Privacy Policy
Privacy policy last updated: 25 November 2020
Amfora Trading Co Ltd is a UK based company. Company Number 12360175
This Privacy Policy describes how your personal information is collected, used, and shared when you visit or make a purchase from https://amfora.london/ (the “Site”).
This website is not intended for children and we do not knowingly collect data relating to children.
We take data protection very seriously and understand the importance of protecting your privacy and Personal Information. “Personal Information” is information that identifies you as an individual such as your name, date of birth, email address, address, payment information, IP address.
How do we collect information from you?
When you visit the Site, we automatically collect certain information about your device, including information about your web browser, IP address, time zone, and some of the cookies that are installed on your device. Additionally, as you browse the Site, we collect information about the individual web pages or products that you view, what websites or search terms referred you to the Site, and information about how you interact with the Site. We refer to this automatically-collected information as “Device Information.”
We collect Device Information using the following technologies:
- “Cookies” are data files that are placed on your device or computer and often include an anonymous unique identifier. For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org.
- “Log files” track actions occurring on the Site, and collect data including your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.
- “Web beacons,” “tags,” and “pixels” are electronic files used to record information about how you browse the Site.
Additionally when you make a purchase or attempt to make a purchase through the Site, we collect certain information from you, including your name, billing address, shipping address, payment information (including credit card numbers, email address, and phone number). We refer to this information as “Order Information.”
When we talk about “Personal Information” in this Privacy Policy, we are talking both about Device Information and Order Information.
What Personal Information do we collect?
Personal Information we collect about you may include the following:
Identity Data includes first name, last name, title and age.
Contact Data includes billing address, delivery address, email address and telephone numbers.
Financial Data includes bank account and payment card details.
Transaction Data includes details about payments to and from you and other details of products and services you have purchased from us.
Technical Data includes internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
Usage Data includes information about how you use our website, products and services.
Marketing and Communications Data includes your preferences in receiving marketing from us and our third parties and your communication preferences.
We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
What legal basis do we rely on to process your Personal Information?
Consent
On some occasions, Amfora Trading Co Ltd processes your data with your consent. For example, we will ask for your consent when joining our mailing list or proceeding with a purchase of goods. You have the right to withdraw consent at any time. Where consent is the only legal basis for processing, we will cease to process data after consent is withdrawn.
The processing is necessary to fulfil a contract
Amfora Trading Co Ltd may process your data when we need to do this to fulfil a contract with you, such as to complete a purchase of good, respond to an enquiry or communication between us.
Legitimate Interest
Amfora Trading Co Ltd also processes your data when it is in our legitimate interests to do this and when these interests are not overridden by your data protection rights.
Our legitimate interests include:
- ensuring the security and integrity of our Services and in ensuring that our Websites and Apps operate effectively;
- selling and supplying goods and services to our customers;
- protecting customers, employees and other individuals and maintaining their safety, health and welfare;
- promoting, marketing and advertising our products and services;
- sending promotional communications which are relevant and tailored to individual customers;
- understanding our customers’ behaviour, activities, preferences, and needs;
- improving existing products and services and developing new products and services;
- handling customer contacts, queries, complaints or disputes; and
- fulfilling our duties to our customers, colleagues, shareholders and other stakeholders.
Amfora Trading Co Ltd may also process your data to comply with our legal and regulatory obligations eg preventing, investigating and detecting crime, fraud or anti-social behaviour and prosecuting offenders, including working with law enforcement agencies.
Who do we share your Personal Information with?
Amfora Trading Co Ltd may make Personal Information available to third parties:
Our service providers
This includes external third-party service providers, such as accountants, auditors, experts, lawyers and other outside professional advisors; IT systems, payment processing, support and hosting service providers; printing, advertising, marketing and market research and analysis service providers; document and records management providers; technical engineers; data storage and cloud providers and similar third-party vendors and outsourced service providers that assist us in carrying out business activities.
Governmental authorities and third parties involved in court action
We may share Personal Information with governmental or other public authorities (including, but not limited to, workers’ compensation boards, courts, law enforcement, tax authorities and criminal investigations agencies); and third-party civil legal process participants and their accountants, auditors, lawyers and other advisors and representatives as we believe to be necessary or appropriate: (a) to comply with applicable law, including laws outside your country of residence; (b) to comply with legal process; (c) to respond to requests from public and government authorities including public and government authorities outside your country of residence; (d) to enforce our terms and conditions; (e) to protect our operations or those of any of our group companies; (f) to protect our rights, privacy, safety or property, and that of our group companies, you or others; and (g) to allow us to pursue available remedies or limit our damages.
