To communicate with you and improve our products and services, which includes:
- managing our relationship with you;
- investigating and responding to enquiries or complaints;
- recording customer calls to our Customer Care and Consumer Care teams for quality and training purposes
- making suggestions to you about various products and services that may be of interest to you;
- sending you emails, newsletters or alerts;
- asking you to complete surveys about how we can improve the products or services we offer you;
- asking you for information on how we can improve our websites or our Engagements with you; and
- ·notifying you about changes to our terms or privacy policy.
Note: See Annex 2 for more information on our marketing and profiling activities.
|
- Identity
- Contact
- Call Recording
- Profile
- Technical and Usage
- Marketing and Communications
|
Performance of a contract with you.
Necessary for our legitimate interests (for running, managing and protecting our business).
To perform our legal obligations.
Where required by privacy laws, consent.
|
Where you have contacted us in connection with an enquiry or complaint, we will retain your data for 3 years after the enquiry or complaint has been resolved.
Recorded calls will be retained for 400 days from the time of the relevant call.
Survey feedback will be retained until it has fulfilled its intended purpose (Note: please see section 9 to learn more about the things we consider when determining how long we will retain your personal data).
If you no longer wish to receive marketing communications from us, you can unsubscribe at any time. We will remove your email address once you have opted-out, unless this is also used and retained for other purposes listed in this privacy policy.
|
To administer our business and perform contracts with you – this includes:
- managing payments, fees and charges and delivering the requested product / service;
- assessing and accepting customers, suppliers and other business partners who wish to do business with us, as well as entering into appropriate agreements with said customers, suppliers and business partners;
- completing customer account opening procedures;
- processing your application to join and registering you as a member of our Star Retailer scheme; and
using the information that you have provided for the purposes of verifying your identity and carrying out anti money laundering and credit checks against you (Note: this may include use of a credit reference agency or other third parties).
|
- Identity
- Contact
- Financial and Transactional
|
Necessary for our legitimate interest (to ensure we are doing business with creditworthy and legitimate entities, which requires analysis of certain individuals connected with such entities).
Performance of a Contract with you.
To perform our legal obligations.
|
After the duration of your contract with us has expired, our online sales records will be retained by us for 7 years or longer if required for tax or corporate bookkeeping purposes.
The information you provided for the purposes of verifying your identity and carrying out anti money laundering and credit checks against you is retained for 3 years after termination of the relationship.
Our retention period for data in connection with contracts and performance of the business is 6 years after termination of the relationship.
We retain personal data processed in connection with our Star Retailer Scheme for 12 months after membership to the scheme ends.
|
To maintain, improve and optimise our website and to keep it relevant - this includes data analytics and solving performance issues, including troubleshooting, testing, system maintenance, support and reporting and hosting of data in order to improve the availability and functionality of our website.
|
- Identity
- Contact
- Profile
- Technical and Usage
|
Necessary for our legitimate interests to maintain the relevance of our brand, products and reputation run our business, operate administration and IT services, protect network security and to prevent fraud).
Necessary to comply with a legal obligation.
|
We retain information relating to the performance of our website for 2 years.
The cookie policy on the relevant website you are viewing provides more information on specific cookie retention periods.
|
To deter crime and ensure the personal safety and security of visitors and staff through the use of CCTV at our sites. |
|
Necessary for our legitimate interests (to protect the safety and security of visitors and staff at our sites and assist in criminal investigations). |
Video footage will be retained for a limited time before it is automatically deleted. The retention of CCTV is determined by the need to investigate health and safety incidents or criminal incidents, including in connection with any legal proceedings or requests from law enforcement authorities, loss adjusters and insurers.
|
To maintain, improve and optimise our website and to keep it relevant - this includes data analytics and solving performance issues, including troubleshooting, testing, system maintenance, support and reporting and hosting of data in order to improve the availability and functionality of our website.
|
- Identity
- Contact
- Profile
- Technical and Usage
|
Necessary for our legitimate interests to maintain the relevance of our brand, products and reputation run our business, operate administration and IT services, protect network security and to prevent fraud).
Necessary to comply with a legal obligation.
|
We retain information relating to the performance of our website for 2 years.
The cookie policy on the relevant website you are viewing provides more information on specific cookie retention periods.
|
To enable you to partake in promotions and for prize fulfilment purposes including:
- Prize with purchase promotions;
- Loyalty and reward schemes; and
- Sweepstakes, scratch-card and raffle style promotions.
|
|
Performance of a contract with you.
|
6 months following prize fulfilment (in certain cases the retention period may be longer due to the nature of the prize e.g. flight tickets – in such cases the personal data will be deleted when it is no longer required).
|
To share photo and/or video footage captured at public or private events in external publications, on social media, with marketing agencies and/or internally.
|
|
Necessary for our legitimate interest (to promote and grow our business).
Where required by privacy laws, consent.
|
Until an opt-out / objection is received or consent is withdrawn as applicable.
|
To conduct market research, we may reach out to specific customers and request an insight into developing new products or ways to improve our current products or services – we will use this information to ensure our marketing is relevant.
Note: See Annex 2 for more information on our marketing and profiling activities.
|
- Profile
- Technical and Usage
|
Necessary for our legitimate interests (to maintain the relevance of our brand and reputation and to grow our business by ensuring we understand the market in which we operate).
Contractual necessity, where you are asked to sign up to terms as part of the market research product.
|
We will retain your data until an opt-out / objection is received.
The cookie policy on the relevant website you are viewing provides more information on specific cookie retention periods.
|
To conduct data analytics to improve our marketing strategies, customer relationships and experiences, so that we can issue relevant marketing content and offers and analyse email engagement. This includes:
- identifying what subjects are of most interest to you;
- using tracking technologies to understand how you respond to our emails (for example, whether you open the email, click-through links and/or unsubscribe); and
- assessing the success of our marketing campaigns and communications.
Note: See Annex 2 for more information on our marketing and profiling activities.
|
· Identity
· Profile
· Marketing and Communications
· Technical and Usage
· Inferred
· Location
|
Necessary for our legitimate interests (to promote and grow our business).
Where required by privacy laws, consent.
|
Data will be processed until an opt-out / objection is received or consent is withdrawn as applicable.
The cookie policy on the relevant website you are viewing provides more information on specific cookie retention periods.
|
To protect our business through compliance with contractual or regulatory obligations, prevention / detection of crime and satisfaction of our legal obligations / defence of our legal rights, including:
- recording calls placed with our Customer Care and Consumer Care teams;
- complying with requests (including informal investigations) or demands of regulators and other bodies having jurisdiction over us;
- investigating security incidents on our website; detecting and preventing spam, fraudulent activity, network exploits and abuse on our websites; and
- securing our website against fraud.
|
· Identity
· Contact
· Technical and Usage
|
Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of a business reorganisation or group restructuring exercise).
Necessary to comply with a legal obligation.
|
Where you have contacted us in connection with an enquiry or complaint, we will retain your data for 3 years after the enquiry or complaint has been resolved.
The cookie policy on the relevant website you are viewing provides more information on specific cookie retention periods.
|