We want to make sure we are as transparent as possible with our incredible supporters and so in this Privacy Policy, we describe what personal information about you (“Personal Data”) we collect, why and how it is collected, used, and shared when you visit or make a purchase from pinyourthanks.org (the “Site”). We are sorry it is a bit long-winded but those legal types do like to make sure things are done properly.

We will never sell your data to a third party, that's a #PinYourThanks promise.

Personal Data we collect:

When we talk about “Personal Data” in this Privacy Policy, we are talking about both Device Information and Order Information.

Device information:

When you visit the Pin Your Thanks Site, we automatically collect certain identifiable information about your device, including information about your web browser, IP address, time zone, and some of the cookies that are installed on your device. Additionally, as you browse the Site, we collect information about the individual web pages or products that you view, what websites or search terms referred you to the Site, and information about how you interact with the Site. We refer to this automatically-collected information as “Device Information.”

Order Information 

Additionally, when you make a purchase or attempt to make a purchase through the Site, we collect certain information from you, including your name, billing address, shipping address, payment information (including credit card numbers, bank numbers or details from any other payment taken), email address, and phone number. We refer to this information as “Order Information.”

We collect Device Information using the following technologies:

  • “Cookies” are data files that are placed on your device or computer and often include an anonymous unique identifier. For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org. You can set your web-browser not to accept cookies, but this might impact on some of the features of the Site.
  • “Log files” track actions occurring on the Site, and collect data including your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.
  • “Web beacons,” “tags,” and “pixels” are electronic files used to record information about how you browse the Site.

How and Why do we use your personal information?

The purposes for which we normally process your personal information are:

  • We use your information to complete your order 

We use the Order Information that we collect generally to fulfil any orders placed through the Site (including processing your payment information, arranging for shipping, and providing you with invoices and/or order confirmations). This also covers any questions you have about orders you have raised with us (for instance, if you are unhappy about your order). Our legal basis for this is because we have, or are taking steps to enter into, a contract with you. If you don’t provide information, we may not be able to complete your order.

  • We use your information to run our fundraising scheme

Additionally, we use Order Information to:

  • Communicate with you; 
  • Screen our orders for potential risk or fraud; and
  • Provide you with information or advertising relating to our products or services, where you have consented and opted in to receive such information. You are of course able to opt-out of this marketing information in line with GDPR at any time.

Our legal basis for these activities includes consent, public interest (in preventing or detecting crime), and compliance with legal obligations.

  • We use your information to make our site work for you and to help it work for others

We use the Device Information that we collect to help us screen for potential risk and fraud (in particular, your IP address). 

We also use device information to improve and optimize our Site (for example, by generating analytics about how our customers browse and interact with the Site, and to assess the success of our marketing and advertising campaigns). Our legal basis for this is our ‘legitimate interest’ in promoting our activities so as to fundraise and [do anything else you want to do]

Sharing your personal information:

We share your Personal Information with third parties to help us use your Personal Information, as described above. For example, we use Shopify to power our online store--you can read more about how Shopify uses your Personal Information here: https://www.shopify.com/legal/privacy

 We also use Google Analytics to help us understand how our customers use the Site--you can read more about how Google uses your Personal Information here: https://www.google.com/intl/en/policies/privacy/. You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.

Your personal information may also be shared with our fulfilment partners to enable them to deliver your purchases.

Finally, we may also share your Personal Information to comply with applicable laws and regulations, to respond to a court order, search warrant or other lawful request for information we receive, or to otherwise protect our rights.

Do not track:

Please note that we do not alter our Site’s data collection and use practices when we see a Do Not Track signal from your browser.

Your rights:

You have the right to access personal information we hold about you and to ask that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us through the contact information below.

We may transfer your data overseas:

Additionally, please note that your information will be transferred outside of Europe, including to Canada and the United States.

Data Retention:

When you place an order through the Site or signing up to any of our mailing lists or contact databases, we will maintain your Order Information/subscription information for our records for up to three years or until the COVID-19 pandemic is over, unless and until you ask us to delete this information. 

Opting Out/Data Removal or Rectification:

You can opt-out of our email subscription lists by using the unsubscribe link on any of our newsletter emails. You may also unsubscribe by emailing us at hello@pinyourthanks.org. You may request that your data be deleted from our systems by emailing us at hello@pinyourthanks.org

 Please note, we may be duty-bound to still hold some information for the purposes of auditing accounts or other regulatory requirements. However, we may only process it in one of the following circumstances: 

  • With the data subject's consent;
  • For the establishment, exercise or defence of legal claims;
  • For the protection of the rights of another natural or legal person; or
  • For important public interest reasons.

Changes:
We may update this privacy policy from time to time in order to reflect, for example, changes to our practices or for other operational, legal or regulatory reasons. You should check back here regularly to keep up-to-date. We provide a link to this policy on the Site and also notifications within the Site itself. We may, from time-to-time, also highlight major changes to you by email or other routes, depending on your communication preferences.

Contact Us:

For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact us by e-mail at hello@pinyourthanks.org or by mail using the details provided below: 89 Nunhead Lane, London, LND, SE15 3QE, United Kingdom

Complaints: 

If you have further questions or concerns about how your personal data is being handled please contact us in the first instance.

The Information Commissioner’s Office is the UK’s regulator for data protection law. If you are unhappy about the way in which we handle your personal data and we have not been able to resolve your complaint, you can complain to the ICO. You can contact the ICO through www.ico.org.uk