Privacy   Policy

Who we are

Our website address is: https://www.briidea.co.uk.

What personal data we collect and why we collect it

Contact form

If you use our contact form, we capture your email and name when you submit the contact form and keep it whilst your remain in contact with us. We do not use the information submitted for marketing purposes.

The legal basis for this processing is consent.

Contacting Us Via Email

We may process data enabling us to get in touch with you. This may include your name, email address, telephone number, postal address and/or social media account identifiers. The source of the contact data is you.

The legal basis for this processing is consent.

Cookies

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select "Remember Me", your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

Facebook Pixel

Briidea Ltd uses the "Facebook Pixel", a product of the social network Facebook.

The data collected is anonymous to Briidea Ltd, and Briidea Ltd cannot determine the identity of the users. The data is however stored and processed by Facebook, so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes, according to the Facebook privacy policy and the Facebook user’s profile settings. Visitors can opt out of using the facebook pixel.

For more details of our cookie policy, visit: https://briidea.co.uk/cookie-policy/

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

We use Google Analytics. Google Analytics gathers information about the use of our website by means of cookies. The information gathered is used to create reports about the use of our website. You can find out more about Google's use of information by visiting https://www.google.com/policies/privacy/partners/ and you can review Google's privacy policy at https://policies.google.com/privacy. Please see our cookie policy for more details.

The legal basis for this processing is consent.

What we share with others

We share information with third parties who help us provide our orders and store services to you; for example --

Payments - Paypal

We accept payments through PayPal. When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the purchase total and billing information.

Please see the PayPal Privacy Policy for more details.

Sending Emails

For email broadcast purposes your email address will be added to our third party cloud-based delivery system (SendInBlue). Your data is not subject to any form of additional processing and is not shared with any third party. The SendInBlue servers are located within France and the organisation is itself bound by GDPR regulations relating to data processing and security. Further information on SendInBlue's compliance can be found at https://www.sendinblue.com/legal/privacypolicy/

The legal basis for this processing is consent via our contact form.

Security

What personal data we collect and why we collect it - Security Logs

The IP address of visitors, user ID of logged in users, and username of login attempts are conditionally logged to check for malicious activity and to protect the site from specific kinds of attacks. Examples of conditions when logging occurs include login attempts, log out requests, requests for suspicious URLs, changes to site content, and password updates. This information is retained for 60 days.

Who we share your data with

This site is scanned for potential malware and vulnerabilities by Sucuri's SiteCheck. We do not send personal information to Sucuri; however, Sucuri could find personal information posted publicly (such as in comments) during their scan. For more details, please see Sucuri's privacy policy.

The legal basis of this processing is our legitimate interests, namely the protection of our website, services and business, and the protection of others.

Direct marketing

We may process contact data, account data and/or transaction data for the purposes of creating, targeting and sending direct marketing communications by email, SMS, post and/or fax and making contact by telephone for marketing-related purposes. The legal basis for this processing is consent.

Who we share your data with

Your personal data held in our website database will be stored on the servers of our hosting services providers https://www.heartinternet.uk/, backups are made using Microsoft Services and stored on UK based servers.  The legal basis for this processing is our legitimate interests, namely ensuring that we have access to all the information we need to properly and efficiently run our business in accordance with this policy.

Financial transactions relating to the store are handled by our payment services providers, Paypal. Please see above for details

Maintaining insurance cover, managing risk and obtaining professional device - the legal basis for this processing is our legitimate interests, namely the proper protection of our business against risks.

Defence of initiation of legal claims - The legal basis for this processing is our legitimate interests, namely the protection of our legal rights, your legal rights and the legal rights of others.

To meet any legal obligations, in order to protect the vital interests of you or others.

How long we retain your data

Personal data that we process shall not be kept for longer than is necessary.

Specifically, we will retain your personal data as follows:

  • Inactive Account will be retained for 6 months
  • Security logs are retained for 60 days.

What rights you have over your data

Your principal rights under data protection law are:

  1. The right to be informed – you have the right to be informed about the collection and use of your personal data. This is a key transparency requirement under the GDPR.
  2. The right of access – you have the right to ask for access to your personal data
  3. The right to rectification – you have the right to ask for correction and completion of inaccurate personal data
  4. The right to erasure - you have the right to ask for deletion of your personal data. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
  5. The right to restrict processing – you right to request the restriction or suppression of your data but applies in certain circumstances only.
  6. The right to data portability – you have the right for a copy of your data so you can transfer to another organisation
  7. The right to object – you have right to object to the processing of your personal data
  8. Rights in relation to automated decision making and profiling.

You can learn more about the rights of data subjects by visiting https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/.

These rights are subject to certain exceptions.

You may exercise any of your rights in relation to your personal data by written notice to us, using the contact details set out below.

How we protect your data

We use encryption, backup, security on both the website and the website server.

What data breach procedures we have in place

We have a data breach process, that records any data breaches and notifies the relevant authorities within 72 hours of the breach occurring.

Amendments

We may update this policy from time to time by publishing a new version on our website.

You should check this page occasionally to ensure you are happy with any changes to this policy.

Our details

The data protection officer can be contacted via dpo@briidea.co.uk

This website is owned and operated by Briidea Ltd

Our principal place of business is at Flat 10 Hannah Lodge, 148 Palatine Road, West Didsbury. Manchester

You can contact us:

(a)    by post, to the postal address given above

(b)    using our website contact form;

(c)    by telephone, on the contact number published on our website; or

(d)    by email, using the email address published on our website.

Start building beautiful online tools

Contact Briidea today and get your free quote!

Let's Get Started 
circulo7
Wedding Inspiration
C7 SURVEYORS
nowtobusiness

About Us

Based in Manchester, we serve small to medium sized businesses all over the UK. We provide a full range of affordable website services including Web Design, eCommerce solutions and Search Engine Optimisation. 

© Briidea Ltd, 2020 
chevron-upchevron-down