We, at the Moonraker, care about and respect your privacy. We’d like to explain what personal information we have about you and how we use it, as well as letting you know about our practices with regard to your privacy so that you know exactly what is happening with your data and what we are doing to keep it safe. You may also know us as the Lamb and Lion, or one of our other trading divisions or group companies from time to time. Where we refer to “we” or “us” in this policy, we mean the Moonraker or any company or division in our group. If you have any questions about this policy or your privacy, you can find us or get in touch at the Moonraker 272 - 724 Station road, Westcliff, Essex, SS0 7SD. We have appointed a Data Protection Officer for the Moonraker who can be contacted via firstname.lastname@example.org
We are registered in England & Wales with Company No. 09880400.
What information do we collect?
We collect a wide variety of information and the types we collect from you will vary dependent on whether you’re an individual customer, another business, ordering a product or a service or participating in a promotion or competition (amongst other things). Here are the types of information we may collect from time to time along with sources which tell you where we may receive the data from. Information we may gain directly from you:
Information we may collect about you:
Information we may receive from other external third parties:
We strive to collect the minimum amount of data necessary in order to perform the request for a product or service being made and so in some cases, failure to enter the requested information may result in us not being able to provide the product or service.
When do we collect your Information?
We may collect your information in a number of ways. Here is an overview of the circumstances in which data is gathered.
Why do we need your personal data?
There are a number of reasons we may request or collect your information. A summary of these can be found below:
We may use your details to make an informed decision on products or services we think you may be interested in. This is marketing and we will always ask for your consent before we do this where we intend to send you materials via e-mail or text. We will also always ask your consent before we pass your details to any external third parties so that they can market to you too. We understand that you may change your mind about receiving these types of emails or texts so you can ask us to stop at any time. Just follow the unsubscribe link on any marketing communication we send to you and we will promptly remove you from our database. This will only apply to data you have supplied in accordance with signing up to marketing services. Data provided for other purposes will remain in our systems in line with this policy.
Profiling and targeted marketing
As a modern business, we utilize services that use technology in order to supply you with the best and most suitable marketing communications we can offer. This includes advertisements on third party platforms such as Facebook. This is done by using a built in Facebook Business feature called ‘Custom Audiences’. We share your email address with our third party who then utilize the feature, looking at demographics and other traits like interests taken from information that you have uploaded onto Facebook in order to bring our advertisements to the people who might be interested in them most. We don’t believe that it will have a significant negative impact on you and in fact think you’d appreciate our more suitable ads, but, you can let us know if you don’t want to have your data used in this way and we’d be happy to make sure that we stop. You are our priority! Contact us via any of the details at the top of the page and we’ll make the required changes to our records. You can change your Facebook settings if you would like to, by visiting the quick help menu where there are a number of privacy options that you can change to meet your preferences. To visit the privacy options for your Facebook account, click on the question mark icon on your home page and click privacy shortcuts, which will take you to a privacy options management page: Other social media services will have similar functions which should be easy to find on their webpages. To opt out of any online targeted marketing specifically please contact us via email@example.com
On what basis do we process your data?
The lawful basis for processing varies depending on the processing activity. We rely on a combination of legitimate interest, consent, legal obligation and contract in order to process your personal data (a definition of each is provided within the glossary). Below we have defined the ways in which we may process your personal data and what the legal basis is for doing so, whilst outlining our legitimate interests where necessary. We may process your personal data based on multiple lawful basis where on occasion, circumstances may dictate this is necessary. Please contact us if you require further details on any of the points below where multiple basis have been specified. Generally we consider:
What are we trying to achieve? What personal Data is involved? Our lawful basis for processing.
To respond to your feedback, enquiry, comment or complaint Identity Contact Necessary for our legitimate interests (to ensure resolution to your reason for contacting us so that business can continue in a manner you’d expect)To fulfil your order for products or services, including where you sign up for an online account with us Identity Contact Financial Transactional Technical Performance of Contract to take steps to or make you a party to a business agreement (such as a Tenant, Retailer, Lessee, Free Trade Customer or other similar arrangement) Identity Contact Financial Transactional Marketing preferences Performance of Contract Necessary for our legitimate interests (to conduct initial or ongoing credit reference checks, to offer you beneficial information (particularly on our current promotions), to recover outstanding monies from you)To administrate a competition, survey, or review that you are party to (and to notify you of any such changes that may affect you) Identity Contact Performance of contract Legal Obligation (competitions)Necessary for our legitimate interests (to action the responses to surveys or reviews to improve our products and services)To conduct troubleshooting, data analysis, testing, research, system maintenance, support, reporting and hosting of data(a) Identity(b) Contact(c) Technical Necessary for our legitimate interests (to run our business in the best possible manner, providing administration and IT services, network security, to prevent fraud and in the context of a business reorganization or group restructuring exercise)Legal obligation To administrate a job application Identity Contact Profile Performance of Contract Legal Obligation. To fulfil marketing communications via email, SMS or in certain circumstances telephone Identity Contact Profile Marketing and Communications Consent Performance of Contract/Necessary for our legitimate interests (telephone – to provide marketing services to other businesses so that we can communicate our current offers and promotions. To improve our relationship with you and ultimately grow our business)To deliver relevant website content and advertisements (including on social media websites) to you and analyze feedback so that we can measure the effectiveness of the materials. To also suggest products and services we believe you will be interested in Identity Contact Profile Usage Marketing and Communications Technical Necessary for our legitimate interests (to show how customers interact with our advertisements, use our products/services, so that we can improve the advertisements, our relationship with you, products and services, ultimately to improve and grow our business)We do not intend our marketing materials to be received by anybody under the age of 18 due to the nature of our business. Your personal data may be used to determine whether you meet this criteria.
