Privacy Policy

We promise to look after your personal data and maintain your privacy in the same way that we want to trust others to look after ours.  We will always ask for specific “Opt-In” where approporiate. You can always unsubscribe at any time. And we will never sell your details to third party companies for their advertising and promotional  purposes.

Under recent changes to Data protection laws, known as EU General Data Protection Regulation (GDPR), which came into effect in May 2018, we are required to present our privacy policy on our website to let you know who we are, and how we manage your data which you consent to share with us.

We will, of course, always comply with the legal regulations, both today, and as they are updated in future.  In addition, we identify and follow best practices to ensure that our customers, suppliers, friends and associates can trust us with their information.

Who we are

We are Elfie Drinks Co Ltd, an independent  business registered as a private company (limited by shares) in England and Wales
(registered no: 11310424)

Our website address is: http://elfiedrinks.co.uk.

We have appointed a Data Protection Officer, who is responsible for questions regarding this policy.  You may email any questions  to ” DPO@elfiedrinks.co.uk ” or ” hello@elfiedrinks.co.uk “.

Why do we collect data at all?

Nearly all companies collect data from their customers. Some is very simple technical data from your computer or smart phone to make sure the website appears at the right shape and size on your device.  Some personal data is also collected to allow us to keep in touch with relevant information if you want us to. Other data is “aggregated” with other users and customers, providing statistics to help us understand which parts of our business and communications are relevant to which type of user; so we can send the right messages to the right people, using the right media and at the right time they want to hear from us.  Aggregated data is normally anonymised, so it can’t be traced back to individual customers.

What personal data we collect and why we collect it

We may collect, store and process personal information about you as follows.

– When you write to us, e-mail us, engage with us on our website and social media, take part in our competitions, send us pictures and photographs, or just phone us for a chat

– We may also receive data from publicly available sources and or third party companies which we work with, such as social networks and direct marketing companies

This will include : Personal identity data such as your name, gender, age and contact details; Tecnical data such as your login data, browser type and version, operating system and platform  (so we can deliver our webpages and pictures in the correct size and format for you); Profile data from feedback surveys and responses; usage data from our website; and the marketing and communications preferences which you have opted into or out of.

We do NOT collect any special category of personal information, such as Race, Ethnicity, Religion, Sexual Orientation, Political Opinions or memberships, your Health or other biometric data .

We will only use your data for the specific purposes for which it was collected, or for purposes which we reasonably consider to be compatible with the original purpose, which we will be happy to explain upon request.

Website / Blog Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms

Our contact forms use “Mail-chimp” or equivalent application. All data is collected within EU,  and remains subject to GDPR regulation. Your specific Opt In is required for us to use this and you can unsubscribe at any time. The Mailchimp Privace policy is available here:  https://mailchimp.com/legal/privacy/

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, or believe we hold other personal data about you,  you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Please email  DPO@elfiedrinks.co.uk using the title “Subject Access Request” .

Where we send your data

Visitor comments may be checked through an automated spam detection service.

How we protect your data

All personal data is held behind updated password protected firewalls on our servers, or the servers of our application suppliers, or locked away within our private office.

What data breach procedures we have in place

In the event of a suspected data breach, either with us or our application suppliers, we will write to you to inform you of this, to allow you to take any necessary steps to re-secure your data both with Elfie Drinks Co Ltd, and with other sources

Opting Out

You can ask us or third parties to stop sending you marketing messages at any time.  Either follow the “unsubscribe” link which will be provided, or email  DPO@elfiedrinks.co.uk