Version - April 2018
Privacy notice - Online purchase
Who are we?
We are Canonical Group Limited. Our address is 5th Floor Blue Fin Building, 110 Southwark Street, London, SE1 0SU. You can contact us by post at the above address or by email to firstname.lastname@example.org for the attention of “Legal”.
We are not required to have a data protection officer, so any enquiries about our use of your personal data should be addressed to the contact details above.
What personal data do we collect?
When you purchase products from us online, we ask you for your name, address, contact telephone number, email address and credit card information.
Why do we collect this information?
Your information will be used by our third party payment provider to verify your credit card details for your purchase and for Canonical or our third party supplier to process your order and to send you your goods. We will also send you a receipt via email and we or the third party supplier may use your telephone number to contact you regarding your delivery.
We require this information in order to process your payment, deliver your goods and fulfil our contract with you.
What do we do with your information?
Your information is stored in our order processing system and may be processed outside of the European Economic Area. It is shared with the third parties set out below and as reasonably required for Canonical to process and store your data.
Your credit card details are passed to a third-party payment processor who retains credit card details in the European Economic Area or where required, is certified to the EU-US Privacy Shield (which requires effective safeguards for your information). We do not retain your credit card information.
Our third-party payment processor is a company called Stripe Payments Europe, Limited, who we use to process and confirm your payments. We share with them your name, address and credit card information only for payment purposes. We do not retain credit card data but our payment service providers do. For your safety, we have in place agreement between us to protect, safeguard your information and prohibit any sharing for any reasons whatsoever.
We also use a third-party supplier called Shopify Inc. to provision your order and we share with them your name, address and telephone number in order to complete the delivery.
How long do we keep your information for?
We keep your order information for so long as reasonably required in accordance with our record retention policy. Your personal information associated with the order will then be removed.
Your rights over your information
By law, you can ask us what information we hold about you, and you can ask us to correct it if it is inaccurate.
You can also ask us to give you a copy of the information and to stop using your information for a period of time if you believe we are not doing so lawfully.
To submit a request by email, post or telephone, please use the contact information provided above.
Your right to complain
If you have a complaint about our use of your information, you can contact the Information Commissioner’s Office via their website at ico.org.uk/concerns/ or write to them at: