Privacy Policy
July 25, 2023 2023-10-12 22:12Privacy Policy
This privacy notice explains how we use any personal data that we collect about you when you:
a. use this website;
b. order a product from us;
c. contact us to make a complaint;
d. contact us directly for another purpose.
V.P.A. HOME LIMITED, a limited liability company, registered under the laws of the Republic of Cyprus, with registration number HE18110 having its registered address at Arch. Makariou III, 58, 1076, Nicosia, Cyprus (the Company we, us or our) is the controller and responsible for your personal data.
1. What information do we collect about you
We may collect, use, store and transfer different kinds of personal data about you which we have grouped as follows:
a. Contact data includes name, address, email address and telephone numbers;
b. Financial data includes bank account and payment card details;
c. Transaction data includes details of products and services you have purchased from us including details of payments;
2. Why will we use your personal data
We will only use and process your personal dated only we are permitted to do under the provision of the General Data Protection Regulation (EU 2016/679) and in any national data protection.
Most commonly, we will use your personal data when:
a. we need to perform the contract we are about to enter into or have entered into with you;
b. it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests; or
c. we need to comply with a legal or regulatory obligation.
3. How will we use your personal data
We may use the information that you provide or that is obtained by us for the following purposes:
a. to process and deliver your order or replacement product;
b. to contact you in the course of our relationship with our customers or potential customers;
c. to process your complaint including, in some circumstances, to arrange a visit to your property to inspect your product;
d. to check any instructions given to us;
e. for the prevention and detection of crime, including fraud;
4. How long we keep your personal data
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
By law we have to keep basic information about our customers (including Contact, Financial and Transaction Data) for 6 (six) years after they cease being customers for tax purposes.
5. Security
We have implemented generally accepted standards of technology and operational security in order to protect personally identifiable data and information from loss, misuse, alteration or destruction. Only specifically authorized personnel of the Company are provided access to personally identifiable information and these employees have agreed to ensure confidentiality of this information.
6. When and how we share personal data
We recognize that your information is valuable, and we take all reasonable measures to protect your information while it is in our care.
Your personal data may also be transferred to third party service providers who process information on our behalf, including providers of information technology, agents, identity management, and management, data analysis, data back-up, security and storage services. As a result, your personal information may, subject to the provisions of the and the Regulation (EU) 679/2016 and the Personal Data Law, be transferred outside the country where you are located. This includes countries outside the European Economic Area (EEA) and countries that do not have laws that provide specific protection for personal information.
We may disclose your personal information to courts, law enforcement, regulatory, or other government agencies or to other third parties as required by, and in accordance with, applicable law or regulation.
Your personal information is not shared with any third party, for any secondary or unrelated purposes unless otherwise disclosed or if specifically requested by you in the course of our service provision. If there is an instance where such information may be shared, your consent will be asked beforehand.
7. Personal data held by us may be transferred to
a. Third party organizations that provide IT services to us
We use third parties to support us in running and managing our internal IT systems. For example, providers of information technology, cloud providers, website hosting and management, security and storage services. The servers powering and facilitating that cloud infrastructure are located in secure data centres in EU and personal data may be stored in any one of them.
b. Third party organizations that provide delivery services to us We use third parties to support us in delivery the products to you.
8. Rights of Data Subjects
Individuals have certain rights over their personal data and data controllers are responsible for fulfilling these rights. Where we decide the means and purposes under which their personal data are processed, we act as a data controller and hereinafter we include further information about the rights of individuals as data subjects and how they may exercise them.
9. Access to personal data
If you would like to update any personal data you have submitted, please email us at info@lauraashley.cy.
When personally identifiable information is retained, we do not assume responsibility for verifying the ongoing accuracy of the content of personal information. When we are informed that any personal data collected is no longer accurate, we will make appropriate corrections based on the updated information provided by the authenticated data subject.
If you would like details of the information which you have submitted to us through this site, you have a right of access to such information and you may contact us via the above email address.
10. Rectification of personal data
In case you have identified that the personal data kept by us are obsolete you may contact us by sending us an email at info@lauraashley.cy.
11. Other data subject rights
This privacy notice is intended to provide information about what personal data we collect about you and how they are processed. As well as rights of access and amendment referred to above, individuals may have other rights in relation to the personal data we hold, such as a right to erasure/deletion, to restrict or object to our processing of personal data and the right to data portability.
If you wish to exercise any of these rights, please contact us by sending us an email at info@lauraashley.cy.
12. Complaints
In case you wish to complaint for the use of your personal data, please send an email with the details of your complaint to info@lauraashley.cy. We will look into and respond to any complaints we receive.
You have also the right to file your complaint with the Commissioner for the Protection of Personal data (the Cyprus data protection regulator). For further information on your rights and how to file a complaint to the Commissioner, please refer to www.dataprotection.gov.cy.
13. Changes to this privacy statement
Our ongoing responsibility to transparency requires us to keep this privacy notice updated through regular review.
This privacy notice was last updated on 12 October, 2023.