Sometimes we will need to update this policy, for example to explain a new process or to comply with new laws. The last time we updated this policy was on 29 April 2022. You should check back from time-to-time to see what's new.
Who We Are
We are The Dried Petal Company – a family run supplier of eco-friendly, dried petal wedding confetti, confetti accessories & greetings cards.
Sometimes you have to give it to us, like when you order some wedding confetti, but sometimes we collect it automatically by using cookies. If you are interested in finding out more about what exactly cookies are and how to manage them, take a look at the Cookies and You website.
Our policy applies whether you’re interacting with us online, emailing or calling us and applies wherever you live in the world.
Respecting Your Privacy – Our Commitment to You
We know how important your personal information is to you, and we are committed to safeguarding that information. We will only share your personal information for legitimate reasons or if legally obliged.
We will follow all the data protection and privacy laws that apply. This policy doesn’t limit any of those laws.
Your Choices and Rights
Within the General Data Protection Regulations of your Country (e.g. GDPR, LGPD, PIPEDA, CCPA or APPI), you have more control of your personal data than ever before.
- tell us to stop using your data;
- turn off cookies;
- ask us to access the personal information we hold about you and how it’s used, or to correct things that aren’t accurate;
- request that we transfer your information to you or another service provider; and
- request that we delete your personal information or stop processing it and collecting it, if it’s no longer necessary for us to hold that data.
Sometimes your rights are subject to exceptions permitted by law, for example, where an access request might prejudice law enforcement activities. We’ll give you reasons if we can’t comply with a request. Please send any requests to the email address below.
If you have any concerns about any aspect of our privacy practices, you can also report it to the relevant data protection supervisory authority in your country of residence, work, or the place of any alleged infringement.
What Types of Personal Information Do We Collect & Why?
Contact details - for example, your name, address, phone number and email address
We use this:
- to update you on your order & fulfil it;
- for fraud prevention and detection;
- for finding out more about what you and other customers like.
We use this:
- to take payments;
- to give refunds;
- for fraud prevention and detection (don’t worry, we use a highly secured 3rd party payment processor, Stripe, and don’t keep your payment details ourselves).
We use this:
- to perform our contract with you so you can purchase products from us;
- so that we can provide you with support and assist with returns and refunds;
- so that we can find out what you and other customers like to make sure we are providing you with the best possible shopping experience.
How you use our site
We use this:
- to give you a better shopping experience overall.
Personal identification details - such as your date of birth
We use this:
- sometimes to detect and prevent fraud.
This list is not necessarily complete and in certain circumstances we may need to collect additional information for one or more of the purposes set out in this Policy.
If you don’t want to give us your personal information or you want to remain anonymous, that’s okay too! But this may restrict our ability to provide you with our services or access to certain features on our website (for example, you can check out as a guest without creating an account, but we will still need to collect certain personal details from you to fulfil your order).
Our “Legal Basis” For Collecting Your Personal Information
Data protection laws require us to have a legal basis for using your data. Here are the reasons why:
We can collect and process your information with your consent and for a specific purpose. For example, when you review a purchased item. Just contact us if you want to check, amend or delete it (see below).
In certain circumstances, we need your personal information to comply with a contract we have with you (or if we’ve asked you to take a particular step before entering into that contract). For example, ordering from us is a contract you have with us.
This is where processing your data is needed for our legitimate interests or those of a third party, provided those interests aren’t outweighed by yours.
Our legitimate interests include:
- improving our service;
- enabling us to enhance our business.
For example, we combine the purchase history of our customers to identify trends and make sure we can keep up with demand.
Sometimes we’re required by law to collect and process your information. For example, where we pass on details of people involved in fraud or criminal activity to the police.
Sharing Your Info
We use carefully selected third parties for certain parts of our business. The relevant organisations include those:
- involved in the payments system including financial institutions and payment processor organisations;
- involved in providing, managing or administering your product or service such as printers and postal services;
- involved in managing our review and GDPR systems;
- Facebook via our Facebook store
Security and Data Retention
Your information is stored securely whether in an electronic or physical form. We take all reasonable steps to protect all personal information from misuse, loss, interference, unauthorised access, modification or disclosure. If you transact with us online, make sure you keep your account details secure and contact us if you think you’re account has been accessed or your privacy rights have been breached.
We’ll hold on to your personal information only for as long as is necessary for the purpose we collected it or where we have a legitimate interest to continue doing so. Sometimes we are required by legal or regulatory requirements to keep hold of some of your information even after you have closed your account with us, this may be to resolve disputes, prevent fraud, tell you about a product recall or to apply our terms and conditions.
We use a 3rd party app from isenselabs.com to manage the Data Protection functionality of our site. They require your email and device IP address to process your requests, but will only do so with your explicit consent. You can read the Policy they have with us, by clicking the link in any data request submitted, or by clicking here.
We acknowledge and support the importance of children’s privacy and safety. We do not knowingly collect personal information from children under the age of 16.
If you become aware that a child under the age of 16 has provided us with personal data without parental consent, please contact us. If we become aware that a child under the age of 16 has provided us with personal information without parental consent, we will delete this information as soon as possible.
Want to know more, or to exercise any your rights set out in this policy? The best way is to visit the Manage My Data page.