0800 151 0181 Monday to Friday 8am to 6pm Free Delivery Overnight

Data Protection Statement and Privacy Policy: FLYERALARM UK

Data controller:

FLYERALARM LTD. (1000 Great West Rd, Brentford, United Kingdom, TW8 9DW)

) is responsible for collection and processing of data.

T: 0800 151 0181

Data protection contact: info@flyeralarm.co.uk.

A. Data protection information:

Compliance with data protection legislation is a high priority for our firm. We would like to inform you about how we collect and then process your personal data.

1. Voluntary disclosure:

We only collect the data that is required in order to conclude a contract with you.

Disclosure of certain items of data is voluntary. There are no negative consequences arising out of the failure to disclose this information. However, in some cases non-disclosure may delay or impede subsequent communications.

2. Data processing for fulfilment of contract:

We process the data collected for the purpose of fulfilling a contract pursuant to Article 6 (1) (b) GDPR. This purpose includes the associated customer care.

Where necessary, personal data may be shared within FLYERALARM and with the companies that are involved in the fulfilment of this contract, such as banks for payment, couriers, suppliers.

The data required for fulfilment of the contract will be saved in our company in the form of a customer account, which may be deleted at any time on request. The data will not be deleted if claims are still outstanding and awaiting collection after the end of the contract. In the case of statutory retention periods, the affected data will be archived for the corresponding length of time.

3. Data processing in our legitimate interest:

Auditing and compliance:

In some cases we process your personal data for the purpose of carrying out audits and compliance measures. Your personal data may therefore be used in this context for the purpose of optimising internal company processes. It is possible that third parties may be granted access to your personal data for this purpose.

This processing is carried out on the basis of Article 6 (1) (f) GDPR and in the interest of ensuring the legality of data processing and the processes carried out throughout the FLYERALARM businesses.

Web analytics and cookies:

We also use web analytics tools and cookies to learn more about how our website is used, improve its usability, assess its reach and undertake appropriate market research.

This provides us with (statistical) indicators regarding the use of our web offer.

The data processing takes place on the basis of Article 6 (1) (f) GDPR, and in the interest of targeting our offer, advertising and advertising measures to web visitors thus allowing us to strengthen our position in the long term.

4. Data processing on the basis of your consent:

If you have provided us with your specific consent to receive information from FLYERALARM about its products and services by telephone or email, we will process your data on the basis of Article 6 (1) (a) GDPR. You may withdraw your consent at any time without affecting the lawfulness of any previous processing. If you withdraw your consent, we will stop the corresponding data processing.

5. Data processing for direct marketing:

We process your data for the purpose of direct marketing, in particular for the purpose of sending our marketing by email and sometimes also by post. This data processing is undertaken on the basis of Article 6 (1) (f) GDPR in the interests of keeping you informed of new products and services. You have the right to object to this processing; if you exercise this right we will stop sending you direct marketing. If your data is only stored for the purpose of direct marketing, we will delete this when your objection is processed.

6. Data recipients:

We will only share your data with third parties (e.g. banks for the purpose of payment transactions processing, lawyers for collection of outstanding claims, selected print service providers, postal service providers for delivery of your order) where we have a lawful basis to do so under data protection legislation (e.g. pursuant to one of the lawful bases mentioned above).

We may also share your data with external service providers (e.g. IT service providers, data destruction or archiving companies, printers) that support our data processing strictly in according with our instructions the scope of a contract.

We may send some of your data for processing by service providers abroad. We have concluded appropriate data processing agreements and where required EU standard contracts pursuant to Article 46 (2) (c) GDPR with these data processors as a suitable guarantee for the lawfulness of sending this data.

We will not sell or otherwise market your personal data to third parties.

7. Use of data that has not been collected directly from the data subject:

In addition to the data processing described above, we also process contact data that we have not collected directly from the data subject and may add this to existing records.

This may arise when a customer who has placed an order with us provides us with your address for delivery as the order is to be delivered to you, or with other personal data to be processed in the scope of the print order. We process this data for the purpose of fulfilling the order. Your data may also be provided as the invoice recipient.

