This Privacy Notice is a source of information that explains how we, Wyse London Ltd., as a data controller processes your personal data using this website or other means, including any data you may provide through this website when you purchase a product or otherwise interact with us.
Processing is a broad term and includes (amongst other things) collecting, recording, storing, amending, reviewing, using and deleting personal data. Personal data relates to a living individual who can be identified from that data. Identification can be by the information alone or in conjunction with any other information in the data controller’s possession or likely to come into such possession. The data controller decides how your personal data is processed and for what purpose. The processing of personal data is governed by the General Data Protection Regulation (GDPR).
This website is not intended for children and we do not knowingly collect data relating to children.
INFORMATION ABOUT US
Wyse London Ltd. is a registered company in England & Wales (company no 10631618) ICO Registration Number: ZB175072, Representative: Emily White Emily.White@more2.com
Address The Shepherds Building, Charecroft Way, London W14 0EE Tel: + 44 (0) 20 8740 4324
THE PERSONAL INFORMATION WE COLLECT AND USE
Information collected by us
If you have registered with us, or ordered items from us, we will have your name, email address, telephone number, postal address and the method you chose to make your purchase with. We also collect information about how you use our services, such as types of content you view or engage with or the frequency and duration of your activities.
In addition, our servers, logs and other technologies automatically collect certain information (see below) to help us administer, protect and improve our services; analyse usage and improve users’ experience. We share personal information with others only as described in this policy, or when we believe that the law permits or requires it.
Information we collect automatically
Device information: We may also collect information about your device each time you use a site. If you have an account with us, we may collect information from or about the computers, phones or other devices where you log into our services. We may associate the information we collect from your different devices, which helps us provide consistent services across your devices. Here are some examples of the device information that we collect:
- Attributes such as the operating system and hardware version
• Browser type and IP address
Log information: We also collect log information when you use our website including:
- Details about how you’ve engaged with us
• Device information, such as web browser type and language
• Access times
• Pages viewed
• IP address
• Identifiers associated with cookies or other technologies that may uniquely identify your device or browser
• Pages you visit before or after navigating to our website
How we use your personal information
We use your information in several different ways. The table below sets this out in detail, showing what we do, and why we do it.
Category of personal data
Purpose of processing
Legal basis under GDPR
Name and contact details
Delivery purchase to you
Performance of contract, Legitimate interests
Send you a message by email or text, such as order updates
Performance of contract, Legitimate interests
Send you information by email or post about our new products or services
Fraud prevention and detection
Payment information (we don’t store this information)
Take payment and give refunds
Performance of a contract
Fraud prevention and detection
Contact history with the company, incl. in writing, by phone, email, social media
Provide customer service and support
Performance of a contract, Legitimate interests
Train our staff
Information about your phone or laptop, and how you use our website
To improve our website
Fraud prevention and detection
WHO WE SHARE YOUR PERSONAL INFORMATION WITH
We share your data with the following categories of companies as an essential part of being able to provide our services to you:
Companies that get your order to you, such as call centres, payment service providers, warehouses, order packers, and delivery companies
• Professional service providers, such as marketing agencies, advertising partners and website hosts who help us run our business
• Credit reference agencies, law enforcement and fraud prevention agencies, so we can help tackle fraud
• Companies approved by you, such as social media sites
If you have indicated that you are happy to receive catalogues from like-minded brands, we will also share your information with data co-operatives. We share your personal information with third party data cooperatives for their marketing and commercial purposes.
In the UK, this includes Epsilon Abacus, a company that manages the Abacus Alliance on behalf of UK retailers. In the US, this includes Wiland, Abacus, path2response and Oracle. The participating retailers are active in the clothing, collectables, food & wine, gardening, gadgets & entertainment, health & beauty, household goods, and home interiors categories – and share information on what their customers buy. These data co-operatives analyse this pooled information to help the retailers understand consumers’ wider buying patterns. From this information, retailers can tailor their communications, sending people suitable offers that should be of interest to them, based on what they like to buy.
Please note that Epsilon Abacus may transfer data outside the EEA. The transfer will take place in the presence of appropriate safeguards, including standard data protection clauses adopted by the EU Commission.
We will not share your personal information with any other third party, other than the categories listed above.
Customers have the rights and means to express their preference to not have their personal information shared with third parties. You can contact us to to not have your personal information shared with third parties by emailing us at firstname.lastname@example.org
In the UK, customers can register with the Mailing Preference Service https://www.mpsonline.org.uk/ , where they can stop all unsolicited mail.
IS YOUR PERSONAL DATA TRANSFERRED OUTSIDE THE EEA?
Personal data may be transferred outside the EEA however whenever this is the case, we will ensure a similar degree of protection is attached to it by ensuring at least one of the following safeguards is implemented:
- We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
• Where we use certain service providers, we may use specific countries approved by the European Commission which give personal data the same protection it has in Europe.
• Where we use service providers based in the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to personal data shared between Europe and the US.
- We have entered into the standard contractual clauses adequate protection of your data,
HOW LONG WILL YOUR PERSONAL DATA BE KEPT?
We will hold on to your information for as long is needed to be able to provide the service to you and maintain our company transactional records, or where you have given consent to contact you with offers and other marketing purposes, until you notify us otherwise.
