The purpose of this policy is to explain to users how we control, process, handle and protect personal information through the business and while users engage with this website. This policy also explains user rights under the GDPR, DPA & PECR and how they are adhered to through our policy implementation.
Key principles of GDPR
Processing of your personal data
Under the GDPR (General Data Protection Regulation) we control and / or process any personal information about users electronically using any or a combination of but not limited to the following lawful bases: (a) Consent, (b) Contract, (c) Legal Obligation, (d) Vital interests, (e) Public task, (f) Legitimate interests, (g) Special category data. We shall stop processing your personal information if the lawful basis used is no longer relevant.
The lawful basis stems from users' use and interaction with this website, as well as acts of correspondence between users and this website including that of placing orders for products or services, subscribing to mail lists/newsletters and any other supply of information provided to us. We will continue to process your information under this basis until you explicitly withdraw consent by refraining from using this website and contacting The Lucky Moon explicitly in this regard. We do not share your information with third parties.
Data security and protection
We ensure the security of any personal information we hold by using secure data storage technologies and precise procedures in how we store, access and manage that information. Our methods meet the GDPR compliance requirement.
Fair & transparent privacy explained
We have provided some further explanations about user privacy and the way we use this website within this policy, to help promote a transparent and honest user privacy methodology.
Downloads & media files
Any downloadable documents, files or media made available on this website is provided to users at their own risk. All precautions have been undertaken to ensure only genuine downloads are available. We accept no responsibility for third party downloads and downloads provided by external third party websites and advise users to verify their authenticity using third party anti-virus software or similar applications.
Social media policy & usage
We adopt a Social Media Policy to ensure our business and our staff conduct themselves accordingly online. While we may have official profiles on social media platforms, users are advised to verify authenticity of such profiles before engaging with, or sharing information with such profiles. We will never ask for user passwords or sensitive information on social media platforms. Users are advised to conduct themselves appropriately when engaging with us on social media.
There may be instances where our website features social sharing buttons, which help share web content directly from web pages to the respective social media platforms. Users use social sharing buttons at their own discretion. You can find further information about some social media privacy and usage policies in the resources section below.
Sponsored links and affiliate tracking
Clicking on any adverts, sponsored or affiliate links may track your actions by using a cookie saved to your device. You can read more about cookies on this website above. Your actions are usually recorded as a referral from our website by this cookie.
We use advertising partners in these ways to help generate an income from the website, which allows us to continue our work and provide you with the best overall experience and valued information. If you have any concerns about this we suggest you do not click on any adverts, sponsored or affiliate links found throughout the website.
Email marketing messages & subscription
We operate an email mailing list program, used to inform subscribers about products, services and/or news we supply/publish. Users can subscribe through an online automated process where they have given their explicit permission. Subscriber personal details are collected, processed, managed and stored in accordance with the regulations named in ‘The policy’ above.
Email marketing messages that we send may contain tracking beacons / tracked clickable links or similar server technologies in order to track subscriber activity within email marketing messages. Where used, such marketing messages may record a range of data such as; times, dates, I.P addresses, opens, clicks, forwards, geographic and demographic data. Such data, within its limitations will show the activity each subscriber made for that email campaign.
Any email marketing messages we send are in accordance with the GDPR and the PECR. We provide you with an easy method to withdraw your consent (unsubscribe) or manage your preferences / the information we hold about you at any time. See any marketing messages for instructions on how to unsubscribe or manage your preferences, you can also unsubscribe from all our email lists, by following this link, or otherwise contacting the EMS provider. Our EMS provider is; WIX.com.
Your individual rights
Under the GDPR your rights are as follows.
the right to be informed;
the right of access;
the right to rectification;
the right to erasure;
the right to restrict processing;
the right to data portability;
the right to object; and
the right not to be subject to automated decision-making including profiling.
You also have the right to complain to the ICO [www.ico.org.uk] if you feel there is a problem with the way we are handling your data.
We handle subject access requests in accordance with the GDPR.
Resources & further information
We hope you found this policy and any related links on the page adequate to answer any of your questions or concerns. For more information please don't hesitate to contact us directly using the contact details below.