8. Rights of data subjects:

Please see Section C of this policy for more information about your rights and for details of our external Data Protection Officer.

B. Privacy policy:

Thank you for visiting our website. We would like to inform you about how your data is processed in accordance with Article 13 of the General Data Protection Regulation (GDPR).

1. Storage of IP address:

We save the IP address sent by your web browser for a period of 7 days, strictly in the interest of recognising, localising and preventing attacks on our website. Once this period has come to an end we anonymise or delete the IP address. The lawful basis for this processing is Article 6 (1) (f) GDPR.

2. Usage data:

When you visit our website, our web server saves temporary information about your usage as a statistical record to help improve the quality of our web pages. This data comprises:

  • The page from which the URL/file was requested
  • The name of the URL/file
  • The date and time of the request
  • The volume of data transferred
  • The access status (URL/file transferred, URL/file not found)
  • A description of the type of web browser used
  • The IP address of the computer submitting the request

3. Transfer of data to third parties:

We send your data to data processors pursuant to Article 28 GDPR who support us in the operation of our website and the associated processes. Our service providers operate under our strict instructions and are obligated under appropriate contracts. We use the following service providers: Hosting service providers, web analysis service providers, newsletter service providers.

Transfer of data to third countries:

We may send some of your data for processing by service providers abroad. We have concluded appropriate data processing agreements and where required EU standard contracts pursuant to Article 46 (2) (c) GDPR with these data processors as a suitable guarantee for the lawfulness of sending this data.

In the case of Google Analytics (USA) an appropriate level of data protection is guaranteed by participation in the Privacy Shield agreement (Article 45 (1) GDPR).

4. Cookies:

We use cookies on our website. Cookies are small text files that are saved on your device and can be read. A distinction is made between session cookies, which are deleted as soon as you close your browser, and permanent cookies, which are stored beyond the individual session. Cookies may contain data that makes it possible to recognise the device being used. In some cases, however, cookies only contain information on certain settings that cannot be related to individuals.

We use session cookies and permanent cookies on our websites. This processing is carried out on the basis of Article 6 (1) (f) GDPR and in the interest of enabling and optimising the user experience and adapting the way in which our website is displayed.

You can configure your browser so that it informs you about the use of cookies. This makes the use of cookies transparent for you. You can delete cookies at any time using the corresponding browser setting, as well as prevent the setting of new cookies. Please note that our web pages may then not be displayed optimally and some functions may no longer be available for technical reasons.

5. Tracking tools:

Google Analytics:

In order to design our website according to your needs, we create pseudonymous user profiles with the help of Google Analytics Universal. Google Analytics Universal uses cookies that are stored on your device and can be read by us. This allows us to recognise and count returning visitors. This data processing is undertaken on the basis of Article 6 (1) (f) GDPR in the interests of learning how frequently our website is accessed by different users.

The information generated by the cookie about your use of this website will generally be transmitted to and stored by Google on servers in the United States. However, since we have enabled IP anonymisation on this website, Google will previously truncate your IP address within Member States of the European Union. The full IP address will only be transmitted to a Google server in the USA in exceptional cases (an adequate level of data protection exists according to Article 45 (1) GDPR through Google’s participation in the Privacy Shield) and only truncated there. We have also concluded a contract for data processing pursuant to Article 28 GDPR with Google Inc. (USA). Pursuant to this, Google may use all information only for the strict purpose of evaluating use of our website and compiling reports on website activity.

We also use the Google Analytics Universal cross-device tracking feature. For this purpose, a UserID is assigned to you when you enter your login data. If you later log into your customer account using the same credentials on another mobile device, the same UserID is assigned here. However, it is not possible to assign your plaintext data to the UserID. Likewise, the usage profiles created by Google Analytics Universal cannot be assigned to a specific ID.

