1. YOUR DATA AND US
Hill Farm Finest is the trading name for Hill Farm Finest Limited, company registration number: 10272013.
We’re committed to protecting and respecting your privacy. This policy explains how we use any personal information that you provide to us through our website, app or call-centres. Please read it carefully. We may change this policy. We will post any changes on this page, so please check back frequently. For the purposes of data protection law, the controller is C/O Philip Barnes & Co Ltd The Old Council Chambers, Halford Street, Tamworth, Staffordshire, England, B79 7RB.
Our website address is https://hillfarmfinest.com/.
2. WHAT PERSONAL DATA WE COLLECT AND WHY WE COLLECT IT
2.1 Shopping on our website
While you visit our site, we’ll track:
- Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
- Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
- Shipping address: we’ll ask you to enter this, so we can, for instance, estimate shipping before you place an order, and ensure delivery to where you prefer delivery
When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like a username and password. We’ll use this information for purposes, such as, to:
- Send you information about your account and order
- Respond to your requests, including refunds and complaints
- Process payments and prevent fraud
- Set up your account for our store
- Comply with any legal obligations we have, such as calculating taxes
- Improve our store offerings
- Send you marketing messages, if you choose to receive them
If you create an account, we will store your name, address, email and phone number, which will be used to populate the checkout for future orders.
We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, we will store order information for 3 years for tax and accounting purposes. This includes your name, email address and billing and shipping addresses.
We will also store reviews, if you choose to leave them.
Our website uses Stripe to process your credit/debit card payments for our products. We do not store your credit card/payment details anywhere on our server; our server passes this data directly to Stripe and we only receive and store a unique transaction ID which is used to identify your order in our accounts and confirm that you have paid for your order successfully.
When processing payments, some of your data will be passed to Stripe, including information required to process or support the payment, such as the purchase total and billing information.
Our website also uses Rvvup to process payments via Pay by Bank. Pay by Bank is a cutting-edge payment method using the Open Banking standard and allows payment to be taken without the need for entering card details through our checkout process.
If you leave a review on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
Alternatively, you may wish to visit www.aboutcookies.org which contains comprehensive information on how to do this on a wide variety of browsers. You will also find details on how to delete cookies from your computer as well as more general information about cookies.
For information on how to do this on the browser of your mobile phone you will need to refer to your handset manual.
We do not use ’spyware’, that is web bugs or hidden identifiers or other similar devices to gain access to information, store hidden information or to trace your activities.
When visitors leave reviews on our site, we collect the data shown in the reviews form, and also the visitor’s IP address and browser user agent string to help spam detection.
2.4 Contact forms
Users may contact us through the form on our “Contact us” page and, in doing so, will be asked to fill some information such as names, phone numbers and email addresses. This information helps us to get in contact with you to address your enquiry effectively. We do not store submissions on our website and your message will be sent directly to the website administrators’ email addresses who will then review and get in touch with you if necessary.
2.5 Google Analytics
Our website uses Google Analytics to collect anonymised user data which gives us a better understanding of our business operations. In order to do this, we securely collect anonymised IP addresses over an SSL (Secure Socket Layer) connection. Data collected for analytics purposes is retained for 26 months before being removed automatically.
3. HOW DO WE USE YOUR INFORMATION?
3.1 We use the personal data you provide to process your order, including passing on your telephone number to the courier, and to contact you if there are any problems.
3.2 You may also choose to receive certain emails, promotions or other information from us but can opt in or out of this at any time.
3.3 We may use your information for market research or customer profiling and to display certain content on the website, such as your favourite items or new products that we think may be of interest to you.
4. WHO WE SHARE YOUR DATA WITH
4.1 Payment card details are sent straight to our banking partner, Stripe, and are not received by us.
4.2 We may disclose your personal data when reasonably necessary in order to comply with any applicable laws, regulations or codes of conduct or when required to do so by any competent authority or to protect our rights of those of our customers.
5. HOW LONG WE RETAIN YOUR DATA
5.1 If you leave a review, the review and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up reviews automatically instead of holding them in a moderation queue.
5.2 For users that register on our website, we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
6. WHAT RIGHTS YOU HAVE OVER YOUR DATA
If you have an account on this site, or have left reviews, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
You can ask us for your data or for us to remove your data via any of the contact methods listed on our website. We would advise you to use our contact form on the “Contact us” page and select “Data request” from the “Reason” dropdown.
7. WHERE WE SEND YOUR DATA
7.1 Our web server is hosted in the UK and we ensure that all data we hold about you is stored in this location.
7.2 If you have signed up for our newsletter some data may be transferred to external service providers and this may be stored outside of the EU.
8. PRIVACY ENQUIRIES
Privacy enquiries can be made through the contact form on the “Contact us” page, or by phoning us on +44 (0)20 3086 7195. You can also write to us at Hill Farm, Battlesden, Milton Keynes, Bedfordshire, UK, MK17 9HW.
9. SECURITY OF YOUR INFORMATION
9.1 We use an SSL (Secure Sockets Layer) connection to encrypt all of the data you send to us to minimise the risk that the information you send is intercepted before it reaches us.
9.2 All your payment card details are also encrypted using Secure Sockets Layer (SSL). We do not store your payment card details.
9.3 To further secure your data, we have disallowed file-editing via FTP (File Transfer Protocol).
9.4 When making an account with us users will be required to fill out their information and answer a simple mathematical question. If the answer is incorrect, they will not be allowed to register. This will also be required for logging in.
9.5 During registration and login, we have also implemented silent security features to prevent malicious attackers from using our account services.
9.6 The hillfarmfinest.com domain is also protected by a number of security layers such as a software firewall, a server-wide firewall via our web host, 24/7 server observation and use of a Content Delivery Network (CDN) to filter, protect and optimise data among other things.
10. WHO HAS ACCESS TO YOUR DATA
Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:
- Order information like what was purchased, when it was purchased and where it should be sent, and
- Customer information like your name, email address, and billing and shipping information.
Our team members have access to this information to help fulfil orders, process refunds and support you.
11. WHAT DATA BREACH PROCEDURES WE HAVE IN PLACE
Please see our detailed Data Breach Policy and Procedure.
12.1 Your use of our website signifies your consent to our collecting and handling of your personal data for the purposes set out in this statement.
12.2 It is important that you protect your data and to minimise the risk of any unauthorised access to your account with us: please be sure to log off when you finish using a shared computer.
12.3 You may contact us at any time if you are unsure about any of the information we have.
12.4 For more information, please visit the website of the UK Information Commissioner: https://ico.org.uk/