BUMBLE AND BLOOM MEDIA

PRIVACY POLICY

OUR PRIVACY POLICY

Bumble and Bloom Media are members of the ICO, the UK’s independent authority set up to uphold information rights in the public interest, promoting openness by public bodies and data privacy for individuals.

 

Please rest assured we are committed to protecting and respecting the privacy of our clients and their customers.

Please take a moment to read our Privacy Policy, this forms part of our Terms and Conditions of working together.

WHAT DATA DO WE COLLECT?

In accordance with the GDPR, we are permitted to process data (e.g. collect, use, store), so long as the process meets the requirements of the GDPR and is on a lawful basis. There are many ways in which you can lawfully process site visitors' data - consent is one of six lawful bases for processing personal information under the GDPR and is the one which we follow.

For more information regarding our GDPR Compliance please refer to the Bumble and Bloom Media and GDPR Compliance section of this document. 
 

We collect and process Personal Information (such as your name, address, telephone number and email address) that is provided to us by you in writing via email, our contact form or over the phone in order to respond to your query, organise a meeting, create a quote/proposal or fulfil our contractual obligations as a client of ours. 

 

We may also collect personal data should you choose to complete surveys that we use for research purposes. A copy of their privacy policies will be made available to survey participants prior to completing the survey to gather their explicit consent of how we will use and store the data they provide. 
 

We collect payment information provided to us by you in order to invoice for work completed by us. This typically includes the business or owners' trading name, first and second names, registered work address, registered work telephone number and company bank details. 

 

THIRD PARTY DATA

This website is built using www.wix.com. Please be aware that Wix have partnered with a number of selected service providers, whose services and solutions complement, facilitate and enhance theirs.

These include:

 

  • Hosting and server co-location services

  • Communications and content delivery networks (CDNs)

  • Data and cyber security services

  • Billing and payment processing services

  • Domain name registrars

  • Fraud detection and prevention services

  • Web analytics

  • Email distribution and monitoring services

  • Session recording and remote access services

  • Performance measurement

  • Data optimisation and marketing services

  • Content providers

  • Legal and financial advisors (collectively known as “Third Party Service(s)”). 

Such Third Party Services may receive or otherwise have access to visitors’ and users’ personal information and/or Users-of-Users’ Personal Information, in its entirety or in part – depending on each of their particular roles and purposes in facilitating and enhancing their services and business, and may only use it for such purposes.

Wix's services may contain links to other websites or services, please note we are not responsible for such websites’ or services’ privacy practices. We encourage you to be aware of this and read Wix's full privacy statement for further information and clarification of how Wix may use personal identifiable data. 

As part of the GDPR, we understand that we are responsible for any third-party apps or services implemented on our site which may collect and store personal data. These services include data analytics tools such as Google Analytics and links to our professional social media networks on Facebook, Twitter, LinkedIn and Instagram. When reviewing our website for GDPR compliance, we made sure that these apps and services were also GDPR compliant to the best of our ability by referring to their updated privacy policies. 

If you're unsure and would like to read them for yourself before accepting the Terms of Use of this privacy Policy and our website you can do so by clicking on the following links: Facebook, Twitter, LinkedIn, Instagram and Google Analytics

Please be aware that while we are confident these third party services are GPDR compliant, Bumble and Bloom Media do not have any control over their privacy policies and the content within them. 

OUR COOKIES POLICY
Cookies are implemented in every site built by Wix. Session (Transient) cookies are erased when you close your browser, and do not collect information from your computer. They typically store information in the form of a session identification that does not personally identify the user. Persistent (Permanent/Stored) cookies are stored on your hard drive until they expire (i.e based on a set expiration date) or until you delete them. These cookies are used to collect identifying information about how you use our website so we can improve user experience and understand what are the most useful topics/pages on our website. 

The list below explains which cookies Wix implements on Wix sites and for what purpose: 

A pop up notice will appear on your first visit to our website to let you know that we use cookies, what kind of cookies we use and why. When you click "ok - got it" you are giving us your explicit consent that you agree to our use of cookies.

You can refuse to accept cookies at any time should you wish to do so by activating the setting on your browser which allows you to refuse the setting of cookies. However, if you select this setting you may be unable to access certain parts of our website. Unless you have adjusted your browser setting so that it will refuse cookies, our system will issue cookies when you log on to our website.

DATA STORAGE
The information mentioned above, and any other information you share with us will be stored to enable us to answer your query, action a complaint, produce a quote/proposal or carry out contractual duties. It will be stored until no longer required on our password protected email system, iCloud and/or password protected company devices (such as iPhone, iPad and Macbook). Only staff working for Bumble and Bloom Media can see or have access to this personal information as and when necessary to fulfil their job role.

 

If you choose to take part in Bumble and Bloom Media market research surveys any information shared in this survey is anonymised (unless consent is given by you) and stored securely on our systems for the purposes of customer feedback and to improve our services. 

