Information We Collect

When you reach out to us for corporate floral arrangements or gift services, we gather details you choose to share. This includes your name, company name, email, phone number, delivery addresses, and specific floral requirements. We also collect payment details when placing orders, though processing is securely handled by our payment partners.

For corporate clients, we may obtain additional business details such as company registration information, preferred delivery timelines, and budget needs to tailor our service to your organization.

Our site automatically collects certain technical data when you visit. This includes your IP address, browser type, device information, and site navigation patterns. We use this data to enhance site performance and understand how clients discover our services.

How We Use Your Information

We primarily use your personal data to fulfill flower orders and deliver excellent customer support. This includes processing orders, arranging deliveries, sending order confirmations, and following up to ensure satisfaction.

• Processing and fulfilling your flower orders and gift arrangements
• Informing you about order status and delivery timelines
• Providing customer support and responding to inquiries
• Enhancing our services based on your feedback and preferences
• Sending relevant updates about our services (with your consent)
• Keeping records for business and legal compliance purposes

We also use aggregated, non-identifiable data to understand market trends and improve our operations. For example, we might analyze which types of arrangements are most popular in different seasons to better manage inventory.

With your explicit consent, we may share information about seasonal offerings, special promotions, or new services that could interest your business. You can opt out of these communications at any time by clicking unsubscribe in our emails or contacting us directly.

Information Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. Your data remains within our business ecosystem and is shared only when necessary to provide our services or meet legal obligations.

We collaborate with trusted service providers who assist us in delivering our services. This includes payment processors, delivery partners, and flower suppliers. These partners are contractually obligated to protect your information and use it solely for the services they provide.

We may disclose your information if required by United Kingdom law, court orders, or government regulations. This includes compliance with GST regulations, business licensing requirements, and other legal duties affecting our operations in London and across United Kingdom.

Data Security and Protection

We treat data security with utmost seriousness and deploy multiple protective layers. Our systems use encryption for sensitive data in transit, secure servers for storage, and regular security updates to guard against threats.

We also implement physical security measures for our offices and restrict access to personal information to employees who need it. Our team receives ongoing privacy and data handling training.

Payment details are processed through secure, encrypted systems that meet industry standards. We do not store full card numbers on our systems—the data is handled by certified payment processors specializing in secure transactions.

While we employ strong security measures, no system is completely risk-free. We continuously monitor and update our security practices to address evolving threats and maintain high protection standards.

Your Rights and Choices

You have several rights regarding your personal data. You can request to view what we hold, ask us to correct inaccurate information, or request deletion where legally permissible.

• Access your personal information and understand how we use it
• Request corrections to inaccurate or outdated information
• Ask us to delete your personal information (subject to business and legal requirements)
• Opt out of marketing communications while continuing to receive service-related messages
• Request information about how your data has been shared
• File complaints about our privacy practices

We keep your information only as long as necessary for business purposes and legal compliance. Order records are typically retained for accounting and warranty purposes, while marketing preferences are kept until you request removal.

When we no longer need your information, we securely delete or anonymize it. Some data may be retained longer if required by United Kingdom business laws or for legitimate business interests like preventing fraud.

Cookies and Website Technology

Our site uses cookies to enhance your browsing experience and to help us understand how visitors use our site. Cookies are small files stored on your device that remember preferences and enable certain website features.

Essential cookies are necessary for the site to function properly – enabling basic navigation and access to secure areas. These cookies do not collect personal data and are automatically enabled when you use the site.

We employ analytics cookies to learn how visitors interact with our site. This helps us identify popular content, optimize page speed, and improve user experience. This information is collected in aggregate form and does not identify individuals.

You can manage cookie settings through your browser preferences. However, disabling certain cookies may affect some features and your overall browsing experience.

Business Transfers and Changes

If GardenFlintBay undergoes major changes such as mergers, acquisitions, or asset sales, your personal information may be transferred as part of the transaction. We will notify you of any such changes and ensure your data remains protected under privacy standards aligned with this policy.

In the unlikely event that we cease operations, we would ensure your data is either securely transferred to a successor business (with appropriate privacy protections) or securely deleted according to data protection best practices.

Updates to This Privacy Policy

We may periodically update this privacy policy to reflect changes in our practices, services, or legal requirements. When material changes occur, we will inform you via email or by posting a notice on our site before the changes take effect.

Minor updates for clarity or administrative reasons may be made without prior notice. We encourage you to review this policy periodically to stay informed about how we protect your privacy.

Children's Privacy

Our services are intended for businesses and adult consumers. We do not knowingly collect personal information from individuals under 18. If we become aware that we have inadvertently collected data from someone under 18, we will promptly delete that information from our systems.

Parents or guardians who believe we may have collected information from their child can reach out to us using the contact details below, and we will address the matter promptly.

International Data Considerations

Our primary operations are based in United Kingdom, and we store and process data within United Kingdom jurisdiction. However, some service providers may process data internationally. When this occurs, we ensure appropriate safeguards are in place to protect your information in accordance with applicable privacy laws.

We comply with United Kingdom data protection laws and regulations, including those related to business operations, financial transactions, and customer data handling. Our practices align with evolving privacy standards in United Kingdom's digital economy.