If reasonably necessary or required to meet legal or regulatory requirements, resolve disputes, prevent fraud and abuse, or enforce our terms and conditions, we may also keep hold of some of your information as required, even after it is no longer needed to provide the service to you.
YOUR RIGHTS IN RELATION TO YOUR PERSONAL DATA
You have the following rights in relation to our processing of your personal data:
- Right to be informed
You have the right to be informed about how your personal data is being used - hopefully this Privacy Notice explains it all.
- Right to access
You have the right to access the personal data we hold on you which allows you to be aware of and verify the lawfulness of the processing.
- Right to rectification
You have the right to have personal data rectified if inaccurate, out of date or incomplete.
- Right to erasure
You have the right in certain circumstances to have personal data erased, also known as ‘the right to be forgotten’.
- Right to restrict processing
You have the right to request the restriction of your personal data in certain circumstances. When processing is restricted, we are permitted to store the personal data, but not use it.
- Right to object
You have the right to object to any personal data processing which is based on legitimate interests of the controller or public interest unless there are compelling legitimate grounds for the processing which are sufficient to override your interests, rights and freedoms or the processing is for the establishment, exercise or defence of legal claims.
- Right to data portability
You have the right to request that, in the case of automated data only, where possible we transfer elements of your personal data to another data controller.
- Right to automated decision making and profiling
You have the right not to be subjected to decisions based solely on automated processing.
For further information on each of these rights, including circumstances in which they apply, please refer to the Information Commissioner’s Office (ICO) website www.ico.org.uk
If you wish to exercise any of the above rights, you can make a request to us verbally, by email or in writing. You will be asked for information to identify yourself showing your name and address. The information will be provided by us within one month of request. We may extend the period of compliance by a further two months where requests are complex or numerous. If this is the case, we will inform you within one month of receipt of request and explain why the extension is necessary.
You have the right to lodge a complaint with the Information Commissioner’s Office (ICO) ICO Representative: Emily.White@more2.com if you feel any part of the processing of your personal data has not been handled in accordance with the GDPR.
KEEPING YOUR PERSONAL DATA SECURE
We take your privacy very seriously and comply with our obligations under the GDPR by keeping personal data up to date; by storing and destroying it securely; by not collecting or retaining excessive amounts of data; by protecting personal data from loss, misuse, unauthorised access and disclosure and by ensuring that appropriate security measures are in place to protect personal data.
We limit access to your personal data to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality. We also have procedures in place to deal with any suspected data security breach where we are legally required to do so.
THIRD PARTY SERVICES
In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us.
However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers.
In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located.
As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act.
When we are planning our lookbooks, our third party marketing agencies look for potential customers who may be interested in Wyse. In the UK, this personal data comes from Experian and Epsilon Abacus via our agency more2.
In the US we work with with Ballard Direct who coordinate with third parties who manage marketing databases on behalf of retailers. These third parties include Abacus, path2response, Wiland and Oracle. These companies analyse information to identify people and send suitable offers that should be of interest to them, based on what they like to buy.
In order to be able to offer you Klarna’s payment options, we will pass to Klarna certain aspects of your personal information, such as contact and order details, in order for Klarna to assess whether you qualify for their payment options and to tailor the payment options for you.
We may process your personal information for our legitimate business
‘Legitimate Interests’ means the interests of our company in conducting
and managing our business to enable us to give you the best
service/products and the best and most secure experience. It can and
does also apply to processing which is in your interests too.
Processing for our legitimate interests may include processing for the
purposes of (i) fraud prevention and compliance; (ii) certain direct
marketing and promotional activities; (iii) the provision and operation of
referral marketing programmes; (iv) network and information systems
security; (v) data analytics; (vi) enhancing, modifying or improving our
service; (vii) identifying usage trends; or (viii) determining the effectiveness
of promotional campaigns or advertising.
When we process your personal information for our legitimate interests, we
make sure to consider and balance any potential impact on you (both
positive and negative), and your rights under data protection laws. Our
legitimate business interests do not automatically override your interests -
we will not use your personal data for activities where our interests are
overridden by the impact on you (unless we have your consent or are
otherwise required or permitted by law).
You have the right to object to this processing if you wish and if you wish
to do so please contact email@example.com.
|DATA PROCESSOR||FUNCTION||PROCESSING ACTIVITIES|
Data Protection Officer:
|Processing customer email addresses and
certain order data for the purposes of:
• Enrolling customers onto our refer-afriend
• Monitoring the programme and
safeguarding against gaming or
fraudulent use of the programme;
• Communicating with customers in
connection with operation of the
programme and delivery of rewards;
• Reporting to [Controller] on the
performance of the programme
Cookies – MentionMe a third party service provider will now place functional cookies if you interact with our refer-a-friend programme. For more details on the cookies and to view the full list please click here
Rakuten Advertising Affiliate Network
Targeting cookies used by
Rakuten Advertising Affiliate
Network. Rakuten Advertising
UPDATING THIS PRIVACY NOTICE
We will regularly review and, where necessary, update the privacy information in this Privacy Notice. Last reviewed 29/06/22.