You can object to the processing of your personal data by Google Analytics Universal at any time. This can be done in any of the following ways:

  1. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.
  2. You can also prevent Google’s collection of the data generated by the cookie and related to your use of the website (including your IP address) and its processing of this data by downloading and installing the plugin available from this link(http://tools.google.com/dlpage/gaoptout?hl=en)
  3. You can also prevent Google Analytics from collecting data by clicking on the following link. This sets an opt-out cookie that permanently prevents the future collection of your data when you visit this website::

    Click here to object to the processing of your data by Google Analytics.

    We would like to point out that on this website Google Analytics (Universal) has been extended by the code "gat._anonymizeIp();" in order to guarantee anonymous recording of IP addresses (IP masking).

Google TagManager:

Our use of Google Analytics (Universal) is implemented using the Google Tag Manager. Google Tag Manager is also a Google product that allows us to manage web page tags through an interface. The Tag Manager is a cookie-free domain and does not collect any personal data. The tool triggers other tags that may themselves collect data. Google Tag Manager does not access this data. If you have objected to data processing at the domain or cookie level this will persist for all tracking tags implemented with Google Tag Manager.

Google Signals:

We use the Google Signals web analytics service on our website on the basis of our legitimate interest in analysing, optimising and operating an online shop pursuant to Article 6 (1) (f) GDPR. Google Signals is an extension to Google Analytics, a web analytics service provided by Google Ireland Limited (“Google”).

It uses cross-device tracking to follow your website visits across multiple devices when you are logged in to a Google service. Google does this by using the data of users who have the “Personalised advertising” option enabled in their Google account to produce reports that Google makes available to us. These reports contain the number of users across devices and the various user groups.

We use Google Signals with IP anonymisation enabled. This means that the IP address of users within the Member States of the EU and the European Economic Area is abbreviated. This abbreviation process removes the ability to reference an individual. Therefore, it is not possible to use this information to identify individual users. The data we receive comprise purely anonymised statistical evaluations. In particular, we do not create profiles. Google may, however, collect personal data itself; we have no influence over this. More detailed information can be found in the Google Privacy Policy: https://policies.google.com/technologies/ads?hl=en.

You can disable the use of Google Signals at any time by turning off the “Personalised advertising” option in your Google account. https://support.google.com/ads/answer/2662922?hl=en.

RichRelevance:

This website uses technologies from RichRelevance Inc.(https://www.richrelevance.com/uk/) to collect and store data for marketing and optimisation purposes. These technologies allow us to evaluate our advertising campaigns and content. The data can be used to create usage profiles under a pseudonym. Cookies are used for this purpose. The data collected using the RichRelevance technology will not be used to personally identify the visitor to this website and will not be merged with personal data regarding the bearer of the pseudonym without the express consent of the person concerned. RichRelevance uses an algorithm to analyse browsing behaviour and can then provide customers with product and service recommendations as well as advertising on this website or by email (e.g. as part of our newsletter). In the future, we may also choose to use non-personal information to provide you with such recommendations and advertisements through other digital communications. There is no further use or disclosure to third parties. For more information on the RichRelevance technology, please see the RichRelevance Privacy Policy (http://www.richrelevance.com/uk/privacy/). You can disable RichRelevanceTracking at any time by clicking on the following link: http://www.richrelevance.com/privacy/opt-out/ . This sets an opt-out cookie that prevents the future collection of your data when you visit this website:

Google optimize:

We use Google Optimize, a service from Google (“Google Optimize”). Google Optimize analyses the use of different versions of the website so that we can adapt how user friendly it is according to how it is used by visitors. Google Optimize is a tool included with Google Analytics and uses cookies.

The IP address that is captured is anonymised immediately after processing. In exceptional cases, the full IP address may be transferred to a Google server in the USA where it is encrypted. The IP address is not merged with other data held by Google.

You can prevent the storage of cookies by configuring your browser to reject them.

However, in this case you may find that not all functions on our website can be used in full. You can also prevent Google’s collection of the data generated by the cookie and related to your use of the website and its processing of this data by downloading and installing the plugin available from the link below: http://tools.google.com/dlpage/gaoptout?hl=en.

