Your privacy is important to us. We wish to ensure that this website is safe to use and any information you provide us with is secure.
This policy applies to the Lily-tree.co.uk website and the Lily-Tree email list and covers the data we collect, how it is used and secured, how long it is kept and your rights in relation to personal information.
Please read the policy carefully and contact us with any questions or concerns about our privacy practices.
Who we are
As owner of the website, Teresa Kennard is the data controller for personal information.
What information do we collect?
We collect data that you provide when you contact us through the contact form, send us an email or subscribe to our email list. The data collected through each of these methods are the name you provide and your email address.
In addition, cookies are used to collect visitor’s session information.
These cookies measure and collect session information, including page response times, length of visits to certain pages, page interaction information, and methods used to browse away from the page.
How do we use personal information?
We use this information in
What legal basis do we have for processing your personal data?
Where you have clear consent for us to process your personal data for the purposes of providing information.
Where the processing is necessary for the functioning of the website.
Where you have provided your consent by completing the contact form or emailing us, you can withdraw that consent by emailing us and telling us that you wish your information to be deleted.
Where you have provided your consent by signing up to our email list, you can withdraw that consent by following the link at the bottom of each email sent from us to unsubscribe.
When do we share personal data?
We do not share personal data with external parties
How do we secure personal data?
Our website is hosted on Inmotion using WordPress. Your data may be stored through Inmotion’s or WordPress’ data storage, databases and their general applications. They store your data on secure servers behind a firewall.
Our email list is held on the mailchimp.com platform. This service provides for the collection, vis sign-up forms and storage of personal data in order to allow us to create and use distribution lists, and send marketing emails. Mailchimp may also transfer personal data to certain Mailchimp sub-processors to perform critical services, such as helping Mailchimp prevent abuse and providing support to customers.
Mailchimp’s headquarters are in the United States and its servers are also located in the United States. This means data they process may be transferred to, stored, or processed in the United States. Mailchimp contractually commits to transfer and process all of its users’ European data in compliance with the Standard Contractual Clauses (the “SCCs”), to ensure compliance with European data protection law (including the GDPR).
The entire Mailchimp application is encrypted with TLS 1.2 or higher and Mailchimp maintains technical and organizational security measures that are designed to protect Customer Data from Security Incidents and designed to preserve the security and confidentiality of Customer Data in accordance with Mailchimp’s security standards.
How long do we keep your personal data for?
For personal information provided by email or through the contact form, the data will be kept for a maximum of 6 months from the last contact, to ensure continuity of any conversations.
Cookies used on the site will automatically store information for a set period which can vary from the session length to one year, depending on the specific cookie.
The nature of the email list is to provide information on an ongoing basis, and therefore information will not be deleted until you request it by unsubscribing to the list.
Your rights in relation to personal data
Under the GDPR, you have the right to access and control your personal data. These include rights in respect of:
you have the right to request and receive a copy of your personal information held by us.
you have the right to have inaccurate personal data rectified, or completed if it is incomplete. You also have the right to have personal data erased. This is also known as the ‘right to be forgotten’.
where you have given us consent to use you information, you have the right to withdraw that consent.
You havethe right to restrict the processing of your personal data and the right to object to the processing of your personal data in certain circumstances.
If you wish to exercise these rights, you can email us at firstname.lastname@example.org with the specific request. You may also make the request via social media or phone, in which case identify verification would be sought via the email address held for you.
How to contact us
If you would like to access, correct, amend or delete any personal information we have about you, you are invited to contact us at email@example.com or via the contact form on the website.