numbers, electronic location data and other online identifiers.

 

3. WHAT PERSONAL DATA DO WE COLLECT?

We may collect, use, store and transfer different kinds of personal data about you (this may vary according to your relationship with us) which we have grouped together as follows:

  • Identity Data includes first name, last name, username or similar identifiers.
  • Contact Data includes billing address, delivery address, email address and telephone numbers.
  • Financial Data includes credit history, bank account and payment card details.
  • Transaction Data includes details about payments to and from you and other details of products and services you have purchased from us.
  • Technical Data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website.
  • Profile Data includes your username and password, purchases or orders made by you, your preferences, feedback and survey responses.
  • Usage Data includes information about how you use our website, products and services.
  • Marketing and Communications Data includes your preferences in receiving marketing from us and our third parties and your communication preferences.
  • Surveillance and Security Data will include your physical identity recorded on cameras used to monitor our premises.
  • We also collect, use and share Aggregated Data such as statistical or demographic data for any purpose. Aggregated Data may be derived from your personal data but is not considered personal data in law as this data does not directly or indirectly reveal your identity. For example, we may aggregate your Usage Data to calculate the percentage of users accessing a specific website feature. However, if we combine or connect Aggregated Data with your personal data so that it can directly or indirectly identify you, we treat the combined data as personal data which will be used in accordance with this privacy notice.
  • We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.

 

If you fail to provide personal data

Where we need to collect personal data by law, or under the terms of a contract we have with you and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with goods or services). In this case, we may have to cancel a product or service you have with us but we will notify you if this is the case at the time.

 

4. HOW DO YOU USE MY PERSONAL DATA?

Under GDPR, we must always have a lawful basis for using personal data. This may be because the data is necessary for our performance of a contract with you, because you have consented to our use of your personal data, or because it is in our legitimate business interests to use it. Your personal data may be used for on the following purposes:

  • Providing and managing your account.
  • Supplying our goods to you and your customer. The personal details are required in order for us to enter into a contract with you.
  • Communicating with you and your customer, this will include providing delivery information via email, telephone and mobile text messaging communication.
  • Billing of payments for provision of goods and services.

With your permission and/or where permitted by law, we may also use your personal data for marketing purposes, which may include contacting you by email, telephone or post with information and news on our goods and services. You will not be sent any unlawful marketing or spam. We will always work to fully protect your rights and comply with our obligations under the GDPR and the Privacy and Electronic Communications (EC Directive) Regulations and you will always have the opportunity to opt-out.

 

5. HOW LONG WILL YOU KEEP MY PERSONAL DATA?

Will not keep your personal data for any longer than is necessary in light of the reason(s) for which is was first collected. Your personal data will therefore be kept for the following period(s) (or, where there is no fixed period, the following factors will be used to determine how long it is kept):

  • For the length of the contract (financial information such as invoices will be kept for the legally required period of time).
  • For the length of the supplier/partner agreements in place (financial information such as invoices will be kept for the legally required period for accounting purposes only).

6. HOW AND WHERE DO YOU STORE OR TRANSFER MY PERSONAL DATA?

We will only store or transfer your personal data in the UK. This means that it will be fully protected under GDPR. The security of your personal data is essential to us and to protect your data, we take a number of important measures, including the following:

  • Data encryption
  • Secure passwords and internal policies
  • Training of all staff to understand data protection responsibilities

7. DO YOU SHARE MY PERSONAL DATA?

Your personal data will be treated as strictly confidential, and will be shared only with third party carriers to supply the delivery services for you or suppliers/manufactures to deal with technical issues.

If any of your personal data is required by a third party, we will take steps to ensure that it is handled safely, securely and in accordance with your rights, ours and the third party’s obligations under the law.

In some limited circumstances, we may be legally required to share certain personal data, which might include yours, if we are involved in legal proceedings or complying with legal obligations, a court order, or instructions of a government authority.

