Information We Collect

When you reach out to us for corporate flower arrangements or gift services, we gather details you voluntarily share. This includes your name, company name, email address, phone number, delivery addresses, and specific floral requirements. Payment details are collected when you place orders, though processing is securely handled by our payment partners.

For our corporate clients, we may collect additional business details such as company registration information, preferred delivery timing, and budget preferences to tailor our service to your needs.

Our site automatically gathers certain technical data when you visit. This includes your IP address, browser type, device information, and how you navigate our site. We use this information to improve performance and understand how clients locate our services.

How We Use Your Information

We primarily use your personal information to fulfill orders and deliver excellent service. This includes processing orders, coordinating deliveries, sending confirmations, and following up to ensure satisfaction.

• Processing and fulfilling your flower orders and gift arrangements
• Communicating about order status and delivery timing
• Providing customer support and addressing your inquiries
• Enhancing our services based on your feedback and preferences
• Sending relevant updates about our services (with your consent)
• Keeping records for business and legal compliance purposes

We also use aggregated, non-personal data to understand market trends and optimize our operations. For example, we might analyze which arrangements are popular in different seasons to better prepare inventory.

With your explicit consent, we may share information about seasonal offerings, special promotions, or new services that could be of interest to your business. You can opt out at any time by using the unsubscribe link in our emails or contacting us directly.

Information Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. Your data stays within our business ecosystem and is shared only when necessary to provide our services or meet legal obligations.

We collaborate with trusted service providers who assist in delivering our services. This includes payment processors, delivery partners, and flower suppliers. These partners are contractually obligated to protect your information and use it only for the services they provide to us.

We may disclose your information if required by United Kingdom law, court orders, or government regulations. This includes compliance with GST regulations, business licensing requirements, and other legal obligations relevant to our operations in London and across United Kingdom.

Data Security and Protection

We take data security seriously and implement multiple layers of protection. Our systems employ encryption for sensitive data transmission, secure servers for storage, and regular security updates to guard against threats.

We also implement physical security measures for office systems and limit access to personal information to employees who need it for their work. Our team receives ongoing training on privacy practices and data handling.

Payment details are processed through secure, encrypted systems that comply with industry standards. We do not store full credit card numbers on our systems; this information is managed by certified payment processors specializing in secure financial transactions.

While we maintain strong security measures, no system is completely immune to risks. We continuously monitor and update our security practices to address evolving threats and uphold high protection standards.

Your Rights and Choices

You have several rights regarding your personal information. You can request access to the data we hold about you, ask us to correct inaccuracies, or request deletion where legally permissible.

• Access your personal information and understand how we use it
• Request corrections to inaccurate or outdated information
• Ask us to delete your personal information (subject to business and legal requirements)
• Opt out of marketing communications while continuing to receive service-related messages
• Request information about how your data has been shared
• File complaints about our privacy practices

We retain your information only as long as necessary for business purposes and legal obligations. Order records are kept for accounting and warranty purposes, while marketing preferences remain until you request removal.

When we no longer need your information, we securely delete or anonymize it. Some data may be kept longer if required by United Kingdom business laws or for legitimate business interests like preventing fraud.

Cookies and Website Technology

Our website uses cookies to enhance your browsing experience and help us understand how visitors use our site. Cookies are small files stored on your device that remember preferences and enable certain features.

Essential cookies are necessary for our site to function properly – they enable basic navigation and access to secure areas. These cookies do not collect personally identifiable information and are enabled automatically when you use our site.

We utilize analytics cookies to see how visitors interact with our site. This helps us identify popular content, optimize page performance, and improve user experience. This information is collected in aggregate form and does not identify individual users.

You can adjust cookie settings through your browser. However, disabling certain cookies may affect some features and your overall browsing experience.

Business Transfers and Changes

If Whistle Paper Trail undergoes major changes such as mergers, acquisitions, or asset sales, your personal information may be transferred as part of the transaction. We would inform you of such changes and ensure your data remains protected under privacy standards consistent with this policy.

In the unlikely event we cease operations, we would ensure your data is either securely transferred to a successor entity (with appropriate privacy protections) or securely deleted according to data protection best practices.

Updates to This Privacy Policy

We may periodically update this privacy policy to reflect changes in our practices, services, or legal requirements. When substantial changes occur, we will inform you by email or by posting a notice on our website before they take effect.

Minor updates for clarity or administrative tweaks may be made without prior notice. We encourage you to review this policy from time to time to stay informed about our privacy protections.

Children's Privacy

Our services are intended for businesses and adult users. We do not knowingly collect personal information from children under 18. If we learn we have inadvertently collected data from someone under 18, we will promptly delete it.

Parents or guardians who believe we may have collected information from their child can contact us using the information below, and we will address it promptly.

International Data Considerations

Our primary operations are based in United Kingdom, and we store and process data within United Kingdom jurisdiction. However, some service providers may process data internationally. When this occurs, we ensure appropriate safeguards are in place to protect your information according to applicable privacy laws.

We comply with United Kingdom data protection laws and regulations, including those related to business operations, financial transactions, and handling of customer data. Our practices align with evolving privacy standards in United Kingdom's digital economy.