Who might receive a copy of your personal data?
Throughout the course of activities it may be necessary for an external third party to receive a copy of your personal data. All of our external third parties are thoroughly vetted and are subject to contractual requirements and assessment of security standards in order to become an approved supplier. They are only permitted to process your personal data for the specified purpose and not for their own benefit. Your data may be shared with any member of our group or trading divisions but external third parties may include any of those set out in the glossary, as relative to your circumstances.
Where is your data stored?
Your data may be transferred to and stored at a destination outside the European Economic Area (“EEA”) where we use external third parties. It may also be processed by staff operating outside of the EEA who work for us or for one of our suppliers. These staff may be engaged in the fulfillment of your order, the processing of your payment details and the provision of support services (amongst other things).We will only transfer personal data to countries where the GDPR applies or that have been deemed adequate by the ICO. Alternatively a transfer may occur where we have adequate contracts approved by the European Commission which protects personal data in the same way that it is protected in Europe. We may also transfer to external third parties where they subscribe to the EU-US Privacy Shield. We make a thorough check and have strict requirements (in line with the law) in order to approve this type of processing in consideration of our suppliers. Any information provided to us is stored in our secure servers and any payment transaction data is encrypted using SSL technology. Where you have a password which enables access to certain parts of the website you are responsible for keeping the password confidential. Please do not share your password with anyone. Unfortunately the transfer of information over the internet is not completely secure. We do our best to protect your personal data but we cannot guarantee the security of your data when it is transmitted to our site. Once we have received your information we will ensure that we strictly monitor procedures and security measures to keep it safe. Our site may contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies which we do not accept any responsibility or liability for. Please check these policies before you submit any personal data to these websites. If you would like specific information about where your data is stored in relation to a particular usage of your data, please contact us.
How long will we keep your data?
We will only hold on to your personal data for as long as we need it to fulfill the purposes we collected it for. This includes considering the amount, nature and sensitivity of the data and the risk of any potential harm mishandling of this data may cause. We also consider if and when we can achieve the purposes we collected it for or if we can complete this without the personal data. We also consider legal, tax and reporting requirements that impose limitations on how long we hold the data for. It may be kept for a longer period of time if we reasonably predict there will be an element of legal action within our relationship with you. Please contact us if you would like to find out how long and why we keep your personal data.
What are your rights?
Upon occasion, you may be entitled to certain rights under data protection law. These are laid out below but a full breakdown of their meaning is available in the glossary. You can enact any of these rights by contacting us via firstname.lastname@example.org
There is no fee applicable to any of the above, however we may charge a fee or refuse your request if it is unfounded, excessive or repetitive. We aim to respond to valid requests within one calendar month, however in certain circumstances it could take us longer. This may be because you have submitted a number of requests or your request is particularly complex. We will keep you updated with your request along the way if this is the case. We may need to verify your identity and ensure your rights to the personal data we hold on occasion. We will always make sure our request is reasonable and in line with the information or right you are requesting. This ensures we are not sending the data to somebody who is not entitled to see it or acting upon a rights request that has not been legitimately made by the person who is entitled to it.
We regularly review our policy so that we can ensure it is accurate and informative. Any changes will be made on this page. Please check back frequently for updates. It is also important that any personal data we hold about you is up to date and accurate. Please update us if any of the details we hold about you change so that we can ensure our records reflect these changes.
Questions, comments and requests regarding this policy are welcomed and should be directed to any of the contact details at the top of this page. We have appointed a Data Protection Officer for the Moonraker who can be contacted via email@example.com
Here are the types of cookies our websites use and some more details about what they're used for: Cookie NamePurposeExpiration PolicyASP.NET_SessionIdEssential
This cookie is used to maintain temporary information from one page to another and to enable account functions Expires at the end of the current browser session__utma __utmb __utmc __utmzNon-essential. Collect analytical data about how visitors use our site - so that we can improve the website's experience. The Google Analytics software is described here You can opt out of being tracked by Google Analytics across all websites here_One _One_user_last_wsNon-essential Collect analytical data about how visitors use our site - so that we can improve and personalize the website experience. No personal data is used or stored in these cookies.
Some terms we use in this policy may be difficult to understand so we’ve provided a breakdown below to help you clarify what we mean. LAWFUL BASIS Legitimate Interest means the interest of our business in managing and carrying out our business functions so that we can give you the highest quality services/products and the best and most secure experience. We consider and balance any potential impact on you (both positive and negative) and your rights before we process your personal data for our legitimate interests. We will not use your personal data where our interests are overridden by your fundamental rights (unless we have your consent or are required or permitted to by law). If you need further detail on how we assess our legitimate interests against any potential impact on you in relation to certain circumstances, please contact us. Performance of Contract means processing your data where you are a party to a contract and we need your personal data in order to carry out that contract or to take steps at your request if you are thinking of entering into a contract with us. Legal obligation means processing your personal data where we have to comply with a law that applies to us. Consent means you have specifically let us know that we can process your data for the purpose already given to you. EXTERNAL THIRD PARTIES
YOUR LEGAL RIGHTS This is a breakdown of what each of your rights mean and the results you can expect when you enact them.