Privacy Policy for Garnet Gardens

At Garnet Gardens, we are committed to protecting the privacy and security of your personal information. This Privacy Policy outlines how we collect, use, disclose, and safeguard your data when you interact with our online platform and avail yourself of our horticulture and landscaping services, including bespoke garden design, floral arrangements for events, rare plant sourcing, landscape construction, ongoing garden maintenance, and consultations on mineral and stone garden features. We operate in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

Information We Collect

We collect various types of information to provide and improve our services to you.

• Personal Identification Information: This may include your name, email address, postal address, and telephone number when you request a consultation, subscribe to our newsletter, or engage our services.
• Project-Specific Information: Details about your garden, property, preferences, and design inspirations provided during consultations for bespoke garden design, landscape construction, or floral arrangements. This might include photographs you share with us.
• Financial Information: For processing payments for our services, we may collect billing addresses and payment details. Please note that credit card information is typically processed by secure third-party payment processors, and we do not store sensitive payment card details on our servers.
• Technical Data: When you visit our online platform, we may collect information such as your IP address, browser type and version, time zone setting and location, operating system and platform, and other technology on the devices you use to access this service.
• Usage Data: Information about how you use our online platform, products, and services. This helps us understand visitor behaviour and improve our offerings.

How We Use Your Information

We use the information we collect for various purposes, primarily to deliver our high-quality horticulture and landscaping services and manage our business effectively.

• Service Provision: To provide and manage the bespoke garden design, floral arrangements, rare plant sourcing, landscape construction, ongoing garden maintenance, and consultations you request.
• Communication: To communicate with you about your projects, appointments, inquiries, and to send service-related updates.
• Marketing and Promotion: With your consent, to send you newsletters, promotional materials, or information about new services, special offers, or events that may be of interest to you. You can opt out of these communications at any time.
• Improvement of Services: To understand how our services are used, conduct research and analysis, and develop new features or improve existing ones.
• Legal Compliance: To comply with legal obligations, resolve disputes, and enforce our agreements.
• Security: To protect against fraudulent or unauthorized transactions and for security monitoring.

Legal Basis for Processing Personal Data Under GDPR

We will only process your personal data where we have a lawful basis to do so as permitted by GDPR. These include:

• Contractual Necessity: Processing is necessary for the performance of a contract to which you are party or in order to take steps at your request prior to entering into a contract (e.g., providing a quote for garden design).
• Legitimate Interests: Processing is necessary for our legitimate interests or those of a third party, provided those interests are not overridden by your fundamental rights and freedoms (e.g., improving our services, preventing fraud, direct marketing where legally permissible).
• Consent: Where you have given clear consent for us to process your personal data for a specific purpose (e.g., subscribing to our newsletter). You have the right to withdraw your consent at any time.
• Legal Obligation: Processing is necessary for compliance with a legal obligation to which we are subject (e.g., tax and accounting requirements).

Disclosure of Your Information

We may share your personal data with the following categories of recipients:

• Service Providers: Third-party vendors and service providers who perform services on our behalf, such as payment processing, website hosting, customer relationship management (CRM) systems, and analytics. These providers are obligated to protect your information and not to use it for any other purpose.
• Legal and Regulatory Authorities: When required by law or in response to valid requests by public authorities (e.g., a court order or government agency).
• Business Transfers: In connection with or during negotiations of any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company.

We do not sell, rent, or trade your personal data to third parties for their marketing purposes.

Data Retention

We will retain your personal data only for as long as is necessary for the purposes set out in this Privacy Policy, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

Your Data Protection Rights Under GDPR

Under certain circumstances, you have the following rights concerning your personal data:

• The right to access: You have the right to request copies of your personal data.
• The right to rectification: You have the right to request that we correct any information you believe is inaccurate. You also have the right to request that we complete the information you believe is incomplete.
• The right to erasure ("the right to be forgotten"): You have the right to request that we erase your personal data, under certain conditions.
• The right to restrict processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
• The right to object to processing: You have the right to object to our processing of your personal data, under certain conditions.
• The right to data portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
• The right to withdraw consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing based on consent before its withdrawal.

If you make a request, we have one month to respond to you. To exercise any of these rights, please contact us using the details provided below.

Security of Your Data

We are committed to ensuring the security of your personal data. We implement appropriate technical and organisational measures to protect your personal data from accidental loss, unauthorised access, use, alteration, or disclosure. However, please remember that no method of transmission over the Internet or method of electronic storage is 100% secure.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. We encourage you to review this Privacy Policy periodically for any changes.

Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at: