The Vintage Tea Service
The Privacy Policy
This Privacy Policy explains how our website collects and stores data, sometimes via third parties. The Vintage Tea Service is hosted on the Wix.com platform. Wix.com provides us with the online platform that allows us to sell our products and services to you. Your data may be stored through Wix.com’s data storage, databases and the general Wix.com applications. They store your data on secure servers behind a firewall.
Types of Data Collected
​
We receive, collect and store any information you enter on our website or provide us in any other way. In addition, we collect the Internet protocol (IP) address used to connect your computer to the Internet; login; e-mail address; password; computer and connection information and purchase history. We may use software tools to measure and collect session information, including page response times, length of visits to certain pages, page interaction information, and methods used to browse away from the page.
Personal data is defined as data that can when put together identify you as an individual. The types of
Personal Data that our website collects or stores in your web browser, by itself or through third parties, there are:
​
· Cookies;
· Usage data;
· for all users.
​
For users who log in using Facebook, and give us Facebook details while doing so, we store:
​
· Your email address, to send you details of any purchases you make, whether membership or events;
· Your Facebook profile link, in case we need to contact you and can't reach you by email; this may also be used to ensure that you should be using the website (i.e. you identify as a woman);
· Your gender (see above);
· Your First and Last names according to your Facebook Profile.
​​​​
Other Personal Data collected may be described in other sections of this privacy policy or by dedicated explanation text contextually when the collection of that data occurs. The Personal Data recorded is in some cases freely provided by the User, or otherwise collected automatically when using this website.
​
Why Do We Collect Personal Data?
​
We collect such Non-personal and Personal Information for the following purposes:
​
1. To provide and operate the Services;
2. To provide our Users with ongoing customer assistance and technical support;
3. To be able to contact our Visitors and Users with general or personalized service-related notices and promotional messages;
4. To create aggregated statistical data and other aggregated and/or inferred Non-personal Information, which we or our business partners may use to provide and improve our respective services;
5. To comply with any applicable laws and regulations.
Use of Cookies
​
Any use of Cookies – or of other tracking tools – by this website or by the owners of third party services used by this website, unless stated otherwise, serve to identify Users and remember their preferences, for the purposes of a) providing the services required by the User and b) collecting usage information with which to improve the website over the longer term, for example (but not limited to) web browsers used to visit the site, what kind of device the User is browsing on (e.g. mobile, tablet, desktop) and what actions are taken on the website during a visit. Such usage information is invaluable in the ongoing development of a website, and the only personally identifiable information stored with the usage information is the user’s IP address, which does not give us the ability to identify a particular User of the site beyond their approximate geographical location.
​
Failure to provide certain Personal Data may make it impossible for this website to provide its services. For example, you will be unable to sign up for an email newsletter without providing your email address.
​
Users are responsible for any Personal Data of third parties obtained, published or shared through this website and confirm that they have the third party’s consent to provide the Data to the Owner.
​
Mode and place of processing the Data
​
Methods of processing data
​
The Data Controller processes the Data of Users in a proper manner and shall take appropriate security measures to prevent unauthorised access, disclosure, modification, or unauthorised destruction of the Data.
​
The Data processing is carried out using computers and/or IT enabled tools, following organisational procedures and modes strictly related to the purposes indicated.
​
In addition to the Data Controller of, Life, Style, Love Liverpool, in some cases the Data may be accessible to certain types of persons in charge, involved with the operation and development of the site (administration, marketing, legal, system administration) or where you interact with one of the services fulfilled by a third party, for example Stripe, which is used to process our payments, the external party who fulfils that service will act as an authorised Data Processor. The updated list of these parties may be requested from the Data Controller at any time.
Place
​
The Data is processed at the Data Controller’s operating offices and in any other places where the parties involved with the processing are located. At this time, those parties are:
· Google Analytics
· WIX Payments - payment provider
· 123i Form builder GDPR compliance document for Style Card members and Style Card Business Partners
· Wix Forms - inhouse form application
For further information, please contact the Data Controller.
Retention time
​
The Data is kept for the time necessary to provide the service requested by the User, or stated by the purposes outlined in this document. Once finished with the data is deleted in accordance with our procedures.
​
The Use of the collected Data
​
The Data concerning the User is collected to allow the Owner to provide its services, as well as for the following purposes: Usage Analytics, and managing contacts and sending messages.
​
We may contact you to notify you regarding your account, to troubleshoot problems with your account, to resolve a dispute, to collect fees or monies owed, to send updates about our company, or as otherwise necessary to contact you to enforce our User Agreement, applicable laws, and any agreement we may have with you. For these purposes we may contact you via email, or postal mail.
The Personal Data used for each purpose is outlined in the specific sections of this document.
​
Detailed information on the processing of Personal Data
​
Personal Data is collected for the following purposes and using the following services:
Analytics
​
The services contained in this section enable the Owner to monitor and analyse web traffic and can be used to keep track of User behaviour for analysis to improve the website.
​
Google Analytics (Google)
​
Google Analytics is a web analysis service provided by Google Inc. (“Google”). Google utilises the data collected to track and examine the use of this application, to prepare reports on its activities and share them with other Google services.
Google may use the Data collected to contextualise and personalise the ads of its own advertising network.
Personal Data collected: Cookie and Usage data.
