Information We Collect

When you reach out to us for corporate flower arrangements or gift services, we gather details you willingly share. This includes your name, company name, email address, phone number, delivery addresses, and any specific floral requirements. Payment details are collected during checkout, though they are processed securely via our payment partners.

For our corporate clients, we may also collect additional business data such as company registration details, preferred delivery timelines, and budget considerations to enable tailored service.

Our site automatically logs certain technical information when you visit. This includes your IP address, browser type, device details, and navigation paths through our site. We use this data to enhance site performance and to understand how clients discover our services.

How We Use Your Information

We primarily use your personal information to fulfill flower orders and deliver excellent service. This includes processing orders, coordinating deliveries, sending confirmations, and following up to ensure satisfaction.

• Processing and fulfilling your flower orders and gift arrangements
• Communicating about order status and delivery timelines
• Providing customer support and responding to inquiries
• Enhancing our services based on your feedback and preferences
• Sending relevant updates about our offerings (with your consent)
• Maintaining records for business and legal compliance purposes

We also utilize aggregated, non-personal information to study market trends and refine our operations. For example, we might analyze which arrangement types are most popular in different seasons to better plan inventory.

With your explicit consent, we may share information about seasonal offerings, special promotions, or new services that could interest your business. You can opt out of these communications at any time by using the unsubscribe link in our emails or by contacting us directly.

Information Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. Your details stay within our business ecosystem and are shared only when necessary to provide our services or to comply with legal obligations.

We collaborate with trusted service providers who assist in delivering our services. This includes payment processors, delivery partners, and flower suppliers. These partners are contractually bound to protect your information and use it solely for the specific services they provide.

We may disclose your information if required by United Kingdom law, court orders, or government regulations. This includes compliance with GST regulations, business licensing requirements, and other legal obligations applicable to our operations in London and across United Kingdom.

Data Security and Protection

We take data security seriously and implement multiple layers of protection. Our systems use encryption for transmitting sensitive data, secure servers for storage, and regular security updates to defend against threats.

Physical security measures protect our office systems, and access to personal information is limited to employees who need it for their work. Our team receives ongoing privacy and data handling training.

Payment information is processed through secure, encrypted systems that meet industry standards. We do not store full credit card numbers on our systems—the information is handled by certified payment processors specializing in secure transactions.

While we uphold strong security practices, no system is completely risk-free. We continuously monitor and update our security measures to address evolving threats and maintain high protection standards.

Your Rights and Choices

You have several rights regarding your personal data. You can request to view what we hold, ask for corrections to inaccurate information, or request deletion where legally permissible.

• Access your personal information and understand how we use it
• Request corrections to inaccurate or outdated information
• Ask us to delete your personal information (subject to business and legal requirements)
• Opt out of marketing communications while continuing to receive service-related messages
• Request information about how your data has been shared
• File complaints about our privacy practices

We retain your information only as long as needed for business purposes and legal requirements. Order records are typically kept for accounting and warranty purposes, while marketing preferences remain until you request removal.

When we no longer require your data, we securely delete or anonymize it. Some information may be retained longer if required by United Kingdom business laws or for legitimate business interests such as fraud prevention.

Cookies and Website Technology

Our site uses cookies to enhance your browsing experience and to understand how visitors use our site. Cookies are small files stored on your device that remember preferences and enable certain website features.

Essential cookies are necessary for proper site function – they enable basic features like navigation and access to secure areas. These cookies do not collect personally identifiable information and are enabled automatically when you use our site.

We employ analytics cookies to learn how visitors interact with our site. This helps us identify popular content, optimize performance, and improve the user experience. This data is aggregated and does not identify individuals.

You can manage cookie preferences through your browser settings. Note that disabling certain cookies may affect some site features and your overall browsing experience.

Business Transfers and Changes

If Crimson River Platform undergoes significant business changes such as mergers, acquisitions, or asset sales, your personal data may be part of the transaction. We would inform you of such changes and ensure your information remains protected under privacy standards consistent with this policy.

In the unlikely event that we cease operations, we would ensure that your personal data is either securely transferred to a successor business (with appropriate privacy protections) or securely deleted in line with data protection best practices.

Updates to This Privacy Policy

We may periodically update this privacy policy to reflect changes in our practices, services, or legal requirements. When substantial changes occur, we will notify you by email or via a notice on our website before they take effect.

Minor updates for clarity or administrative adjustments may be made without prior notice. We encourage you to review this policy from time to time to stay informed about how we safeguard your privacy.

Children's Privacy

Our services are designed for businesses and adult consumers. We do not knowingly collect personal information from individuals under 18. If we learn that we have inadvertently collected data from someone under 18, we will promptly remove that information from our systems.

Parents or guardians who believe we may have collected data from their child can contact us using the information below, and we will address the matter promptly.

International Data Considerations

Our primary operations are based in United Kingdom, and data is stored and processed within the United Kingdom jurisdiction. However, some service providers may process data internationally. When this occurs, we ensure appropriate safeguards are in place to protect your information according to applicable privacy laws.

We comply with United Kingdom data protection laws and regulations, including those related to business operations, financial transactions, and customer data handling. Our practices align with evolving privacy standards in United Kingdom's digital economy.