This website is owned and operated Emma-Louise Grinsted of 15 West Street, Corfe Castle, Dorset, BH20 5HA, United Kingdom.
Terms such as “I”, “me” and “my” and the names Elouisa and elouisa.art all refer to me, Emma-Louise Grinsted, where they are used in this policy.
By using my website as a website visitor, mailing list subscriber or customer, you agree to be bound by the terms of this policy.
Definitions and interpretation
|Data||any information that you submit via the website|
|Cookies||a small text file placed on your computer by the website when you visit certain areas or when you use certain features|
|Data Protection Laws||any applicable law relating to the processing of personal Data, including but not limited to the Directive 96/46/EC (Data Protection Directive) or the GDPR, and any national implementing laws, regulations and secondary legislation, for as long as the GDPR is effective in the UK|
|GDPR||the General Data Protection Regulation (EU) 2016/679|
|UK and EU Cookie Law||the Privacy and Electronic Communications (EC Directive) Regulations 2003 as amended by the Privacy and Electronic Communications (EC Directive) (Amendment) Regulations 2011|
|User or you||anyone that accesses the elouisa.art website and is not an elouisa.art employee, consultant or similar|
|Website||https://www.elouisa.art and any sub-domains of this site|
My mailing list is for subscribers who are interested in being kept informed about my business activities. You can subscribe through various online sign-up forms.
When you place an order on my website, I gather a little information about you to help me provide the best possible service to you now and in the future. I ask for your name, address, email address and delivery address. Further credit/debit card information is collected by my payment processor as detailed below. The information I collect is needed to be able to process and complete your order.
My shopping cart system is provided by Woocommerce (https://woocommerce.com). While you browse my site, they enable me to track:
- Products you’ve viewed: I’ll use this to show you products you’ve recently viewed etc.
- Location, IP address and browser type: I’ll use this to estimate taxes and shipping etc.
- Shipping address: I’ll ask you to enter this so I can send you the order!
Embedded content from other websites:
Pages on my website might sometimes include embedded content, (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in exactly the same way as if you had visited the other website.
I sometimes use content from these websites:
- Facebook (https://www.facebook.com/)
- Instagram (https://www.instagram.com/)
- Pinterest (https://www.pinterest.co.uk/)
- Twitter (https://twitter.com/)
- YouTube (https://www.youtube.com/)
I use JetPack (https://jetpack.com/) and Google Analytics (https://analytics.google.com) to monitor website usage and collate statistics. The information gathered consist of IP address, user agent, visiting URL, referring URL, timestamp of event, browser language and country code. I don’t have access to any identifyable information via this feature. So, for example, I can see that a specific page has 285 views, but I can’t see which specific users viewed that page.
I use JetPack (https://jetpack.com/) and Wordfence (https://www.bluehost.com) to prevent malicious login attempts. In order to check login activity and potentially block fraudulent attempts, the following information is used: attempting user’s IP address, attempting user’s email address/username, (i.e. according to the value they were attempting to use during the login process), and all IP-related HTTP headers attached to the attempting user.
I use JetPack (https://jetpack.com/) and Google Analytics (https://analytics.google.com) to monitor website usage and collate statistics. Anonymous usage information is sent to WordPress.com and Google.com for display purposes only.
Where I send your data
Keeping Data secure
I use technical and organisational measures to safeguard your Data and I store your Data on secure servers.
The technical and organisational measures include measures to deal with any suspected data breach. If you suspect misuse, loss or unauthorised access to your Data, please let me know immediately by e-mailing me at email@example.com
I confirm that any personal information which you have given me and any identifiable user information, is held strictly in accordance with the Data Protection Act 1998, and I don’t pass on your personal information to any third parties unless I am required to do so by the law.
As a customer, I keep a record of your order, so that I can deal with any issues that may happen. I also keep a record of any emails you send me so that I can provide you with an excellent standard of customer services whenever you contact me.
I retain personal information where I have an ongoing legitimate business or legal need to do so. I only keep this information:
- When I have a legal or contractual need to retain the data
- When the data is necessary to provide services
When I stop needing to hold your personal information, I will either delete it or anonymize it as soon as possible.
Stripe (https://stripe.com) may retain personal data longer than me, for legal and regulatory reasons, for fraud monitoring, detection and prevention, for tax, accounting, and financial reporting, where they are required to by their financial partners, and where data retention is required by the payment methods that Stripe supports.
I use JetPack (https://jetpack.com/) and Google Analytics (https://analytics.google.com) to monitor website usage and collate statistics. Stats logs (containing visitor IP addresses) are retained for 28 days and are just used to show anonymous usage data.
My website cookie consent cookie remembers your preference for 1 year. After this time, you will be asked to consent again.
Under GDPR you have the following rights:
- Right of access to the Personal Data held
- Right of rectification if incorrect data is held
- Right to erasure
- Right to object to processing
You have the right to request a copy of the information that I hold about you at any time. Please email me to exercise this right.
Please let me know if any data I hold on you is incorrect. There is a ‘preferences’ link in the footer of each MailChimp (https://mailchimp.com/) email. This gives you the ability to easily update your profile details at any time.
You can request that I erase any personal data I hold about you. This doesn’t include any data I have to keep for administrative, legal, or security purposes. An ‘unsubscribe’ option is automatically included in the footer of every MailChimp (https://mailchimp.com/) email. This allows you to easily unsubscribe.
18 October 2019