6. Social media plugins:

For data protection reasons we do not integrate any social plugins directly into our website. Therefore, when you visit our pages, no data is transmitted to social media services such as Facebook, Twitter, XING or Google+. This means that third parties cannot create profiles.

7. Explanation of security measures:

Data security

We have implemented technical and organisational measures to protect your data against unwanted access as comprehensively as possible. We use an encryption mechanism on our pages. Your information is transferred from your computer to our server and vice versa via the Internet using TLS encryption. You can see this by the fact that the lock symbol in the status bar of your browser is closed and the address bar begins with https://.

8. Newsletter:

We offer you the option of requesting our newsletter from our website. If you have provided us with your specific consent to receive information from FLYERALARM about its products and services by email, we will process your data on the basis of Article 6 (1) (a) GDPR. This service is intended exclusively for users who have reached the age of 16. We use Google Analytics in our Newsletter (see point 5)

We also use tracking to take note of clicks and opens. A transparent GIF is used to tell us whether a newsletter has been opened by a given individual. In addition, we record whether the newsletter recipient has clicked on links in the newsletter. For this purpose, the customer’s user ID, the links clicked on and the newsletter ID are transmitted in encrypted form. The data is stored and processed by the service provider Selligent. However, this processing is only permitted with your consent. You may withdraw your consent at any time without affecting the lawfulness of any previous processing. If you withdraw your consent, we will stop the corresponding data processing.

If you no longer wish to receive our newsletter, you can unsubscribe at any time, e.g. by sending an e-mail to: info@flyeralarm.co.uk. or via the unsubscribe link which you will find in every newsletter email.

9. Customer account:

If you would like to place an order with us, you must first register. We collect your email address, password, title, name, address and telephone number on the basis of Article 6 (1) (b) GDPR. We use the data that you disclose to us during this registration or as part of an enquiry to fulfil the contract. This purpose includes the associated customer care. You may request the deletion of this data at any time. The data will not be deleted if claims are still outstanding and awaiting collection after the end of the contract. In the case of statutory retention periods, the affected data will be archived for the corresponding length of time.

10. Contact form:

We provide a web form to allow you to contact us. Use of this form requires you to enter your email address. You are invited to provide further information, but you do not have to.

When you submit the web form, you agree that the data you provide may be received and stored electronically. The lawful basis for this processing is Article 6 (1) (a) GDPR. We will only use your data to process your inquiry. You may withdraw your consent at any time, for example by sending an email to: info@flyeralarm.co.uk.

11. Web shop:

When you place an order, we process and store the personal data that you provide to us on the basis of Article 6 (1) (b) GDPR, solely for the purpose of processing your order. We will use your e-mail address to inform you of the status of your order.

Beim Kauf in unserem Onlineshop bieten wir folgende Bezahlmethoden an:

A. Payments using the service provider Ingenico Payment Services GmbH

The following payment methods are handled using the Ogone tool from our service provider Ingenico:

FLYERALARM will send the following data to Ingenico in order to process your payment:

  • Order number
  • Order details
  • Customer’s first name and surname
  • Billing address
  • Selected payment method
  • Delivery address

Ingenico Payment Services GmbH is responsible for further processing with the respective payment service providers. Further information on data protection can be found at https://www.easycash.de/de/unternehmen/aktuelles/datenschutz-bei-easycash.html.

Ingenico will only inform FLYERALARM whether or not the selected payment method has been accepted.

B. Advance payment

If you select this payment method in our online shop, we will not collect any personal data from you beyond what is necessary for your order to be processed.

12. Trusted Shops:

Integration of the Trusted Shops Trustbadge

The Trusted Shops Trustbadge is integrated on this website to display our Trusted Shops seal of approval, as well as to offer the Trusted Shops products to buyers after they place an order with us.

