Privacy Policy
PRIVACY POLICY
Your privacy is important to us
At Hobbs we take your privacy very seriously and are committed to protecting the privacy and security of our customers. We fully appreciate and respect the importance of data protection and online security.
This Privacy Policy (the “Policy”) outlines how your personal information is treated and forms part of our terms and conditions. This Policy explains:
- what information we collect when you use the Hobbs website (the “Site”), when you communicate with us, or when you visit one of our stores (as the case may be);
- how we use your information;
- how we share your information
- how long we keep your information and how it is stored;
- our approach to sensitive personal information;
- what options you have to control your information;
- the rights you may have in relation to your personal information; and
- how we communicate changes to this Policy.
Please contact our Customer Services team if you would like to discuss this with us or have any questions, comments or suggestions relating to this Policy.
About us
This Site is run by Hobbs Limited (“Hobbs”/”we”/”us"/”our”). For the purposes of applicable data protection laws, including the EU General Data Protection Regulation (“GDPR”) (as amended or superseded) Hobbs is the “controller” of the personal information collected through the Site, by phone, e-mail or other communication, with our Customer Services team, or in any Hobbs store. This means that Hobbs decides why and how your personal information is processed.
How do we collect information from you?
1. Information we collect when you visit our Site
We will collect personal information that you provide to us when you:
- create an account on our Site;
- place an order through our Site;
- fill in forms on our Site, for example to leave feedback, enter a competition or respond to a survey; or
- subscribe to our mailing list.
Any personal information you provide to us in the ways listed above is voluntary. However, if you do not provide this information to us, we may be unable to provide products and services to you or interact or communicate with you effectively.
We will also collect certain information automatically when you visit our Site, in particular:
- when you access our Site, we use “cookies” to make it easier for you to use our Site. These cookies record data about the pages you browse and the activities you carried out during your visit. Further details about our use of cookies is set out in our Cookie Policy;
- we record details of the resources that you access to visit our Site (for example, URL addresses, traffic data etc.); and
- we record information about the type of device you have used to visit our Site, your device settings, and the cause of any system errors. Your device manufacturer or operating system provider will have further details on what information your device makes available.
2. Information we collect in our stores
We will collect personal information that you provide to us in our stores when you:
- ask us to provide you with a digital receipt;
- subscribe to our mailing list; or
- enter a competition or respond to a survey.
3. Information we collect when you contact us
We will collect personal information about you when you contact us by telephone, e-mail, online chat function or via social media. We may monitor, record and store such communication with you as needed and, in particular, for training and/or quality purposes.
4. Information we collect if you apply for a job with us
You may be able to apply for a job with us through our Site, in-store or through third party websites such as LinkedIn. The personal information we collect about you may include your name, contact details, employment history, and any information set out in your CV.
How we use your information
Data protection laws require us to have a specific legal reason (also known as a ‘lawful basis’) and purpose to use your personal information.
The ways we use your personal information and the legal reasons which we have for doing so are as follows:
- 1. For the performance of a contract between you and us:
- to provide you with an account on our Site, if you choose to sign up for one;
- to fulfil any order that you place with us;
- to collect payment from you;
- to provide you with a receipt, if you ask us to send this to you electronically; and
- to protect and defend our legal rights and interests.
- 2. Where we have a legitimate interest in using your personal information:
Processing necessary for us to promote our business, brands and products and services
- to contact you by e-mail with marketing about our products and services after we presented you with an option on our Site to opt-out (e.g. using a tick box when placing an order or making a sales enquiry) which you declined to take. This marketing will relate only to products and services similar to those you are purchasing or enquiring after;
- to deliver tailored adverting (including via social media);
- to tailor and personalise our marketing communications based on your attributes; and
- to administer and monitor our Site, including to ensure that content is presented in the most effective manner for you and for your device, and to allow you to participate in interactive features when you choose to.
Processing necessary for us to respond to changing market conditions and the needs of our visitors and customers
- to analyse any feedback that you provide on our services, and to improve our services; and
Processing necessary to conduct recruitment activities and staff our business
- to review and assess any job application that you submit to us.
- 3. Where you have provided your consent:
- to contact you by post, e-mail or text message or WhatsApp message with marketing communications about our products, services, events and promotions and about our third party partners where you opted-in to receiving these (e.g. by actively ticking a box or by confirming agreement in-store). This includes marketing information that we send to you in our e-mail newsletter to which you have signed up by inserting your e-mail address or that we send on your birthday where you have provided your data of birth for this purpose;
- to contact you by e-mail or text message to refresh your marketing preferences; and
- to use non-essential cookies and similar technologies in the ways described in our Cookie Policy and to collect personal information about you using them.
- 4. Where the processing is required for us to comply with our legal obligations:
- to comply with a request from you in connection with the exercise of your data protection rights (for example where you have asked us not to contact you for marketing purposes or your subscription has expired, we will keep a record of this on our suppression lists in order to be able to comply with our legal obligations); and
- to keep a record of the data protection rights that you have exercised and which relate to our processing of your personal information.
