Bubblecuddle respects your privacy. Bubblecuddle is committed to safeguarding the privacy of all website visitors. This document explains the policy relating to your personal data that is provided to Bubblecuddle via this website, http://bubblecuddle.com.
This website and its owner takes a proactive approach to user privacy and ensures the necessary steps are taken to protect the privacy of its users throughout the visiting experience. The website complies to all UK national laws and requirements for user privacy.
Bubblecuddle will not share your details with any third party and any details held are held in accordance with the Data Protection Legislation (UK). The policy sets out the different areas where user privacy is concerned and outlines the obligations and requirements of the users, the website and also the website owner.
In order for this site to be used easily, cookies are in place on this website. They track the site visitors patterns, they are small text files that may be used to collect information about your activity on the site. It is possible to set most browsers to notify you if you receive a cookie, or if you choose you can block cookies with your browser. Cookies are harmless, but they may contain demographic information.
Charlotte Tiffany May 25th 2018 May 25th 2019
Charlotte Tiffany needs to gather and use certain information about individuals in order to complete consultations.
These can include customers, suppliers, business contacts, employees and other people the business has a relationship with or may need to contact.
This policy describes how this personal data must be collected, handled and stored to meet the company’s data protection standards — and to comply with the law.
Why this policy exists
This data protection policy ensures Charlotte Tiffany, owner of Bubblecuddle.com:
Complies with data protection law and follows good practice
Protects the rights of the customers and partners
Is open about how it stores and processes individuals’ data
Protects itself from the risks of a data breach
Data protection law
The Data Protection Act 1998 describes how organisations — including Charlotte Tiffany at bubblecuddle.com — must collect, handle and store personal information.
These rules apply regardless of whether data is stored electronically, on paper or on other materials.
To comply with the law, personal information must be collected and used fairly, stored safely and not disclosed unlawfully.
The Data Protection Act is underpinned by eight important principles. These say that personal data must:
Be processed fairly and lawfully
Be obtained only for specific, lawful purposes
Be adequate, relevant and not excessive
Be accurate and kept up to date
Not be held for any longer than necessary
Processed in accordance with the rights of data subjects
Be protected in appropriate ways
8. Not be transferred outside the European Economic Area (EEA), unless that country or territory also ensures an adequate level of protection
People, risks and responsibilities
This policy applies to:
All contractors, suppliers and other people working on behalf of Charlotte Tiffany at Bubblecuddle.com
It applies to all data that the company holds relating to identifiable individuals, even if that information technically falls outside of the Data Protection Act 1998. This can include:
Names of individuals
...plus any other information relating to individuals
Data protection risks
This policy helps to protect Charlotte Tiffany from some very real data security risks, including:
Breaches of confidentiality. For instance, information being given out inappropriately.
Failing to offer choice. For instance, all individuals should be free to choose how the company uses data relating to them.
Reputational damage. For instance, the company could suffer if hackers successfully gained access to sensitive data.
Charlotte Tiffany has the responsibility for ensuring data is collected, stored and handled appropriately.
o Ensuring all systems, services and equipment used for storing data meet acceptable security standards.
o Performing regular checks and scans to ensure security hardware is functioning properly.
Evaluating any third-party services the company is considering using to store or process data. For instance, cloud computing services.
o Approving any data protection statements attached to communications such as emails.
o Addressing any data protection queries from journalists or media outlets like newspapers.
Ensure marketing initiatives abide by data protection principles.
Personal data will not be disclosed.
Data should be regularly reviewed and updated if it is found to be out of date. If no longer required, it should be deleted and disposed of.
When data is stored on paper, it will be kept in a secure place where unauthorised people cannot see it.
Paper or files will be kept in a locked drawer or filing cabinet.
Electronic data is password protected.
The law requires Charlotte Tiffany to take reasonable steps to ensure data is kept accurate and up to date.
Subject access requests
All individuals who are the subject of personal data held by Charlotte Tiffany are entitled to:
Ask what information the company holds about them and why.
Ask how to gain access to it.
Be informed how to keep it up to date.
Be informed how the company is meeting its data protection obligations.
If an individual contacts the company requesting this information, this is called a subject access request.
Subject access requests from individuals should be made by email, addressed to the data controller at [email address]. The data controller can supply a standard request form, although individuals do not have to use this.
Individuals will be charged £10 per subject access request. The data controller will aim to provide the relevant data within 14 days.
The data controller will always verify the identity of anyone making a subject access request before handing over any information.
Disclosing data for other reasons
In certain circumstances, the Data Protection Act allows personal data to be disclosed to law enforcement agencies without the consent of the data subject.
Under these circumstances, Charlotte Tiffany will disclose requested data.
Charlotte Tiffany aims to ensure that individuals are aware that their data is being processed, and that they understand:
How the data is being used
How to exercise their rights