GDPR Compliance & Privacy Notice

Our Commitment to Your Privacy

Your privacy policy is essential to us at Bespoke Curtain, where we specialize in creating exquisite soft furnishings. Our workshop focuses on fabric-based services, including upholstery and curtain blind fabrication. We offer a range of custom services, such as bespoke headboards, detailed furniture upholstery, professional curtain making, fittings, and unique furnishing schemes.

We collaborate with a diverse range of clients, including private and public organizations, interior designers, homeowners, hotels, and individual customers.

Offering our furnishing services means we enter private homes, and this underscores the importance of trust. We are committed to honoring that responsibility. Trust is at the core of everything we do, and a key element of that trust is ensuring the security and privacy of all personal information.

This statement outlines our unwavering commitment to you, illustrating how we diligently meet our obligations under the pertinent legislation, including the UK’s Data Protection Act (DPA) and the EU’s General Data Protection Regulation (GDPR).

Confidentiality of Personal Information

Our fundamental principle is to treat all personal data with the utmost confidentiality. We adhere to all applicable laws, including the DPA and GDPR. Our Data Protection Officer is tasked with enforcing policies that guarantee our legal compliance and uphold the highest standards of confidentiality, privacy, and security, essential for maintaining the trust of our customers and partners. BESPOKE CURTAIN is officially registered with Companies House as UPHOLSTERY & WALL PANELLING LTD, with the company number 15243404.

The majority of personal data we collect is essential for delivering our services. For our customers and potential customers, we gather pertinent information, such as names, addresses, email addresses, phone numbers, and website details to process orders and manage accounts. This data is supplied by our customers, suppliers, and various affiliates involved in service provision.

Considering the diverse nature of our clientele and the numerous partners we work with, we keep records of ‘company contact’ and ‘private individual’ information relevant to the legal or billing entity engaged in our business operations. Furthermore, we retain ‘personal contact’ details about individuals within the organizations we collaborate with. (Please be aware that the company contact information may overlap with personal contact details when corresponding with a private individual.)

We typically collect data directly from our customers and contacts through phone, email, or face-to-face interaction. We also source information from our websites, inquiries, responses to marketing campaigns, and publicly available resources. In instances where a third party engages us on behalf of a client, we ensure that consent has been granted by the individual for data sharing.

We do not retain data related to children. Personal data and consent information are primarily stored in our GDPR-compliant systems and are governed by our stringent policies and safeguards. BESPOKE CURTAIN and our third-party system providers uphold exceptional levels of security. These providers are contractually obligated to handle all data in strict accordance with rigorous confidentiality agreements.

Utilisation of Personal Information

• We use personal data to provide our services effectively and efficiently. This includes sending quotes, orders, invoices & statements, usually by email and resolving any queries. We will contact the relevant person using the most appropriate means in the circumstances. We will capture photographs of off-site visits and installations to showcase compliance or highlight any issues encountered. We use the data for processing payments and conducting credit checks where applicable.
• We use anonymised data for general analysis purposes. Any analysis containing any personal data istreated as confidential and subject to our privacy policy.
• We do not provide personal data to any third parties except where necessary to fulfil orders. Any subcontractors with whom we may share personal data have contractual obligations to meet our safeguarding requirements. We may also share personal data with relevant authorities where required by law but only to the extent required.
• Personal data unrelated to the customer that is shared with us purely to fulfil orders, such as access contact information, is treated confidentially. We will not use this for any other purpose.
• Before sharing any personal data in the instances above, we will ensure that the other party is compliant with the regulations and our policies. Personal data is provided only where it is needed and on the basis that no consent is given to hold the data beyond the transaction in question or to use it for any other purpose.
• Where the required consent has been given, BESPOKE CURTAIN may use your data for basic sales or marketing. We do not share any personal data with any third parties for marketing except outsourced marketing on our behalf and subject to our controls.

Your Agreement

• We will not hold any personal data on you without your consent. If you withdraw your consent to hold a particular item of personal data, it will be amended or deleted as requested. If you request to remove all personal data, all records will be deleted at the next routine cleansing.
• We hope that you will consent to allow us to use your data occasionally for selected marketing purposes that are relevant to you. If so, we will ask you to specify the communication means you consent to receive. (As mentioned, any such communication will come only from us.)
• If you are unwilling to receive any marketing information from us at all, you may still allow us to hold the data purely for transactional purposes. In this case, we will communicate with you only in relation to orders or enquiries you place and related accounting matters.

Your Data Protection Rights

In accordance with applicable laws, you have the following rights:

• To know if we possess any personal information about you; To access the personal information we hold; To update your data or modify your consent regarding the personal data we maintain or its usage.

Revising and Refreshing Your Personal Information

• We are obliged to keep personal data accurate and current. We wish to do this in any event to ensure that any correspondence is effective and to help us provide our services efficiently.
• Please notify us of any change to your personal data or consent to either your ‘person contact’ information or any related ‘company contact’ data that you are authorised to amend.
• To amend any data or consent, please send an email to bespokecurtain@gmail.com specifying the change required. This enables us to confirm your identity.

Comments

We collect data from comments, including IP address and browser info for spam detection. An anonymised email string may be shared with Gravatar to check usage. Your profile picture becomes public after comment approval.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.