Other third parties
Occasionally, we may share Personal Information with other third parties. We will always do this under contract and in accordance with your instructions.
How we use Personal Information?
We will only use your personal data when the law allows us to.
We use Personal Information to do some or all of the following:
- Perform the services we are contracted to provide.
- Communicate with you as part of our business.
- Send you important information regarding changes to our policies, other terms and conditions, and other administrative information.
- Provide improved quality, training and security and manage other commercial risks.
- Carry out market research and analysis, including satisfaction surveys.
- Provide marketing information to you.
- Allow you to participate in contests, prize draws and similar promotions, and to administer these activities. Some of these activities have additional terms and conditions, which could contain additional information about how we use and disclose your Personal Information, so we suggest that you read these carefully.
- Facilitate social media sharing functionality.
- Manage our infrastructure and business operations, and comply with internal policies and procedures, including those relating to auditing; finance and accounting; billing and collections; IT systems; data and website hosting; business continuity; and records, document and print management.
- Resolve complaints, and handle requests for data access or correction.
- Comply with applicable laws and regulatory obligations (including laws outside your country of residence), such as those relating to anti-money laundering and anti-terrorism; comply with legal process; and respond to requests from public and governmental authorities (including those outside your country of residence).
- Establish and defend legal rights; protect our operations or those of any of our group companies or insurance business partners, our rights, privacy, safety or property, and/or that of our group companies, you or others; and pursue available remedies or limit our damages.
International Transfers of Personal Information
Personal Information which you supply to us is generally stored and kept inside the UK & European Economic Area.
However, due to the nature of our clients and the technologies required, your Personal Information may be transferred to third party service providers outside the EEA, in countries where there may be a lower legal level of data protection. In such situations, we transfer the minimum amount of data necessary, anonymise it where possible and enter legal contracts to aim to ensure these third parties handle your Personal Information in accordance with this Privacy Policy and the European levels of data protection.
How can you manage or delete Personal Information?
You can request to have your profile deactivated or delete your data account at any time if this does not conflict with our legal record keeping obligations.
In order to do this you can send an email to our Data Protection Officer (DPO) (see below) with your request. Please do not forget to tell us who you are and what action you wish us to take.
Security
We are committed to keeping your personal data safe and secure from unauthorised access to or unauthorised alterations, disclosure or destruction of information that we hold.
Our security measures include:
- encryption of our services and data;
- review our information collection, storage and processing practices, including physical security measures;
- restrict access to personal information to Amfora Trading Co Ltd employees, contractors and agents who need to know that information in order to process it for us and who are subject to contractual confidentiality and processing obligations. They may be disciplined, or their contract terminated if they fail to meet these obligations
- internal policies setting out our data security approach and training for employees.
Data Retention
We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.
To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.
Your Rights
You have the following rights to:
- ask what personal data that we hold about you at any time, subject to a fee specified by law
- ask us to update and correct any out-of-date or incorrect personal data that we hold about you free of charge; and
- opt out of any marketing communications that we may send you.
- ask us to delete or remove your personal data
- withdraw your consent to processing of personal data
If you wish to exercise any of the above rights, please contact us using the contact details set out below.
Third Party Privacy Practices
This Privacy Policy does not address, and we are not responsible for, the privacy, information or other practices of any third parties to which Amfora Trading Co Ltd associate. Please note that we are not responsible for the collection, usage and disclosure policies and practices (including the data security practices) of other organizations or any other software application developer or provider, social media platform, operating system or wireless service provider, or device manufacturer, including any Personal Information you disclose to other organizations through or in connection with Amfora Trading Co Ltd.
Who to contact about your Personal Information
The data controller responsible for your information is Amfora Trading Co Ltd
If you have any questions about this policy or our use of your Personal Information you can contact us via the website: https://amfora.london/home/ or write to the Data Protection Officer, Amfora Trading Co Ltd, Tintagel House, 92 Albert Embankment, London SE1 7TY.If you do not think we are handling your Personal Information adequately, you have the right to lodge a complaint with the Information Commissioner’s Office. Further information, including contact details, are available at https://ico.org.uk.
Changes to Privacy Policy
We review this Privacy Policy regularly and reserve the right to make changes at any time to take account of changes in our business and legal requirements. We will place updates on our website.