We (“We”, “Us” and “Our” includes Tiger Sheds, its parent company Woodlands Homecare Ltd, WoodlandsDIY.com, and Woodlands DIY Store) take the privacy of our customers' data very seriously.
By making a purchase of goods or services from us, or providing your contact details to us in store, when visiting our websites (www.tigersheds.com and www.woodlandsdiy.com), placing an order or by communicating with us online, in writing, or by telephone, you are accepting and consenting to the practices described in his policy.
What Information Do We Collect?
In general, you can visit our sites without telling us who you are or revealing any personal information about yourself. In operating our site and our telephone services, we may, however, collect and process the following data about you:
Information you give to us:
You may give us information about yourself by filling in forms on our site, in store, by communicating or corresponding with us by phone, e-mail or otherwise, when you use our telephone services, search for a product, place an order, submit reviews / images, participate in discussion boards or other social media functions on our site or blog or hosted by us, enter a competition, promotion or survey, request a brochure, request a call back from one of our advisors, when you speak to an advisor, when you report a problem with our products and services.
The information you give us may include your name, address, e-mail address, phone number, financial and credit card information.
Please note that your telephone calls with us may also be recorded for training and quality control purposes.
Information we collect about you
During each of your visits to our sites, any communications with us, or use of our telephone service we may automatically collect the following information:
We may also collect information about you from other sources, and combine such information with information we hold about you - including where:
How long we will store your information
We will hold your information for as long as is necessary to fulfil our contractual obligation to you and to carry out any other purpose outlined in this policy.
Sensitive Personal Data
Unless we make it clear otherwise, our policy is not to ask for any sensitive personal data. We or our service providers may require certain sensitive data to process your order, fulfil a service, or deal with your enquiries. For example; if you have special requirements for delivery due to a medical condition or are exempt from VAT, we may require data relating to your physical or mental health in order to make arrangements as requested by you.
How We Protect your Personal Data
We know how much data security matters to all our customers. With this in mind, we will treat your data with the utmost care and take all appropriate steps to protect it. We secure access to all transactional areas of our websites and apps using ‘https’ technology. Access to your personal data is password-protected, and sensitive data (such as payment card information) is secured by SSL encryption. We regularly monitor our system for possible vulnerabilities and attacks and take action to prevent such from occurring.
Information about other people
If you provide information to us about any person other than yourself, you must ensure that they understand how their information will be used and that they have given their permission for you to disclose it to us and for you to allow us to use it. We may request consent from the other person to confirm that they have freely given their permission.
What do we do with your information?
We only collect, keep, use or share your information for genuine business purposes, when you've approved us to do so, or when we're obliged to legally. There are a few reasons why we use your personal details:
Basis for Processing
For us to process your personal data, we must have a legal basis for the processing. The data protection legislation sets out what these bases are. We have described below the different bases that we rely on and provided examples of the processing.
There are some contractual reasons why we have to process your personal data. When you buy a product on our website, it creates a contract between us. We need to process the personal data that you provide in order to fulfil our part of the contract. If you do not provide your details we won't be able to complete your order.
Sometimes we are required to process the personal data that we hold about you for legal reasons - for example, if there is a product recall.
We also rely on being able to process your personal data on the basis that it is in our legitimate interests. When we do this, we will always consider your interests and balance any positive or negative impact relating to such processing and your legal rights relating to data protection.
If you do not want us to process any of the personal data we have listed as being processed for legitimate purposes, you have the right to object. For more information see the section below relating to your rights.
Please note that if you object we may still continue to process your personal data in certain circumstances. Please also remember that if we can't process your personal data for these purposes your customer experience may not be as enjoyable.
Our legitimate interests include:
In some cases, we will ask whether you would like us to process your personal data. For example, if you would like us to notify you when an out of stock item becomes available or if you enter into a competition. If you provide us with consent, you may withdraw it at any time by contacting us.
How do I withdraw my consent?
If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at any time, by contacting us at email@example.com or mailing us at: Data, Tiger Sheds, Calverley Lane, Rodley, Leeds LS13 1NP. United Kingdom.
All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us. However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
In particular, remember that certain providers may be located in or have facilities that are located in a different jurisdiction than either you or us. So, if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements.
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed. If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored in multiple layers for added security. We use 256 bit database encryption, AES-256 encryption and 2048 bit public/private keys to secure your data.
Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
Age of consent
By using this site, you represent that you are at least the age of majority in your country, or that you are the age of majority and you have given us your consent to allow any of your minor dependents to use this site.
We do not share your details with other companies for their marketing.
If you would like to stop all unsolicited postal communications, we suggest that you register with the Mailing Preference Service (MPS). MPS is a free service set up in 1983 and funded by the direct mail industry to enable consumers to have their names and home addresses in the UK removed from lists used by the industry. It is actively supported by the Royal Mail and all directly involved trade associations and fully supported by The Information Commissioners Office (ICO). For more information or if you wish to register with the MPS please visit their website www.mpsonline.org.uk.
If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information contact our Privacy Compliance Officer at firstname.lastname@example.org or by mail at Tiger Sheds [Re: Privacy Compliance Officer] Calverley Lane, Rodley, Leeds LS13 1NP, United Kingdom.