This serves to safeguard our legitimate interests in optimising the marketing of our offer by enabling a securing shopping process pursuant to Article 6 (1) (f) GDPR. The Trustbadge and the services thereby obtained are an offer of the Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne. The Trustbadge symbol is served by a CDN (Content Delivery Network) provider within the scope of a data processing agreement, Trusted Shops GmbH also uses service providers based in the USA. An appropriate level of data protection has been assured. Further information about the Trusted Shops GmbH data protection policy can be found here: https://www.trustedshops.co.uk/imprint/.

When the Trustbadge is accessed, the web server automatically updates a server log file with information including your IP address, the date and time of the access, the amount of data transferred and the requesting provider. The individual access data are stored in a security database for the purpose of analysing security incidents. These log files are deleted automatically no later than 90 days after they have been created.

Other personal data will be transferred to Trusted Shops if you have decided to use Trusted Shops products after completing an order or have already registered for use. The contract agreed between you and Trusted Shops applies. Personal data is automatically extracted from the order data for this purpose. The hash of the email address, generated by a one-way cryptographic procedure, is used as a neutral parameter to determined whether you as the purchaser are already registered to use a product. The email address is converted into this hash value, which cannot be decrypted by Trusted Shops, before transmission. The parameter is deleted again automatically after being checked for a match.

This is necessary to fulfil our and Trusted Shops’ overriding justified interest in providing the associated purchaser protection in relation to the specific order and the transaction rating services, pursuant to Article 6 (1) (f) GDPR. Further details, including on how to object, can be found in the data protection policy linked to above and in the Trustbadge symbol.

13. Blog:

We operate a blog at the URL https://www.flyeralarm.com/blog/de/. In order to comment on our blog posts, you must first register for our blog. The following personal data is required when registering for a blog account:

Name and email address

Only your name is displayed publicly on the blog. The data provided will not be passed on to third parties.

14. Chat:

Userlike: This website uses technology from Userlike UG (http://www.userlike.com) to operate a live chat function. Userlike uses cookies that are stored on your computer and that enable person-to-person communication in the form of a real-time chat link with you on the website. If you opt to use Userlike, the chat history including the page history will be collected, processed and stored in Germany by Userlike. In addition, location-related information is collected via your IP address. The collected data will only be linked to any registration data if you voluntarily provide us with it, e.g. in the context of live chat communication. The same applies to your other personal data. Details about how Userlike processes your data, as well as about your rights and settings to protect your personal data, can be found in the Userlike privacy policy at https://www.userlike.com/en/terms#privacy-policy.

15. Privacy Policy for use of Social Media:

FLYERALARM operates a presence in various social networks. Where we have control over the processing of your personal data, we ensure that the appropriate data protection rules are upheld. The key information regarding our social media presence and data protection legislation can be found below.

a. Name and address of the data controller(s):

In addition to FLYERALARM, the following organisations are data controllers pursuant to the EU General Data Protection Regulation (GDPR) and other data protection legislation:

  • Facebook
    (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)
  • Instagram
    (Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland)
  • Pinterest
    (Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland
  • YouTube
    (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland)
  • Twitter
    (Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, Ireland)
  • Xing
    (XING SE, Dammtorstraße 30, 20354 Hamburg, Germany)
  • LinkedIn
    (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland)

You are fully responsible for your use of these platforms and their functionality. In particular this applies to the use of interactive functions such as commenting, sharing, liking, etc.

Furthermore, we hereby inform you that your data may be processed outside of the European Union. In respect of the US-based providers that are certified under the Privacy Shield scheme, we remind you that these providers are obliged to uphold the EU’s data protection standards.

b. Purpose and lawful basis:

We maintain our own fan pages in order to communicate with the visitors to these pages and inform them about our offering through these channels.

We also gather data for statistical purposes to allow further development and optimisation of the content and to make our offering more attractive. The data collected for this purpose (e.g. total number of page views, page activities and data provided by visitors, interactions) are prepared and provided by the social networking platforms. We have no influence on the generation and visualisation of these data.

