Skip to content
Effective Date: 1st September 2024
1. Introduction
Carrot Top Marketing Ltd. (“we,” “us,” or “our”) is committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, and protect personal data in compliance with the UK General Data Protection Regulation (UK GDPR).
2. Information We Collect
2.1 Personal Data
We may collect and process the following personal data about you:
Identity Data: Includes first name, last name, username or similar identifier, title, date of birth, and gender.
Contact Data: Includes billing address, delivery address, email address, and telephone numbers.
Financial Data: Includes bank account and payment card details.
Transaction Data: Includes details about payments to and from you and other details of services you have purchased from us.
Technical Data: Includes internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
Profile Data: Includes your username and password, purchases or orders made by you, your interests, preferences, feedback, and survey responses.
Usage Data: Includes information about how you use our website, products, and services.
Marketing and Communications Data: Includes your preferences in receiving marketing from us and your communication preferences.
2.2 Special Categories of Personal Data
We do not intentionally collect special categories of personal data (such as details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). If you provide us with such data, we will only process it with your explicit consent or where permitted by law.
3. How We Collect Your Personal Data
We use different methods to collect data from and about you, including through:
Direct Interactions: You may give us your identity, contact, and financial data by filling in forms or by corresponding with us by post, phone, email, or otherwise.
Automated Technologies or Interactions: As you interact with our website, we may automatically collect technical data about your equipment, browsing actions, and patterns. We collect this personal data by using cookies, server logs, and other similar technologies.
Third Parties or Publicly Available Sources We may receive personal data about you from various third parties and public sources.
4. How We Use Your Personal Data
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
Performance of Contract: Where we need to perform the contract we are about to enter into or have entered into with you.
Legitimate Interests: Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
Legal or Regulatory Obligation: Where we need to comply with a legal or regulatory obligation.
Consent: Where you have provided your consent.
4.1 Purposes for Which We Use Your Personal Data
We have set out below a description of all the ways we plan to use your personal data, and the legal bases we rely on to do so:
– To register you as a new customer (Performance of Contract)
– To process and deliver your order (Performance of Contract)
– To manage our relationship with you (Legitimate Interests, Performance of Contract, Legal Obligation)
– To administer and protect our business and this website (Legitimate Interests, Legal Obligation)
– To deliver relevant website content and advertisements to you and measure or understand the effectiveness of the advertising we serve to you (Legitimate Interests, Consent)
– To use data analytics to improve our website, products/services, marketing, customer relationships, and experiences (Legitimate Interests)
– To make suggestions and recommendations to you about goods or services that may be of interest to you (Legitimate Interests, Consent)
– To share data with third parties associated with the Company to provide a full service
5. Disclosure of Your Personal Data
We may share your personal data with:
Service Providers: External third parties who provide IT and system administration services.
Professional Advisers: Including lawyers, bankers, auditors, and insurers.
HM Revenue & Customs, Regulators, and Other Authorities**: Who require reporting of processing activities in certain circumstances.
Date: 1st September 2024
Next Revision Date: September 2025