GDPR Policy

Fonez4All GDPR Policy Page

Introduction to GDPR Policy

All businesses in the UK who process personal data have to comply with the General Data Protection Regulation (GDPR for short). You may have heard of GDPR and we want to explain how this applies to you and your relationship with Fonez4All.

At its heart, GDPR wants to better reflect the modern world we live in and make sure our personal information is kept safe and secure by businesses that use it. It’s a good thing for all of us.

We continue to review how we work and will always have your interests at heart. Our privacy notice reflects our open and honest approach to how we collect and use your information. Above all we want to be clear on our ongoing promise to keep your information safe.

Privacy Policy

Introduction

 

1.0 – A data controller is an organisation that collects, uses and manages personal data and has responsibility for how the personal data is collected, used and managed.

A data protection officer is the person in an organisation who has responsibility for monitoring compliance with data protection law and for ensuring that personal data is protected within an organisation.

Both can be contacted on support@fonez4all.com

Collecting, Managing & Usage of Data

1.1 – We collect, use and manage your personal data to allow us to have a record of all the orders that are placed with us. Your passwords and credit details are not stored. We use your data to allow us to email you regarding the order placed and any other relevant order emails. Our Website and systems are all protected with security, firewalls and is constantly being monitored by our team. We may also use your data to email you regarding any offers and coupons – this will only apply if you have subscribed or purchased an order with us. You may unsubscribe any time by clicking the unsubscribe link located at the bottom of the email. We also use your data for telephony providers, research service providers and marketing services. Also any information that is entered into our contact forms may be used to help you with your query or services – such as our repair service. This is all so that we can enable you with the best experience and best personal help.

We will collect personal data directly from you when you purchase products, use any contact form or change any of your details (such as your name or address) via My Account. We require you to provide personal data in order to assess whether to enter into a contract with you or to perform our contract with you and if you do not provide the personal data we request, we will be unable to enter into or fulfil this contract. We may also collect personal data through cookies. For further information please see our cookies policy page.

Your personal data such as name and address will be shared with a third party courier – once an order is purchased -, which will be used for delivery of the products.

Processing Data

1.2 – We need to process your personal data for a number of different reasons and these are our legal bases for processing. We also need to keep your personal data for as long as is necessary for us to operate our business and to comply with legal and regulatory obligations.

We rely on one or more of the following legal bases for processing personal data:

  • To perform our contract with you or to enter into a contract with youWe need to process your personal data to fulfil our contract with you or to assess whether to enter into a contract with you, whether this is in selling and delivering goods and services to you or providing credit facilities or other financial services products to you.
  • To fulfil our legitimate interests or the legitimate interests of a third partyWhen we process personal data to fulfil our legitimate interests we will use it in a way in which you would reasonably expect and which will have a minimal privacy impact. When we or third parties are relying on legitimate interests to process your data we will balance our interests against your interests and the privacy impact of the processing on you and we will process your personal data responsibly.Examples of our legitimate interests are: direct marketing, email and delivery.
  • To comply with legal obligations to which our business is subject.We have to comply with relevant law and regulation in order to provide retail and financial services products and we will need to process your personal data in order to comply with these legal obligations.
  • ConsentIf we are relying on your consent as our legal basis to process your personal data, you have the right to withdraw consent at any time.

We will keep your personal data for the purposes set out in this privacy notice and only for as long as any legal basis continues to apply. Below is a non exhaustive list of some of the reasons we need to retain your personal data:

  • Compliance with the requirements of the Financial Conduct Authority
  • Compliance with Anti Money Laundering Regulations
  • Reporting obligations to the Credit Reference Agencies
  • Ensuring we have relevant information in the event of any queries or complaints
  • Being able to identify if you have purchased a product which is subject to a product recall
  • Being able to service any product or service guarantee you have purchased
  • To assist with the establishment, exercise or defence of legal claims

The length of time we need to keep the personal data will vary depending on the nature of the personal data and the reason we are obliged to hold it. Once there is no reason to withhold your data, we will no longer store it in our systems and have no access to it.

Transferring Data

1.3 – Transferring personal data to other organisations needs to take place with appropriate safeguards and you can be assured that we will only share the personal data that is needed for these organisations to be able to provide the right service or support us in doing so.

We may transfer your personal data to the following third parties:

  • Other companies within the The Fonez4All Group of companies – including for credit assessment purposes, for fraud prevention purposes or for the provision of other products and services.
  • Customer service providers – our partners who work with us to administer your account and provide you with any help you may need.
  • Delivery companies – our couriers, parcel firms and mail firms who deliver your goods or services and manage any returns on our behalf.
  • Distributors and manufacturers of goods – our partners who fulfil orders and deliver products to you and manage any returns on our behalf.
  • Product service providers – our partners who provide retail or financial products and services including credit facilities, insurance or extended warranties.
  • Research service providers – our partners who work with us to provide research and data analysis services.
  • Marketing service providers – our partners who work with us to send you information about products, services and special offers that we or they believe are of interest to you.
  • Regulators and other governmental agencies or law enforcement agencies.

We will only transfer your personal data to third parties who adhere to appropriate data security standards and controls.

Your Rights

1.4 – You have certain rights in respect of your personal data and we have processes to enable you to exercise these rights.

Right of Access

This is known as a Subject Access Request. If you want to know if we are processing personal data relating to you and to have access to any such personal data you can call or email our support team.

Right to Rectification

If you believe that we hold inaccurate personal data about you, then you can update this information directly by logging in to My Account and updating the relevant details.

Alternatively, you can request that we carry out a review and rectify any incomplete or inaccurate personal data we hold about you by calling our support team. Depending on the type of personal data you believe is inaccurate, we may ask you for further proof to ensure that the personal data is being corrected properly. If we are satisfied that the personal data is inaccurate we will make the necessary changes.