Place of processing : USA – Privacy Policy – Opt Out
Payment
Payment information is captured by our Payment provider, Wix to allow you to purchase services from our website using your credit or debit card.
All direct payment gateways offered by Wix.com and used by our company adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
Wix Payments
​
Wix Checkout is a payment integration provided by Wix.com. Wix may utilise the Data collected to track and examine the use of this Application, to process and enact payment charges or refunds to credit and debits cards of our users, to prepare reports on its activities, and for internal use at Stripe to improve the Wix platform.
Personal Data collected: Name, Address and Payment Card Information.
Place of processing: USA – Privacy Policy
​​
​
PayPal Payments
​
PayPal is a payment integration provided by PayPal Inc. ("PayPal"). PayPal may utilise the Data collected to track and examine the use of this Application, to process and enact payment charges or refunds to credit and debits cards of our users, to prepare reports on its activities, and for internal use at PayPal to improve the Stripe platform.
Personal Data collected: Name, Address and Payment Card Information.
Place of processing: Luxembourg – Privacy Policy
https://www.paypal.com/uk/webapps/mpp/ua/privacy-full
Additional information about Data Collection and Processing
​
Legal action
​
The User’s Personal Data may be used for legal purposes by the Data Controller, in Court or in the stages leading to possible legal action arising from improper use of this website or related services.
The User declares to be aware that the Data Controller may be required to reveal personal data upon request of public authorities.
​
Additional information about Users’ Personal Data
​
In addition to the information contained in this privacy policy, this website may provide the User with additional and contextual information concerning particular services or the collection and processing of Personal Data upon request.
​
System Logs and Maintenance
​
For operation and maintenance purposes, this website and any third party services may collect files that record interaction with this Application (System Logs) or use for this purpose other Personal Data (such as IP Address).
Information not contained in this policy
More details concerning the collection or processing of Personal Data may be requested from the Data Controller at any time. Please see the contact information in our ‘Contact Us’ website section.
​
The Rights of Users
​
This website does not support “Do Not Track” requests. We are a small business based in Cheshire, England. We do not have the technical support nor the staff capacity to process DNT requests. Instead, use a browser that supports Do Not Track.
​
To determine whether any of the third party services it uses honour the “Do Not Track” requests, please read their respective privacy policies.
​
If you don’t want us to process your data anymore, please contact us at thevintageteaservice@gmail.com
If you would like to: access, correct, amend or delete any personal information we have about you, you are invited to contact us at thevintageteaservice@gmail.com
Changes to this Privacy Policy
​
We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it. It is strongly recommended to check this page often, referring to the date of the last modification listed at the bottom. If a User objects to any of the changes to the Policy, the User must cease using this website and can request that the Data Controller removes the Personal Data. Unless stated otherwise, the then-current privacy policy applies to all Personal Data the Data Controller has about Users.
​
Information about this Privacy Policy
​
The Data Controller is responsible for this privacy policy.
​
Definitions and Legal References
​
Personal Data (or Data)
​
Any information regarding a natural person, a legal person, an institution or an association, which is, or can be, identified, even indirectly, by reference to any other information, including a personal identification number.
​
Usage Data
​
Information collected automatically from this website (or third party services employed on this website ), which can include: the IP addresses or domain names of the computers utilised by the Users who use this website, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilised to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server’s answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilised by the User, the various time details per visit (e.g., the time spent on each page within the website) and the details about the path followed within the website with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User’s IT environment.
​
User
The individual using this website, is referred to as the Data Subject, to whom the personal data belongs.
Data Subject
The legal or natural person to whom the Personal Data refers.
​
Data Processor
The natural person, legal person, public administration or any other body, association or organisation authorised by the Data Controller to process the Personal Data in compliance with this privacy policy.
​
Data Controller
The natural person, legal person, public administration or any other body, association or organisation with the right, also jointly with another Data Controller, to make decisions regarding the purposes, and the methods of processing of Personal Data and the means used, including the security measures concerning the operation and use of this website. The Data Controller, unless otherwise specified, is the Owner of this website.
​
This Application
The hardware or software tool by which the Personal Data of the User is collected.
​
Cookie
A small piece of data stored in the User’s device.
​
Legal information
Notice to European Users: this privacy statement has been prepared in fulfilment of the obligations under Art. 10 of EC Directive n. 95/46/EC, and under the provisions of Directive 2002/58/EC, as revised by Directive 2009/136/EC,
on the subject of Cookies.
This privacy policy relates solely to the https://thevintageteaservice.com website.
​
​
Cookie Name Purpose Duration Cookie Type
XSRF-TOKEN Used for security reasons Session Essential
hs Used for security reasons Session Essential
svSession Used in connection with user login 2 years Essential
SSR-caching Used to indicate the system from which the site was rendered 1 minute Essential
_wixCIDX Used for system monitoring/debugging 3 months Essential
_wix_browser_sess Used for system monitoring/debugging session Essential
consent-policy Used for cookie banner parameters 12 months Essential
smSession Used to identify logged in site members Session Essential
TS* Used for security and anti-fraud reasons Session Essential
bSession Used for system effectiveness measurement 30 minutes Essential
fedops.logger.sessionId Used for stability/effectiveness measurement 12 months Essential
wixLanguage Used on multilingual websites to save user language preference 12 months Functional
​
​
​
​