Updated October 2019
At Xander Wilds Design, maintaining the security of your data is a priority, we respect the privacy of our customers and we make every effort to protect user data. We pledge to handle your data appropriately and legally at all times and are dedicated to being transparent about what data we collect about you and how we use it. We do not sell, rent or transfer this information to third parties for marketing purposes.
Personal data is collected on this site with the purpose of processing shop orders, customer registration and communicating with customers/site visitors should they choose to submit an enquiry. Any information collected on this website will only be done so with your consent and shall be used for no other purpose than the reasons stated above. This is dealt with in accordance with the General Data Protection Regulations (GDPR). Xander Wilds Design (referred to as “we”, “us” or “our” in this privacy notice) is the data controller and the sole owner of the information collected on www.xanderwildsdesign.com.We are responsible for your personal data. Our appointed Data Protection officer is Alexander Scott-Wilds and can be reached on the email at firstname.lastname@example.org.
1.Data Collection and Use.
When you conduct a transaction on www.xanderwildsdesign.com, in order for us to successfully process your order/s, we collect the personal information you provide during the checkout process, such as your name, address and contact details. Your personal information will be used for the specific reasons stated below only (see section 2 for full list of personal data collected). This information is securely stored electronically. Payment details such as card numbers are dealt with by our payment provider PayPal and are not held by us. We may contact you by phone or e-mail (if provided) if there is a query with your order. You will receive order confirmation and a despatch email upon completion of your order.
Purpose of Use:
We collect such Non-personal and Personal Information only when legally permitted for the following purposes:
to provide goods and services to you
to make a website tailored to your requirements
to manage any registered account/s that you hold with us
to provide our Users with ongoing customer assistance and technical support
to verify your identity
for crime and fraud prevention, detection and related purposes
with your agreement, to contact you electronically about promotional offers and products and services which we think may interest you
for market research purposes, to create aggregated statistical data and other aggregated and/or inferred Non-personal Information, which we or our business partners may use to provide and improve our respective services, to better understand and provide for your needs
to comply with any applicable laws and regulations where we have a legal right or obligation to use or disclose your information (for example in relation to an investigation by a public authority or in a legal dispute).
How we collect your data:
See below how personal data is collected directly, for example when you set up an on-line account on our website or send an email to through our enquiries form. Other personal data is collected indirectly, for example your browsing or shopping activity. We collect data about you through a variety of different methods including:
Using our services:
The data submitted through the ordering of our products or services, e.g. name, address, contact (as stated above).
You may choose to register as a customer to create an account, in which case you will have the convenience of your address being remembered by the shopping cart for your next order, and you will be able to browse your order history.
We provide a first point of contact on our website’s Enquiries Page, for any questions or queries from the user. Data gathered through this service will be used solely address the enquiry and for no other reason.
Direct Customer Interaction:
Communicating with us in any form via post, phone, email etc, providing feedback to us.
Other methods of data collection include;
Your consent to being subscribed to our newsletter/ mail marketing campaigns, an entry into our competition/prize draw, promotion or survey.
Automated technologies or interactions:
As you use our site, we may automatically collect Technical Data about your equipment, browsing actions and usage patterns. We collect this data by using cookies. Please see section 8 ‘Tracking: Cookies & Google Analytics’ for further details.
In the event you do not provide us with the data that is required when requested, we may not be able to perform the contract between us (for example, we are unable to retrieve payment/funds to process your order or be unable to deliver goods or services to you because of missing contact details) this may result in having to cancel a product or service you have ordered, which we will notify you of in this circumstance.
2.Collected Personal Data:
Personal data refers to any information capable of identifying an individual.
Identity Data may include your first name, last name, username, title, date of birth and gender.
Contact Data may include your billing address, delivery address, email address and telephone numbers.
Transaction Data may include details about payments between us and other details of purchases made by you.
Technical Data may include your login data, password, internet protocol addresses, browser type and version, browser plug-in types and versions, time zone setting and location, operating system and platform and other technology on the devices you use to access this site.
Profile Data may include your username and password, purchases or orders, your interests, preferences, feedback and survey responses.
Usage Data may include information about your on-line browsing activities, how you use our website, products and services. Your correspondence and communications with us.
Marketing and Communications Data may include your preferences in receiving marketing communications from us and our third parties and your communication preferences.
This list is not exhaustive, and in specific instances, we may need to collect additional data for the purposes set out in this Policy.
3.Our communication with you
We may contact you to notify you regarding your account, to troubleshoot problems with your account, to resolve a dispute, to collect fees or monies owed, to poll your opinions through surveys or questionnaires, to send updates about our company, or as otherwise necessary to contact you to enforce our User Agreement, applicable national laws, and any agreement we may have with you. For these purposes we may contact you via email, telephone, text messages, and postal mail.
4.Disclosure of Your Data
At times we may disclose personal information to persons in our group. This can include: Subsidiaries, holding companies, or any other subsidiaries involved in our business, if applicable.
Third Party disclosure may occur for the following reasons:
Website/Service providers who provide IT and system administration & payment services.
