As Bright Bathrooms we are committed to protecting the privacy and security of our customers and site visitors. The team here at Bright Bathrooms are customers ourselves so we fully understand the importance of keeping your data secure and private.
This privacy notice therefore aims to be completely transparent about how we handle and use your personal information. We’ve tried to keep this policy as jargon free as possible, but if you are unsure of any terminology or have any questions or suggestions, please contact our Data Protection Officer using the contact details below.
Who we are:
Bright Bathrooms (referred to in this policy as “we”, “us” or “our”) is a trading name of:
The following section tells you what personal data we may collect from you:
When you register or place orders through our website we collect:
Your personal details. This can include your title, name, billing and delivery address, email address, phone number, date of birth and any payment information;
Your payment details;
Your IP address;
Your marketing preferences
When you enter a competition or promotion sponsored by us, we may collect limited personal details in order to process your entry.
Personal data you provide about yourself anytime you contact us about our services (for example, your name, username and contact details), including by phone, email or post or when you speak with us via social media.
When you visit our site, we may collect data including, but not limited to, traffic data, location data, weblogs, page functionality tracking and other communication data.
Details of the emails and other digital communications we send to you that you open, including any links in them that you click on.
Information collected using cookies stored on your device(s) about the use of our online services.
Your feedback and contributions to customer surveys and questionnaires.
How we use your personal data
Providing our products and services to you.
To carry out our obligations arising from any contracts entered into between you and us, such as the sale of our products and services to you.
To ensure that content from our site is presented in the most effective manner for you and for your computer and to allow you to participate in interactive features of our service when you choose to do so.
Sharing your data
We may disclose your personal data to any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 736 of the UK Companies Act 1985 and which are not treated by us as third parties.In order to provide you with our services and meet our legal obligations, we only share your data with 3rd parties, in the following circumstances:
To fulfil your order;
To verify your identity;
To authorise debit/credit card payments and any other transactions authorised by the customer;
To manage and maintain the accuracy of your records;
To handle complaints and improve customer service;
To administer marketing on behalf of Bright Bathrooms;
To meet legal obligations, for example, for the purposes of national security, taxation and criminal investigations; and
If Bright Bathrooms is acquired by a third party, in which case personal data held by it, about its customers, will be one of the transferred assets.
To fulfil your order;
We’ll never make your personal data available to anyone outside Bright Bathrooms for them to use for their own marketing purposes without your prior consent.
Marketing & Market Research
At Bright Bathrooms, we collect data to give you a better experience, improve our products and services, and bring you the very best offers and competitions that we think you’ll be interested in. Put simply, we can give you more of what you love, when we understand you better. Here we explain the choices you have when it comes to receiving marketing communications and being invited to take part in market research.
We use your data to improve your experience. We will send you relevant offers, competitions, and news about our products and services in a number of ways including by email, but only if you have previously agreed to receive these marketing communications.
When you register with us we will ask if you would like to receive marketing communications; you can change your marketing choices online via our Preference Centre. You can also unsubscribe at any time by clicking the unsubscribe link at the bottom of our emails.
We also like to hear your views to help us to improve our services, so we may contact you to invite you to take part in market research via a questionnaire. You always have the choice about whether to take part in this or not.
Understanding our customers better
We may make use of profiling your personal data to produce more relevant and tailored communications by having a deeper understanding of your interests, behaviours and personal preferences. This information helps us provide a better experience for our customers.
Profiling can help us target our resources more effectively through gaining an insight into the background of our customers and helping us to build relationships that are appropriate to their interests.
If you have any specific questions in relation to how your information is processed, then please contact us
Processing your data using our Legitimate Interests
We have a number of lawful reasons that we can use (or ‘process’) your personal data. One of these lawful reasons is called ‘legitimate interests’.
Broadly speaking legitimate interests means that we can process your personal information if:
We have a genuine and legitimate reason to and we are not harming any of your rights and interests.
The following are some examples of when and why we would use this approach during our normal course of business:
To improve and enhance our services: When we do process your data, we will use it to benefit you and to make your experience better and to improve our products and services.
Your best interest: Processing your information to protect you against fraud when transacting on our website, and to ensure our websites and systems are secure.
Personalisation: Where the processing enables us to enhance, modify, personalise or otherwise improve our services/communications for the benefit of our customers.
Analytics: To process your personal data for the purposes of customer analysis, assessment, profiling and direct marketing, on a personalised or aggregated basis, to help us with our services and to provide you with the most relevant information as long as this does not harm any of your rights and interests.
Research: To determine the effectiveness of promotional campaigns and advertising and to develop our products, services, systems and relationships with you.
Due Diligence: We may need to conduct investigations on existing customers, potential customers and business partners to determine if those companies and individuals have been involved or convicted of offences such as fraud, bribery and corruption.