 

8. HOW CAN I ACCESS MY PERSONAL DATA?

If you want to know what personal data we have about you, you can ask us for a copy of it. This is known as a ‘subject access request’. All subject requests should be made in writing and sent to the email or postal address shown in section 1.

You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.

 

9. AUTOMATED DECISION MAKING

We do not use any form of automated decision making in our business.

 

10. FURTHER PROCESSING

If we wish to use your personal data for a new purpose, not covered by this Data Privacy Notice, then we will provide you with a new notice explaining this new use prior to commencing the processing and setting out the relevant purposes and processing conditions.

 

11. CHANGES TO OUR PRIVACY POLICY

Any changes we may make to our privacy policy in the future will be posted on this page and, where appropriate, notified to you by e-mail. Please check back frequently to see any updates or changes to our privacy policy.

 

12. HOW TO MAKE A COMPLAINT

To exercise all relevant rights, queries or complaints please in the first instance contact Jason Ifill at The Bathroom Shed at Unit 2, Higham Mead, Chesham, Buckinghamshire, HP5 2AH

Tel: 0808 108 8585

Email: info@thebathroomshed.com

If this does not resolve your complaint to your satisfaction, you have the right to lodge a complaint with the Information Commissioners Office on 0303 1231113 or via email https://ico.org.uk/global/contact-us/email/ or at the Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, England.

 

COOKIES

Our website uses cookies to control certain site functionality. A cookie is a small data file, stored on the visitor’s computer which identifies the computer to the site and is used to control access to the site content and other functionality such as the ordering process.

There are two types of cookie used on our site: session cookies and persistent cookies. Session cookies are temporary files used to store information for your current browser session, and are deleted when you close your browser. Persistent cookies are files that are saved on your computer and contain information that can be read by the site when you return, and are used to manage your user experience, or provide anonymous statistical analysis relating to your visits.

Details of all our cookies are shown below. None of the cookies store any personal information that could be used to identify you.

All the cookies are 1st party cookies – this means they are set and used only by our website. No 3rd party cookies (cookies from an external source, typically used to track advertising) are used on our site.

Session cookies for site management: when you access the site, a cookie “token” with a unique encrypted session id code is passed to your computer. This token then controls your access to the site for that session, and is deleted once you close your browser or log off from the site. These cookies are an essential part of the site delivery system, and you will not be able to fully use our site without cookies enabled.

Persistent cookies for site management: if you register on the site and select the “Remember me” option, a persistent cookie is passed to your computer. This cookie is not deleted when you leave the site or close your browser, but is saved on your computer. This cookie contains an encrypted user id code that identifies your computer upon future visits and automatically logs you into the site. This cookie does not contain any personal information that could be used to identify you.

 

Tracking cookies

We use a number of services to monitor traffic on our site.

Google Analytics When you visit our site the Google Analytics program sets certain cookies that record statistical information about your visits to the site, and we are required by law to identify these cookies to you and how they are used. These cookies do not store any personal information that could be used to identify you.

These cookies are:

  • This is a persistent cookie that keeps track of the number of times you visit the site, the date and time of your first visit, and the date and time of your last visit. This is a persistent cookie that is set to expire 24 months from your last recorded visit.
  • and _utmc. These are session cookies that work together. _utmb. records the exact time you enter the site, and _utmc. records the time you exit the site. _utmb. is automatically deleted when you close your browser, _utmc. expires 30 minutes after your last page view is recorded.
  • This is a persistent cookie that stores the “referrer” information provided by your computer and browser. This information might include: the source of your visit (e.g. directly or from another website or search engine), any search terms you used, which country you are from, your language settings, and the technical specifications of your computer (or other device) and browser. This cookie expires after 6 months.
  • This is a persistent cookie that can be set to record any classification of your visit as of a particular type in the Google Analytics program. This cookie is a “permanent” cookie that is set to expire 24 months from your last recorded visit.