GDPR 2018-05-22T17:12:14+00:00

GENERAL DATA PROTECTION REGULATIONS

At Cococucine we take protecting your information and your privacy very seriously. Along with our other systems, this website is designed to comply with the EU General Data Protection Regulation 2018 (GDPR), and the UK Data Protection Act 1988 (DPA). Our partners (third party data processers) who support us in the provision of this website also comply with these provisions.

This policy explains how we collect, process, manage and store information.

1 Data collection and storage:

1.1 Log files:

As with all websites, each time your browser accesses our site our web server will collect and record information about your visit. This data is recorded in the sites log files and will include:

  • Date & time of access
  • URL of the referring website
  • Browser type and version
  • Operating system
  • Files accessed
  • Your IP address

This log data does not contain personal data and as a general rule we only access log data in order to remedy faults or to clarify security incidents.

1.2 Google analytics:

This site uses Google Analytics to track user interaction. We use this data to evaluate the number of people visiting this site and to understand how people find and interact with our site.

Google Analytics collects and records data such as:

  • The date and time of access
  • The URL of any linked website
  • The files and pages accessed
  • The browser type and version
  • The operating system
  • Your geographical location
  • Your device type

In addition to the above, Google records your IP address which could be used to personally identify you. However, Google do not grant us access to this information.

None of the Google Analytics data available to us contains any personal information that could be used to identify you and none of the data is stored by us.

Google analytics uses cookies. Details of Google’s cookies may be found on Google’s developer guide.

Disabling cookies on your browser will stop Google tracking your visit to this website.

1.3 Contact form:

Should you contact us through the contact form on our website or through an email link or telephone number link on this site, none of the data you supply will be stored on this website and none will be passed to third parties except to our data processers as specified below for the handling of your enquiry.

Data entered into our contact form is sent to us over the Simple Mail Transfer Protocol (SMTP). Our SMTP servers are protected by SSL/TLS meaning that the email content is encrypted.

Data provided to us through our contact form and / or received by us as email will be stored on our Gmail server. We retain all emails only on our Gmail mail server. No emails are stored locally.

All emails are stored indefinitely unless the removal of the data is specifically requested.

1.4 Newsletter sign up:

If you sign up to our email newsletter, your email address will be stored automatically in our Mailchimp database. It will be retained for as long as we continue to use Mailchimp services for email marketing or until you request its removal.

Mailchimp is one of our third party data processers. (see section 3 of this document). We retain no other copies of this data.

If you are under 16 years of age you must obtain parental consent before signing up to our email newsletter.

1.5 Customer data:

If you have purchased goods or services from Cococucine, we will have recorded data that could include your name, address, email address, phone number, mobile number, company name, job title and other details including a record of your purchases.

1.6 Supplier data:

If Cococucine has purchased goods or services from you, or shown an interest in doing so, we will have recorded data that could include your name, address, email address, phone number, mobile number, company name, job title and other details.

2 Data retention policy:

We do not share or distribute any of your personal data or any other information to any companies or individuals other than our third party data processers (see section 3 of this document).

If you do not want us to keep your details, you may contact us and request the data to be removed. Other than accounting and other data that we are obliged by law to retain for 6 years, your data will be removed within 48 hours.

Our legal grounds for processing and retaining data are as follows:

2.1 Data from website log files and analytics:

Our legal ground for processing and recording this data is to allow us to properly administer and keep up to date the content and relevancy of our website.

2.2 Data from our contact form, email or any other form of enquiry:

Our legal ground for processing and recording this data is to allow us to properly communicate with you about your enquiry.

2.3 Newsletter mailing list:

Our legal ground for processing and recording this data is that consent has been freely given by you for us to do so. You may at any time request removal of your email address from our mailing list by clicking the unsubscribe link on any of our email newsletters.

2.4 Customer data:

Our legal grounds for processing and recording this data are to allow us to properly implement and manage a contract to which you are party and also to maintain records of contracts as are required by law.

2.4 Supplier data:

Our legal grounds for processing and recording this data are that consent has been freely given for us to do so in order to facilitate communications and dealings between our respective companies, to allow us to properly implement and manage a contract or contracts to which the data subject is party and also to maintain records of contracts as are required by law.

3 Third party data processors:

We use the third party data processers who store data on our behalf. These third parties include Google, Mailchimp, Solve360 & Quickbooks. They are based in the USA and are EU-US Privacy Shield compliant.

4 Data breaches:

We will report any unlawful data breach of this website’s database or the databases of any of our third party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen

5 Data controller:

If you have any questions about this policy you may contact our data controller through our contact form here. Please include the words “For the attention of the Data Controller” in the first line of your message.

Alternatively, you may email our data controller at datacontroller@cococucine.co.uk

6 SSL encryption:

All traffic and transfer of files and data between this website and your browser is encrypted and delivered over HTTPS

7 External links:

This website might include links to other websites. We have no influence on those sites or their compliance with the provisions regarding data protection. We cannot be held liable for any damages or implications caused by visiting any external links mentioned.