Privacy Policy
Stroud & Tetbury District Scout Shop shop.stscouts.org.uk and Stroud & Tetbury District Scout Council take the issue of privacy very seriously and we are committed to protecting and respecting our user’s privacy. This Privacy Statement sets out our current data processing practices and should be read in conjunction with our Terms and Conditions.
If you have any queries or concerns regarding these practices, you should contact us at shop@stscouts.org.uk.
1. The Information we collect
The only circumstances in which we will provide any of your personal data to a third party for non-commercial purposes are those contained in this Privacy Policy.
2. Registration information
When you register with shop.stscouts.org.uk, we ask for your name, email address and postal code. We usually also capture your IP address at the time you register.
3. Sharing of data
We may share data supplied by you (or collected about you) with other parts of the Scouts such as Unity (Scout insurance services) or Scout Adventures (activity centres that provide experiences to Scouts and their families). In addition, where only it is necessary, we may provide some information to our trusted third parties. Here is the policy we apply to those organisations to keep your data safe and protect your privacy:
- We only provide information needed for those specific third party services and nothing more.
- Your data will only be used for the exact purposes specified that we detail in our contracts with them.
- We work closely to ensure your privacy is respected and protected at all times.
- If we stop using a third party service then any of your data held by them will be either deleted or rendered anonymous with no connection to your identity.
Examples of the third parties we work with:
- IT and web companies who support our website and other critical business systems.
- Operational companies such as delivery couriers.
- Direct marketing companies who help us manage our electronic communications with you.
- Google/Facebook/Twitter/Instagram to show you products that might interest you while you’re browsing the internet. This is based on either your marketing consent or your acceptance of cookies on our websites. See point 6 for our Cookies Notice.
- Data insight companies to ensure your details are up to date and accurate.
4. Legal jurisdiction.
All personal information and details held on and processed by computers situated in the United Kingdom.
5. Disclosure of data by order of a Court and Security
We reserve the right to communicate a customer’s personal information as we hold to third parties who are empowered by regulation, statute or order of a court. We have security measures in place to protect our customer database. Access to this database is restricted internally. However, it remains each customer’s responsibility:
- to keep their password secret
- to protect against unauthorised access to your personal details.
6. Cookies
shop.stscouts.org.uk uses small files known as “cookies” to enhance your use of the site. Cookies are small files that may be placed by a website on a user’s PC. They are used to store information that may be needed while browsing the site, or on a future visit. This may include personal data, or anonymous information such as previously visited pages or items stored in the shopping basket.
7. The Data Protection Act 2018
You can obtain further information about data protection laws by visiting the Information Commissioners website at www.gov.uk/data-protection/the-data-protection-act.
Scout Store complies with the GDPR regulation that was enforced in May 2018. This means we take the care of your data very seriously and take measures to keep all your personal data safe. Only storing information that is absolutely necessary.
8. Contacting
If you want to contact us to raise any questions about this privacy statement, or any general matters relating to www.scouts.org.uk/shop, you can contact us by using this email address: customer.services@scoutshops.com.
Please use this address if you wish to request from us a copy of the personal data we hold about you. This service is free of charge.
9. Google Analytics
Visitors to this website who have javascript enabled are tracked using Google Analytics. Google Analytics collects the following types of information from users:
- Type of user agent (web browser) used, software manufacture and version number.
- Type of operating system
- Screen colours (colour processing ability of the users screen)
- Javascript support
- Flash version
- Screen resolution
- Network location and IP address (can include country, city, state, region, county, or other geographic data, hostname or bandwidth (internet connection speed))
- Time of visit
- Pages visited
- Time spent on each page of the website
- Referring site statistics (the website (URL) the user came through in order to arrive at this website (example: clicking on a hyperlink from Yahoo.com that took the user to this website)
- Search engine query used (example: typing in a phrase into a search engine like Google, and clicking on a link from that search engine).
This data is only used to optimize our website for our visitors. This data DOES NOT include any personalised identification information such as:
- Names
- Phone Numbers
- Email Addresses
- Mailing Addresses
- Bank Account Numbers
- Credit Card Information.
10. The Right to be Forgotten
- All requests should be registered with the Legal Services team so we can register them on our SAR tool (Subject Access Request)
- The name of the individual making the request and the subject of the request will be retained for a period of 100 years so we can maintain this request
- Reviews platform (Trust Pilot): You can request to remove a post off of Trust Pilot but it has to be via Trust Pilot as we cannot edit customer feedback
- Customer database (Zendesk): we can delete user accounts from here. However this means if you contact us again then a new user would be created at this point within our Zendesk
- Marketing emails (Dotdigital): We can remove you from our marketing database if you are on it in the first place with the email address you have shared on your request
- Order systems (Magento and Microsoft Dynamics AX): if you have placed an order with us, in compliance with the Sales of Goods Act, we legally have to keep these records for five years from the date of purchase
- Social Media (FB, IG and Twitter): you would have to remove your comments or interactions or request it via those communication platforms