Who we are
We are The Swing Dance Company Limited, a private limited company registered in England. We trade through this website address is: bleyershoes.com
What personal data we collect and why we collect it
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
We keep emails that contain the contents of contact form submissions indefinitely for customer service purposes, but we do not use the information submitted through them for marketing purposes.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select "Remember Me", your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
The bleyershoes.com website uses Google Analytics. Google Analytics mainly uses first-party cookies to report on visitor/user interactions on our website. Users may disable cookies or delete any individual cookie.
Legal Bases for Collecting and Using Information
Under the GDPR, there are a number of approved reasons (or “legal bases”) a company might legitimately process a person’s data. Below, we’ve outlined the most relevant legal bases under the GDPR.
Contractual necessity – When it is necessary to process sales, in order that we can communicate essential information relating to that sale.
Consent – This is unambiguous, freely given consent, for example through accepting our cookie notice online or by joining our mailing list online, on physical forms, or by request on email. People have the right to withdraw consent, our marketing emails carry clear “unsubscribe” links.
Legitimate Interests – Our company’s legitimate interests are the lawful basis on which we process marketing emails to our customers. This process is necessary to achieve our commercial interest as it is our route to contacting our customers. It is considered that individual customers with whom we have had a relationship would reasonably expect us to contact them by email. As emails are sent infrequently, so the impact is minimal and they are unlikely to object when balanced against the individual's interests, rights and freedoms. All marketing emails carry unsubscribe links.
Who we share your data with
We do not sell any private personal information. We share data with the following specific companies in order to deliver our services. Where available links are provided to their own privacy policies;
Mailchimp – names, email addresses, phone numbers and details of previous events attended are held by Mailchimp on their servers in the USA. They are certified as compliant under the EU-US Privacy Shield Framework. They provide services for our email marketing https://mailchimp.com/legal/privacy/
Stripe.com – provides online card transactions on this website. They are a US company and they are certified under the EU-US Privacy Shield Framework. https://stripe.com/gb/privacy
Google – we use Google cloud storage and the G Suite range of applications including Gmail, where contact names, mobile numbers and email addresses are stored. Google are certified under the EU-US Privacy Shield Framework https://policies.google.com/privacy?hl=en
WPEngine – web hosting company who host our website, including databases https://wpengine.co.uk/legal/privacy/
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
More generally we may share data with the following:
Third Party Vendors: We may share information about you with third party vendors who need to know information about you in order to provide their services to us like payment providers, fraud prevention services, postal and email delivery services that help us stay in touch with you, customer chat and email support services that help us communicate with you, our hosting provider, those that assist us with our marketing efforts (e.g. by providing tools for identifying a specific marketing target group or improving our marketing campaigns), those that help us understand and enhance our Services (like analytics providers), who may need information about you in order to, for example, provide technical or other support services to you. We require vendors to agree to privacy commitments in order to share information with them.
To Protect Rights, Property, and Others: We may disclose information about you when we believe in good faith that disclosure is reasonably necessary to protect our rights, third parties, or the public at large. For example, if we have a good faith belief that there is an imminent danger of death or serious physical injury.
Visitor comments may be checked through an automated spam detection service.
Your contact information
During the order and account creation processes we collect information about you. This information may include but is not limited to:
- Your names
- Email addresses
- Phone numbers
- Location and traffic data (including partial IP address and browser type)
- Any other details that might be requested from you for the purpose of processing your purchase
Handling this data also allows us to:
- Send you important account/purchase/service information.
- Respond to your queries, refund requests, or complaints.
- Process payments and prevent fraudulent transactions. We do this on the basis of our legitimate business interests.
- Set up and administer your account, provide technical and customer support, and to verify your identity.
In order to process payments, we collect billing information on-site. Sensitive billing information is not stored on our server, but may be handled while in-transit to the payment processing server.
Masked billing information may be stored on our servers (only the last 4 digits of credit card numbers are stored: **** **** **** 1234).
How we protect your data
We understand that treating your data safely and securely is extremely important. As a small company we have worked to build trust with our customers and that data security is a key component of this. When selecting technology partners and suppliers we always look for trusted, world leading organisations who can provide excellent systems, subject to the highest levels of scrutiny under GDPR.
Our own small administrative team keep their knowledge up-to-date and have a common-sense approach to security requirements. For example, the use of 2-step verification, by installing new system updates as soon as they are available, and following the latest advice about the treatment of emails, links and attachments to reduce malware, viruses and ransomware on our system. We use Security plug-ins on our website to protect it and the data contained within it.
When data could be accessed by 3rd party individuals, for example, temporary or support staff, they would be provided with a temporary set of credentials and monitored whilst actively operating.
You have several choices available when it comes to limiting information about you:
Limit Access to Information On Your Mobile Device: Your mobile device operating system should provide you with the ability to discontinue our ability to collect stored information or location information via our mobile apps.
Opt-Out of Electronic Communications: You may opt-out of receiving promotional messages from us. Just follow the unsubscribe instructions in those messages. If you opt-out of promotional messages, we may still send you other messages, like those involved in the sales process.
Set Your Browser to Reject Cookies: You can usually choose to set your browser to remove or reject browser cookies.
What rights you have over your data
Under the scope of the European General Data Protection Regulation (AKA the “GDPR”), data protection laws give you rights with respect to your personal data, subject to any exemptions provided by the law, including the rights to:
- Request access to your personal data;
- Request correction or deletion of your personal data;
- Object to our use and processing of your personal data;
- Request that we limit our use and processing of your personal data; and
- Request portability of your personal data.
EU individuals also have the right to make a complaint to a government supervisory authority.
You can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.