How we share your information
- We share your information with our core service providers and third party platforms as required for our business to function; for example, picking, packaging and processing orders, fulfilling deliveries, customer support, fraud detection, credit risk reduction checks, IT systems support, and internal audits.
- If you choose to provide feedback on your transaction, we will share your information with Feefo or Qubit, third party feedback sites who will capture your feedback on transactions which we use to enhance our customer service.
- Your information may be processed by a third party in order to maintain the functionality of our Site and database.
- In the event that you add items to your basket but do not complete a transaction, Redeye will automatically send you an e-mail to remind you that there are items in your basket.
- • Whilst you are a member of our mailing list we may share your information with trusted non-core service providers, such as marketing partners we have carefully selected to deliver incentives to participate in offers, polls, surveys, analysis or research, all of which assist us in enhancing our services. They are not permitted to use your information after you unsubscribe.
We also use services offered by Google, Facebook, Instagram and other similar social media platforms to better tailor our marketing communications and for targeted advertising. As part of this process, some personal information, such as your e-mail address, is provided to the relevant third party, however for security purposes this data is “hashed” prior to being shared. Hashing is a process of identity masking or “pseudonymisation” which means we do not disclose your e-mail but still enables linking between your social media presence and our Site. Your personal information will be transmitted to countries outside of the EEA, including the United States. If you would like more information about how your personal information may be transmitted, and the safeguards applied, please contact privacy@hobbs.co.uk. You may have the right to object to your personal information being used in this way (see “Rights you may have” below).
We receive insights from Facebook about the effectiveness of our advertising campaigns which you experience on our Site and social channels. This helps to better target our advertising.
Every external company we work with has a contract with us which clearly sets out our expectations and requirements in handling personal information and obligates them to meet these standards and those contained in the GDPR.
How long we keep your information
We retain the information you provide for the following periods:
- for as long as you are subscribed to receive marketing information and, afterwards, indefinitely in our suppression lists to ensure that you do not receive such information;
- for as long as your account is being used and for a period of three years after the date you cease to use your account, after which period we will anonymise the personal information on file by deleting the personal information and allocating a personally unidentifiable unique reference ID and store the remaining information for a period of five years (“Data Retention Period”). After this time it will be permanently deleted from all systems and back-ups. If you wish to set up an account after this period this will be treated as a new account and your transaction history will not be available; and
- in the case of any contact you may have with our Customer Care team, for as long as is necessary to provide support-related reports and trend analysis.
Our Data Retention Period has been determined to cover contractual and legal requirements, credit risk, fraud detection and customer service periods, as well as to cover regulatory requirements, and the resolution of disputes or fraud prevention.
How we store your information
Your information may be processed by our staff or by the staff of our suppliers to the extent necessary to fulfil your order. By submitting your personal information to us, you agree to the transfer of your personal information, its storage and processing.
We will keep the data which we collect from you on a secure server. Any information you give us relating to credit card details is handled by a PCI DSS compliant third party and encrypted using secure server technology. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access and require our suppliers to do the same.
Where we have given you a password (or where you have chosen one) to access certain parts of this Site, you are responsible for keeping this password confidential. We ask that you do not share a password with anyone.
Sensitive personal information
We do not seek to collect sensitive personal information (i.e. information relating to race or ethnic origin, political opinions, religious or other beliefs, trade union membership, physical or mental health, sexual orientation or criminal records). We ask that you do not provide such information to us.
Rights you may have
You may have certain rights in relation to personal information that we hold about you. These include the right to request access to your personal information, to request that it is erased, that its processing is restricted, or that any inaccurate personal information is rectified. You may also have the right to object to the processing of your personal information, or in some circumstances to obtain a copy of the personal information in a machine readable format and will always have a right at any time to withdraw any consent you have given to us.
In particular, you have the right to object or withdraw your consent (as applicable) to any use we make of your personal information for direct marketing purposes. You have the option to unsubscribe from our e-mails through a link at the bottom of every e-mail we send to you. You have the option to unsubscribe from our text or WhatsApp messages by following the instructions in the text or WhatsApp message or contacting the Customer Services team.
If you want to change the details that you have registered with us, or would like to amend your marketing preferences or unsubscribe altogether, this can be changed in the “My Account” section of our Site or by contacting our Customer Services team.
You also have the right to complain about the use of your personal information to the Information Commissioner’s Office.
Please contact our privacy officer at privacy@hobbs.co.uk if you would like to make a request.
Changes to this Policy
We may change this Policy from time to time. If we make changes, we will notify you by revising the date at the top of this Policy, and if the changes are significant, we may provide you with additional notice such as adding a statement to the homepage of the Site or sending you an e-mail with the update.
Please check this Policy regularly to stay informed about our information practices and the ways you can help protect your privacy.
Contact Us
If you have any questions about the Policy and practices of this Site you can contact us at privacy@hobbs.co.uk.