Direct Marketing: We may send postal marketing. We will also make sure our postal marketing is relevant for you and tailored to your interests. You also have the right to opt-out of receiving this information at any time.
When we process your personal information for our legitimate interests, we will consider and balance any potential impact on you and your rights under data protection and any other relevant law. Our legitimate business interests do not automatically override your interests – we will not use your personal data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law).
We will look after your data, we will protect the data that you entrust to us via appropriate security measures and controls. We’ll also ensure that other businesses we work with are just as careful with your data.
We will always take appropriate technical and organisational precautions to prevent the loss, misuse or alteration of your personal information.
We ensure your data is encrypted and secure.
We will continually test, audit and monitor our compliance with Information Security standards and relevant Data Protection regulations.
We ensure those 3rd parties who process your data operate under a Data Sharing Agreement.
Your data outside Europe
The data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area (EEA). It may also be processed by staff operating outside the EEA who work for us or for one of our suppliers.
Such staff maybe engaged in, among other things, the fulfillment of your order, the processing of your payment details and the provision of support services.
We have ensured that appropriate protections are in place to make sure your personal data remains adequately protected and is treated in line with relevant Data Protection laws. Details of who we share data with outside the EEA will be published in this section before 25th May 2018.
How long we hold your data:
We hold your information only as long as necessary for each purpose we use it, we will provide detailed information about our retention in this section before 25th May 2018 to give you an understanding of how long we hold your information for.
What can I do?
Right to be informed
We will always be transparent in the way we use your personal data. You will be fully informed about the processing through relevant privacy notices.
Right to access
You have a right to request access to the personal data that we hold about you and this should be provided to you, under the Data Protection Act 1998, within 40 days. We are able to charge a small fee of £10. If you would like to request a copy of your personal data, please contact us via the Contact us section.
Right to rectification
We want to make sure that the personal data we hold about you is accurate and up to date. If any of your details are incorrect, please let us know and we will amend them.
Right to erasure
You have the right to have your data ‘erased’ in the following situations:
Where your personal data is no longer necessary in relation to the purpose for which it was originally collected or processed.
When you withdraw consent.
When you object to the processing and there is no overriding legitimate interest for continuing the processing.
When your personal data was unlawfully processed.
When your personal data has to be erased in order to comply with a legal obligation.
If you would like to request erasure of your personal data, please contact us via the contact us section. Please note that each request will be reviewed on a case by case basis and where we have a lawful reason to retain the data, it may not be erased.
Right to restrict processing
You have the right to restrict processing in certain situations such as:
Where you contest the accuracy of your personal data, we will restrict the processing until you have verified the accuracy of your personal data.
Where you have objected to processing and we are considering whether Bright Bathrooms legitimate grounds override your legitimate grounds.
When processing is unlawful and you oppose erasure and request restriction instead.
Where we no longer need the personal data but you require the data to establish, exercise or defend a legal claim.
Right to data portability
You have the right to data portability in certain situations. You have the right to obtain and reuse your personal data for your own purposes via a machine-readable format, such as a .CSV file. This only applies:
To personal data that you have provided to us;
Where the processing is based on your consent or for the performance of a contract; and
When processing is carried out by automated means.
Right to object
You have the right to object to the processing of your data in the following circumstances:
Direct marketing (including profiling). Remember you can opt out at any time from marketing communications;
Where the processing is based on legitimate interests; and
Processing for purposes of scientific/historical research and statistics.
Not happy or concerned?
If you feel that Bright Bathrooms has not upheld your rights, we ask that you contact our Data Protection Officer so that we can try and help – Send email to firstname.lastname@example.org
If you are not satisfied with our response, or believe we are not processing your data in accordance with the law you have the right to lodge a complaint with the Information Commissioner’s Office (ICO). Their details are supplied below:
Information Commissioner’s Office
0303 123 1113
How to contact us:
Bright Bathrooms Ltd.
126A Oldham Road
Bright Bathrooms cookies, like all cookies, are small files that websites put on your computer to help make your visits relevant, easier and faster. Most cookies are essential for websites to work and others remember details about you to give you a better and more enjoyable online experience. For example, a cookie will remember products that you put in your shopping basket, without this cookie, you will have to add those items to your basket every time you visit a different page on that website. So as you can see, cookies are very important in the function of any website. Below we will be talking about the different types of cookies that we use and what they are used for, please read through this information to ensure an understanding of cookies and how they are used.
What Are Essential Cookies?
What Do These Cookies Do?
Remember what products are in your basket
Allow you to checkout and purchase the items in your basket
Recognise that you have already signed into a secure area of our website such as the checkout
We have provided this information to you as part of our initiative to comply with the recent laws and legislation. We want to be clear and honest when it comes to your privacy when shopping with Bright Bathrooms as we know that you expect nothing less than our best.