Snowden is committed to protecting the privacy and security of our customers and website visitors.
This Privacy Notice explains in detail the types of personal data we may collect about you when you interact with us. It also explains how we’ll store and handle that data and keep it safe.
WHO ARE WE:
Snowden Limited is a private company selling food supplements, medical devices and wellbeing products direct to our customers and is registered as a data controller. You can contact our Data Protection Officer (DPO) Sam McElroy at 4 Finch Close, Lenton Lane, Nottingham, NG7 2NN.
HOW AND WHEN DO WE COLLECT YOUR DATA:
When you contact us by any means with queries, complaints etc.
When you comment on or review our products and services.
When you’ve given a third party permission to share with us the information they hold about you.
WHAT DATA WE COLLECT:
Name, Address,Telephone Number, IP Addresses
We also store some observed data such as your browsing history or click through email behaviours.
WHY DO WE COLLECT THE INFORMATION:
We also want to give you the best possible customer experience. One way to achieve this is to get a better understanding of who you are by combining the data we have about you.
The data privacy law allows this as part of our legitimate interest in understanding our customers and providing a high level of service.
Of course, if you wish to change how we use your data, you’ll find details in the section below.
Remember, if you choose not to share your personal data with us, or refuse certain contact permissions, we might not be able to provide some services you’ve previously asked for.
MONITORING OF COMMUNICATION:
Subject to applicable laws, we’ll monitor and record your calls and other communications in relation to your dealings with us. We’ll do this for self regulatory compliance, for quality control, staff training and when we need to see a record of what has been said.
You can opt out of communications at any time by calling us on Freephone 0800 161 5670.
AUTOMATED DECISION MAKING AND PROCESSING:
Automated decision making involves processing your personal data without human intervention, we may do this to decide which marketing communications are suitable, and also to help build a ‘profile’ of our customer database to gain a greater understanding our customers and target audience. All of this activity is on the basis of legitimate interest, to protect our business and to develop and improve our services.
RETENTION OF DATA:
We will retain data for a minimum of 5 years after the last purchase, this is to ensure that any loyalty programme rewards are not lost from the account.
YOUR RIGHTS UNDER APPLICABLE DATA PROTECTION LAW:
The right to be informed about our processing of your personal data
The right to have your personal data corrected if it’s inaccurate and to have incomplete personal data completed
The right to object to processing of your personal data
The right to restrict processing of your personal data
The right to have your personal data erased (the “right to be forgotten”)
The right to request access to your personal data and information about how we process it
The right to move, copy or transfer your personal data (“data portability”)
Rights in relation to automated decision making including profiling
You have the right to complain to the Information Commissioner’s Office. It has enforcement powers and can investigate compliance with data protection law: ico.org.uk
DATA ANONYMISATION AND AGGREGATION:
Your personal data may be converted into statistical or aggregated data which can’t be used to identify you, then used to produce statistical research and reports. This aggregated data may be shared and used in all the ways described above.
TRANSFERS OUTSIDE OF THE EUROPEAN ECONOMIC AREA:
The data that we collect from you may be transferred to, and stored at a destination outside the EEA. It may also be processed by our service providers (and their employees) operating outside the EEA.
We take steps to ensure that in the event that your information is transferred outside the EEA by our service providers, appropriate measures and controls are in place to protect the information in accordance with applicable data protection laws and regulations in the UK.