Security and privacy
Private data are private with us
We are fully focused on keeping your private data really private. The last thing we and you want is for others to take your personal data. We also never sell your data to third parties.
However, leaving behind personal information is unavoidable if you want to order something on our website, as well as for optimizing our services. We comprehensively describe below which data we use.
Private data are securely locked
Firstly, we store all the information that you give to us securely under lock and key. We do that with one of the most modern techniques, the Secure Socket Layer (SSL).
For this we make use of a secured internet connection as soon as you start the payment for your order. Then others do not get the chance to secretly take a peek. Via SSL, your transaction information will be sent over the internet in encrypted form. To pay with SSL, you do not need any special software. You can recognize a secure SSL connection from the “green lock” (see below) in your browser.
Someone who has no business looking at your information cannot access it. We never use your information to show you different prices than other customers. All our customers see the same prices for our articles and products. We also never share your information with other parties.
There are some parties to whom we sometimes have to give your information in order to be able to complete the order and make a delivery. In those cases, we require that the third party handle your information just as carefully as we do and will only use the information for the purpose for which it has been given. Should you have the feeling that this is not the case, let us know via our customer service.
The safety of your details during the order process is of the utmost importance. Our payment platform, Adyen, is a leading e-commerce platform operating worldwide and serving companies like Booking.com, Spotify, Airbnb, Netflix and others. The company keeps our and your payments safe with data encryption, PCI DSS, 3-D Secure and advanced protection against fraud.
'Legal grounds' for the use of your data
The EU privacy legislation (GDPR) requires that we indicate which 'legal grounds' we have for using your data. First of all, we need your data because of the contractual agreements between you and our website for, for example, a purchase of a product or your right to a guarantee. This is the case for:
- • Ordering
- • Delivery
- • Returns
- • Contacts with our Customer service
In addition, we can use your data for a 'legitimate interest'. This means that we want to provide our customers with an optimal, personal service. We always think about your privacy in doing this. This applies for:
- • Visiting our website
- • Contact our Customer service
- • Personal advice
- • Account
- • Reviews & customer satisfaction survey
- • Newsletter
We may also have a legal obligation to use your data, for example when we suspect fraud. And sometimes you have given us permission to use your data, such as when you sign up for the newsletter.
Who can access your data?
First of all, we never sell your data to third parties.
We only pass your data on to other parties if this is really necessary for our services, i.e. delivery partners, payment partners, IT service providers and parties that collect our reviews. Our delivery partner must be able to deliver your order to the correct address. Parties such as advertising agencies come into the picture when we show you targeted advertisements, for example based on your interest in certain products. In suspicious situations, we are obliged to share client data with government agencies.
Where are your data stored?
We store your data with the most prominent and reliable hosting parties. We always utilize strict security measures. In principle, your data are always stored within the European Union. In the exceptional case that customer data is transferred to countries outside the European Union, we ensure that your privacy is protected in an appropriate manner. In practice, these are exclusively US parties such as Google and Mail Chimp, who have registered under the Privacy Shield, which offers sufficient protection.
How long do we store your data?
We do not store or use your data for longer than necessary. After that, we delete all your data. Or we use your data anonymously for internal analyses and reports.
In practice, we use the following terms, after which we delete your data:
- • The tax authorities require us to keep our administration containing your invoice, payment and order information for seven years. After that, we only use anonymous data for internal reports.
- • The e-mails that you send to us and that you receive from us are not stored for more than 7 years.
- • If you have registered for the newsletter, we will keep that permission for 7 years.
- • We delete inactive client accounts after seven years. After that, we only use anonymous data for internal reports.
- • We retain data that we use to prevent fraud for a very long time.
What are your rights?
You remain in charge of your data. Do you want to have free access to your personal data and to receive a copy? Or would you like to change, delete or restrict your data? No problem. Let us know by e-mail.
Do you have questions or complaints?
For questions or complaints about your data and the protection of your privacy, you can contact the Data Protection Officer for our website: firstname.lastname@example.org .
If you are not satisfied with how our website handles your privacy, you can contact the Dutch privacy authority.
Who is responsible for your data?
Charles Nijman Fireplace Antiques
3958 CS Amerongen