Your personal data are also processed by the providers of the social networks and by FLYERALARM for the purposes of market research and marketing. This allows usage profiles to be created on the basis of your usage patterns and interests calculated from these, for example. As a result, advertising can be displayed within and outside of the platforms that are assumed to coincide with your interests. Cookies are stored on your computer for this purpose. Your usage profiles may also be used to store data that are collected indirectly from your user device. These data are stored and analysed across devices, in particular but not limited to when you are registered as a member and logged in to the corresponding platforms.

The processing of your personal data by FLYERALARM is performed on the basis of our legitimate interest in ensuring effective information and communication pursuant to Article 6(1) f) GDPR.

If you are requested to give your consent for the data processing, i.e. if you indicated your acceptance by confirming a button or other similar (opt-in) mechanism, the lawful basis for the processing will be Articles 6(1) a) and 7 GDPR.

c. Your rights/revocation:

If you are a member of a social media platform and do not wish the platform to collect data about you through our presence and link this with the member data of the social media platform, you must:

  • log out from the social media platform before visiting our fan page;
  • delete cookies on your device;
  • restart your web browser application.

However, when you log in again, the social media platform will once again recognise you as a specific user.

Please consult the pages linked below for detailed information about the processing and opt-out options:

In general your rights regarding the processing of your personal data comprise: Right to information, right to rectification, right to erasure, right to limitation of processing, right to object, right to data transferability, right to complain to the competent data protection authority about the illegal processing of your personal data.

However, since FLYERALARM does not have full access to your personal data, you should contact the social media platforms directly in order to enforce your rights as these have full access to the personal data for your user profile and can take appropriate measures and provide information.

We will nevertheless try to support you if you require assistance. Please contact datenschutz@flyeralarm.de

d. Additional information:

If you wish to publish images, text, designs, video, music, etc. via our social media platform presence you should be aware that in doing so you may be granting all usage rights to the social media platform, which may have legal consequences for you if you are not actually the owner or rights-holder.

C. Your rights as a data subject / Contacting the data protection officer:

The GDPR grants you as the data subject certain rights when your personal data is processed:

1. Right to information (Article 15 GDPR):

You have the right to obtain confirmation as to whether or not your personal data are being processed, and, where that is the case, access to the personal data and the information listed in Article 15 GDPR:

2. Right to rectification and erasure (Articles 16 and 17 GDPR): :

You have the right to obtain without undue delay the rectification of inaccurate personal data about you and to have incomplete personal data completed.

You also have the right to obtain the erasure of your personal data without undue delay where one of the grounds listed in Article 17 GDPR applies, for example if the personal data are no longer necessary in relation to the purposes for which they were collected.

3. Right to restriction of processing (Article 18 GDPR):

You have the right to obtain the restriction of processing where one of the conditions listed in Article 18 GDPR applies, for example if you have objected to processing pending the verification of any investigation.

4. Right to data portability (Article 20 GDPR):

In certain circumstances, which are listed in Article 20 GDPR, you have the right to obtain your personal data in a structured, commonly used and machine-readable format, or to require the transmission of these data to a third party.

5. Right to object (Article 21 GDPR):

If data is processed on the basis of Article 6 (1) (f) GDPR (data processing in our legitimate interest), you have the right to object on grounds relating to your particular situation at any time to such processing. We will then no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.

6. Comments on objection to direct marketing:

We process your data for the purpose of direct marketing. You have the right to object to this processing; if you exercise this right we will stop sending you direct marketing.

Please address your requests (1-6 above) to: info@flyeralarm.co.uk.

7. Right of complaint to a supervisory authority:

Pursuant to Article 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you consider that the processing of personal data relating to you infringes the data protection regulation. You may lodge your complaint with a supervisory authority in the Member State of your habitual residence, your place or the place of the alleged infringement. In the United Kingdom the competent supervisory authority:

The Information Commissioner’s Office Water Lane, Wycliffe House Wilmslow, Cheshire, SK9 5AF Tel. +44 1625 545 745 email: international.team@ico.org.uk Website:https://ico.org.uk

Last updated: 31.10.2018