Right to Erasure

You have a right to ask for your personal data to be erased. However, we are not required to erase your data where we need your personal data to comply with a legal obligation or for the establishment, exercise or defence of legal claims. Therefore we cannot comply with an erasure request where you have a retail shopping account, owe money on a credit facility or have otherwise bought products and services for which we must keep records. In addition, if you opt out of marketing communications or have previously opted out of marketing communications, we have to keep a record or such opt out to ensure that we don’t contact you in the future.

Right to Restriction

You have a right to request that processing of personal data is restricted in certain circumstances. Where we restrict your data, we are permitted to store your data but we cannot process in any other way apart from for the establishment, exercise or defence of legal claims or with your consent.

Right to Object

Where we are relying on legitimate interests as a legal basis to process your data, you have a right to object to such processing on grounds relating to your particular situation.

If you object to our use of your personal data for direct marketing purposes, we will opt you out of direct marketing. You can do this by unsubscribing or call our support team.

You may also object to other processing when we rely on our legitimate interests as the basis for processing, but we do not have to stop the processing if we can demonstrate compelling legitimate grounds for the processing (taking into account our processing activities, the nature of our business and our legitimate interests) and that these grounds override your interests, rights and freedoms or in the event that we need the personal data for the establishment, exercise or defence of legal claims. To enable us to consider any objection we will need to know what specific interests, rights or freedoms relating to your particular situation you believe will potentially be put at risk by our processing. If we do stop processing your personal data (apart from for direct marketing purposes), this may affect our ability to trade with you.

Automated Processing

From time to time, in deciding whether to enter into a contract with you, or during the ongoing performance of a contract, we take decisions based on automated processing which produces legal affects or similarly significantly affects you.

For example me may use automated processing in relation to the information we hold about you to make recommendations of products and services we think you would be interested in and to improve your experience when you visit our website by making it relevant and tailored to you.

Right to Portability

In certain circumstances, you can request that we provide to you your personal data in a commonly used format. If you wish to make such a request via calling our Customer Service or emailing us. However this will only apply if the details are correct. You may be asked certain questions in order for us to detect if is genuine or not.

Right to Complain to the Information Commissioner’s Office

You have the right to lodge a complaint with the Information Commissioner’s Office and more details can be found on their website www.ico.org.uk.

Fraud Prevention

1.5 – Before we provide services, goods or financing to you, we undertake checks for the purposes of preventing fraud and money laundering, and to verify your identity. These checks require us to process personal data about you.

What We Process & Share

The personal data you have provided, we have collected from you, or we have received from third parties may include your:

  • name
  • date of birth
  • residential address and address history
  • contact details such as email address and telephone numbers
  • financial information
  • identifiers assigned to your computer or other internet connected device including your Internet Protocol (IP) address

 

When we and fraud prevention agencies process your personal data, we do so on the basis that we have a legitimate interest in preventing fraud and money laundering, and to verify identity, in order to protect our business and to comply with laws that apply to us. Such processing is also necessary to enable us to enter into and perform our contracts with you.

We, and fraud prevention agencies, may also enable law enforcement agencies to access and use your personal data to detect, investigate and prevent crime.

Fraud prevention agencies can hold your personal data for different periods of time, and if you are considered to pose a fraud or money laundering risk, your data can be held for up to six years.

Automated decisions

As part of the processing of your personal data, decisions may be made by automated means. This means we may automatically decide that you pose a fraud or money laundering risk if:

  • our processing reveals your behaviour to be consistent with money laundering or known fraudulent conduct; or is inconsistent with your previous submissions; or
  • you appear to have deliberately hidden your true identity

You have rights in relation to automated decision making: if you want to know more please contact our support team.

Consequences of Processing

1.5 – If we, or a fraud prevention agency, determine that you pose a fraud or money laundering risk, we may refuse to provide the services and financing you have requested, or we may stop providing existing services to you.

A record of any fraud or money laundering risk will be retained by the fraud prevention agencies, and may result in others refusing to provide services, financing or employment to you. If you have any questions about this, please contact us on the details above.

Data Transfers

Whenever fraud prevention agencies transfer your personal data outside of the European Economic Area, they impose contractual obligations on the recipients of that data to protect your personal data to the standard required in the European Economic Area.

They may also require the recipient to subscribe to ‘international frameworks’ intended to enable secure data sharing.

Your Rights

Your personal data is protected by legal rights, which include your rights to:

  • object to our processing of your personal data
  • request that your personal data is erased or corrected
  • request access to your personal data

For more information or to exercise your data protection rights, please contact us.

If you are unhappy about how your personal data has been used please contact us.

You also have a right to complain to the Information Commissioner’s Office, which regulates the processing of personal data.

Unsubscribing

1.6 – If you have any queries about how we use your information or on data protection generally please contact our support team.

Opting Out

From time to time we may contact you with details on special promotional offers or products that we think you would be interested in, via email, telephone, SMS or post or from specially selected third parties. If you do not want to receive these communications you can opt out in the following ways:

  • Via Email – You may email us if you decide you want your account removed or call us. You may be asked few questions for clarification purposes.
  • To opt out of marketing emails from us, click on the “unsubscribe” link contained at the end of marketing emails and follow the subsequent instructions.
  • To unsubscribe from web notifications from us, please go to your browser settings and within ‘Site Settings/Options’, select ‘Notifications’ and ‘Block’ for our website.

 

Whilst we aim to make changes to your marketing preferences as soon as possible, we advise that you allow up to 30 days for any changes to take effect.

We have a separate page for rules and regulations in relation to the return of goods. Please visit our returns page at Returns

We hope you have an enjoyable experience with Fonez4All

[Last Updated: 15/03/21]

Leave a comment