HM Revenue & Customs, regulators and other authorities based in the United Kingdom and other relevant jurisdictions who require reporting of processing activities in certain circumstances.
At any time when we are legally required to, we may disclose information about you and your visits to our site.
To prevent fraud and help in fraud protection in order to reduce credit risk, we may disclose information.
Third parties to whom we sell, transfer, or merge parts of our business or our assets may result in the sharing of your information.
We require all third parties to who access your data to uphold the security of your personal data and to treat it in accordance with the law. We only allow such third parties to process your personal data for specified purposes and in accordance with our instructions.
Our company is hosted on the Wix.com platform. Wix.com provides us with the online platform that allows us to sell our products and services to you. Your data may be stored through Wix.com’s data storage, databases and the general Wix.com applications. They store your data on secure servers behind a firewall.
As stated previously your payment details are processed and are held by our payment provider PayPal and not by us. PayPal provide state of the art data security, monitoring every transaction 24/7 to prevent fraud, email phishing and identity theft. Every transaction is heavily guarded behind their advanced encryption. For full details please refer to their website: https://www.paypal.com/uk/webapps/mpp/paypal-safety-and-security
This also applies to any purchases that are made in person through the PayPalhere card reader.
We do not send spam or pass your data on to anyone else for this purpose.
Third Party Links:
This Web site may from time to time contain links to other third-party sites. Please be aware that we, Xander Wilds Design, are not responsible for the privacy practices of such other sites. Our liability covers us only on our site, and thus we do not accept liability for third party links as we have no control over them. This privacy statement applies solely to information collected by this Website. When you leave our website, we encourage you to read the privacy notice of every website you visit.
To deliver products and services to you, it may be necessary for us to share your data outside of the European Economic Area. This will typically occur when service providers are located outside the EEA or if you are based outside the EEA. These transfers are subject to special rules under data protection laws. These data sites are for storing or processing of your information. The information we share outside the European Economic Area may be shared with staff based on the process and storage of said data. It may include such processes as processing a payment or offering support for your service or product needs. The staff processing or storing information may work for our suppliers outside the European Economic Area.
Information we are provided will be stored on secure servers.
Transaction data is encrypted for your safety.
You should understand data via online transmission is not completely secure.
We cannot guarantee full protection and security data, only that we take all reasonable action to protect information sent to us electronically.
Transmission of any data by you is at your own risk.
6.Change of purpose
We will only use your personal data for the purposes for which we were given permission to collect it, unless we reasonably consider that we need to use it for another reason which is compatible with the original purpose.
If we need to use your personal data for a purpose unrelated to the purpose for which we collected the data, we will notify you and we will explain the legal ground of processing.
We may process your personal data without your knowledge or consent where this is required or permitted by law.
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for which are set out in this policy, which include the purposes of satisfying any legal, accounting, or reporting requirements. Different retention periods apply for different types of data, however the longest we will normally hold any personal data is up to 6 years.
In some circumstances you can ask us to delete your data: see section 7 ‘Information Accessibility’ for further information.
In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
As per The Data Protection Act 1998, you are entitled to request access to the data we collect and hold about you. This act provides you with following rights to access information we may hold on you:
The right of access- the right to ask for a copy of personal data that we hold about you
The right of rectification- the right to ask us to update and correct any out-of-date or incorrect personal data that we hold about you
The right of erasure or to be forgotten- the right (in certain circumstances) to request that we delete personal data held on you; where we no longer have any legal reason to retain it
The right to object- the right to opt out of any marketing communications that we may send you and to object to us using / holding your personal data if we have no legitimate reasons to do so
The right to restrict processing- the right (in certain circumstances) to ask us to ‘restrict processing of data’; which means that we would need to secure and retain the data for your benefit but not otherwise use it
The right to data portability- the right (in certain circumstances) to ask us to supply you with some of the personal data we hold about you in a structured machine-readable format and/or to provide a copy of the data in such a format to another organisation.
If you wish to exercise any of the above rights, please contact us using the email address set out in section 11 ‘Contact Us’. To have access to this data, you will be required to pay our processing fee of £10. The fee covers our costs for processing your request and getting the data to you. Please refer to section 10 ‘GDPR Request Form’ to formulate your data access request.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
9.Tracking: Cookies & Google Analytics
Cookies are small text files that are placed on your computer by websites that you visit. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site. Cookies are necessary for the shopping cart software to work. You can set your browser to disable cookies, you might find some site features will not work.
Opt-out of cookies:
Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit http://www.allaboutcookies.org/.
We also use Google Analytics to track anonymous customer habits such as how long visitors stay on the site, how many pages they look at before they leave and which country they are from.
Opt-out of Google Analytics:
To opt out of being tracked by Google Analytics across all websites visit http://tools.google.com/dlpage/gaoptout.
10.Changes to this Statement
11.GDPR Request Form
If you would like to submit a request for a copy of your information held or your data to be removed from this website, please email us using the format below:
Request Right to Access &/or Request to Be Forgotten:
Your full name:
Your contact number:
Your email address:
In accordance with the GDPR guidelines we may refuse this request under certain circumstances.