Who we are
Our website address is: https://brightsparks-nursery.co.uk
What personal data we collect when visiting our website and why we collect it
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
We may process information contained in or relating to any communication that you send to us (“correspondence data“). The correspondence data may include the communication content and metadata associated with the communication. Our website will generate the metadata associated with communications made using the website contact forms. The correspondence data may be processed for the purposes of communicating with you and record-keeping. The legal basis for this processing is [our legitimate interests, namely the proper administration of our website and business and communications with users].
When you send an email to the email address displayed on our website, we collect your email address and any other information you provide in that email (such as your name, telephone number and the information contained in any signature block in your email). The legal basis for this processing is [our legitimate interests, namely responding to enquiries and messages we receive and keeping records of correspondences]
If you leave a comment on our site you may opt in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Toolset plugin cookies – this is used by our Toolset plugin (Toolset Types) to properly provide functionality based on user status.
Loginizer cookies – this is used by the Loginizer plugin to provide brute force security in logins by monitoring user cookies.
The below list details the cookies used in our website.
|cookielawinfo-checkbox-advertisement||1 year||The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".|
|cookielawinfo-checkbox-analytics||1 year||This cookies is set by GDPR Cookie Consent WordPress Plugin. The cookie is used to remember the user consent for the cookies under the category "Analytics".|
|cookielawinfo-checkbox-functional||1 year||The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".|
|cookielawinfo-checkbox-necessary||1 years 19 days 32 minutes||This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category ''Necessary''.|
|cookielawinfo-checkbox-others||1 year||No description|
|cookielawinfo-checkbox-performance||1 year||This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".|
How can I control the cookie preferences?
Should you decide to change your preferences later through your browsing session the ‘Manage your consent’ link will display the consent notice again enabling you to change your preferences or withdraw your consent entirely.
In addition to this, different browsers provide different methods to block and delete cookies used by websites. You can change the settings of your browser to block/delete the cookies. To find out more out more on how to manage and clear cookies, visit www.allaboutcookies.org.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Who we share your data with
We may disclose your personal data to any member of our group of companies (this means our subsidiaries, our ultimate holding company and all its subsidiaries) insofar as reasonably necessary for the purposes, and on the legal bases, set out in this policy.
We may disclose your personal data to our insurers and/or professional advisers insofar as reasonably necessary for the purposes of obtaining or maintaining insurance coverage, managing risks, obtaining professional advice, or the establishment, exercise or defence of legal claims, whether in court proceedings or in an administrative or out-of-court procedure.
In addition to the specific disclosures of personal data set out in this section, we may disclose your personal data where such disclosure is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person. We may also disclose your personal data where such disclosure is necessary for the establishment, exercise or defence of legal claims, whether in court proceedings or in an administrative or out-of-court procedure.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
We keep your personal data for as long as we need to for the purposes for which it was collected or (if longer) for any period for which we are required to keep personal data to comply with our legal and regulatory requirements.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service.
This website is owned and operated by Laura Gapski.
Our address is Derby Road, Mansfield, Notts. NG18 5BN.
You can contact us:
- by post, to the address given above;
- using our website contact form;
- by telephone, on the contact number published on our website from time to time; or
- by email, using the email address published on our website from time to time.
To exercise all relevant rights, queries or complaints please in the first instance contact Laura Gapski using any of the methods provided in the list above.
You can contact the Information Commissioners Office on 0303 123 1113 or via email https://ico.org.uk/global/contact-us/email/ or at the Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire. SK9 5AF.
How we protect your data
The security of your personal information is of paramount importance to us and we use a wide range of technical and organisational security measures to safeguard it, including physical, electronic, and procedural controls.
What data breach procedures we have in place
We protect customer data with the following website features:
- We are entirely using SSL/HTTPS throughout our site. This encrypts our user communications with the servers so personal identifiable information is never captured by third parties without authorization.
- Databases are sanitized (actual user personal details are removed) before deploying to development or testing environment.
- The software used to run this website is constantly updated as and when updates, including security updates, become available.
In case of a data breach, System Administrators will immediately go through affected users and will attempt to reset passwords if needed after informing the user.
What third parties we receive data from
We receive no data from third parties other than analytics information (refer to the Analytics section above).
What automated decision making and/or profiling we do with user data
We do not use automated decision-making. Regarding profiling, we use the tracking tool Google Analytics (refer to the Analytics section above).
Industry regulatory disclosure requirements
We have no industry regulatory disclosures.