Client payment information is stored indefinitely for accounting purposes in accordance with Her Majesty's Revenue and Customs Policies. 

 

We will never sell, distribute or lease your Personal Information to third parties – such as advertisers, unless we required to by law.

 

We will never discuss any personally identifiable client data in public forums including, but not limited to, Linkedin, Facebook, Twitter and Instagram. Any client information we use in our portfolio is anonymised where possible and does not give away any information regarding sales figures, staff identities or any other business data that is not publicly available. 

 

In order to prevent unauthorised access or disclosure we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the Personal Information we collect online.

 

Once we have received your Personal Information, we use strict procedures and security features to try to prevent unauthorised access to the best of our ability. Your Personal Information will not be transferred outside of the UK, unless you are based outside of the UK and we need to contact you using the Personal Information you have provided.

 

We will never add your email address or telephone number to any marketing communications without your explicit consent first. Bumble and Bloom Media are aware of, and follow the The Privacy and Electronic Communications Regulations (PECR) which sit alongside the Data Protection Act and the GDPR, giving you specific privacy rights in relation to electronic communications.
 

There are specific rules we follow for our own marketing purposes and when planning and/or consulting on marketing strategies for clients. This covers all advertising or promotional material including: 
 

  • marketing calls, emails, texts and faxes

  • cookies (and similar technologies)

  • keeping communications services secure

  • customer privacy as regards traffic and location data, line identification, and directory listings 
     

Bumble and Bloom Media is built using www.wix.com. All Wix sites have been enabled for HTTPS. Hyper Text Transfer Protocol Secure (HTTPS) is the secure protocol through which your browser communicates with websites. Using HTTPs means visitors' information is encrypted, and therefore more secure. Our website also has a Secure Sockets Layer (SSL certificate) which allows our site visitors to view our website over an HTTPS connection and further secures the connection between your browser and our website. 
 

YOUR RIGHTS

You have the right to access the personal information we hold about you and the right to request the correction of inaccurate or out of date personal information we hold about you. You also have the right to request that we delete your data, or stop processing it or collecting it.

 

In accordance with the GDPR, visitors to our website also have the right to access their data or "be forgotten" (to be permanently deleted from our databases). Our website provider Wix has developed two main tools to assist us in doing so. 

Subject Access Requests should be made in writing to Chloe Hall (Bumble & Bloom Media's Data Protection Officer) including the following information: your full name and sufficient details about the information you want to enable us to locate it. Your request should be emailed to chloe@bumbleandbloommedia.co.uk.

 

As per the General Data Protection Act update of May 2018 we will not charge you a fee for supplying this information. Your request will be acknowledged and if further information is required regarding the request you will be contacted via the specified method. Your request will be dealt with as promptly as possible within the statutory 40 days of receiving the written request.

GDPR COMPLIANCE
Following the GDPR regulations update of 25th May 2018, we'd like to make the following company statement to reassure clients as a supplier of services and potential customers that we have taken the appropriate recommended action by the ICO to ensure we are GDPR compliant to the best of our ability. 

Consent is one of six lawful bases for processing personal information under the GDPR and is the one which we follow. 
 

Asking for consent

  • We have checked that consent is the most appropriate lawful basis for processing using the ICO's Lawful basis interactive guidance tool.

  • We have made request for consent prominent and separate from our terms and conditions.

  • We ask people to positively opt in.

  • We don’t use pre-ticked boxes or any other type of default consent.

  • We use clear, plain language that is easy to understand.

  • We specify why we want personal data and what we’re going to do with it in our Privacy Policy. 

  • We give separate distinct (‘granular’) options to consent separately to different purposes and types of processing.

  • We name our organisation and any third party controllers who will be relying on the consent.

  • We tell individuals they can withdraw their consent.

  • We ensure that individuals can refuse to consent without detriment.

  • We avoid making consent a precondition of a service.

Recording consent

  • We keep a record of when and how we got consent from the individual. 

  • We keep a record of exactly what they were told at the time.

Managing consent 

  • We regularly review consents to check that the relationship, the processing and the purposes have not changed.

  • We have processes in place to refresh consent at appropriate intervals. 

  • We make it easy for individuals to withdraw their consent at any time, and publicise how to do so.

  • We act on withdrawals of consent as soon as we can.

  • We don’t penalise individuals who wish to withdraw consent.

Any changes we may make to our Privacy Policy or GDPR Statement in the future will be posted on this page and, where appropriate, notified to consenting subscribers and contracted clients by email. We sincerely hope that we have demonstrated how and why processing is necessary for our client contracts, but if you have any further questions about how we use, store or collect your data please do not hesitate to contact chloe@bumbleandbloommedia.co.uk. 

THANKS FOR READING.

 © The content in this document is subject to copyright and may not be copied or reproduced. 

  • Chloe Hall LinkedIn
  • Chloe Hall twitter
  • Bumble and Bloom Media instagram

© 2019 Bumble and Bloom Media