PRIVACY POLICY

 

 

1. OVERVIEW
2. DATA PROTECTION CONTROLLER
3. DATA WE COLLECT
4. PROMOTIONAL COMMUNICATIONS
5. PERSONALISING AND IMPROVING OUR SERVICE
6. SHARING DATA WITH OTHERS
7. TRANSFER OF DATA TO THE US
8. COMPETITIONS
9. WEBSITE DATA
10. COOKIES
11. WEBSITE SECURITY
12. STORAGE PERIOD
13. YOUR RIGHTS
14. UPDATE OF THE PRIVACY POLICY

 

 

1. OVERVIEW


Like all other online retailers, Long Tall Sally collects personal information, so we can get to know you and make your shopping experience better.

Your data is valuable, so we promise we’ll protect it at all times. We also promise we’ll be completely transparent about the information we collect and how we’ll use it. We have therefore developed this privacy policy to inform you of the data we collect, what we do with your information, what we do to keep it secure as well as the rights and choices you have over your personal information.

Throughout this document we refer to Data Protection Legislation which means the Data Protection Act 2018 which incorporates the General Data Protection Regulation (GDPR), the Privacy and Electronic Communications (EC Directive) Regulations 2003 and any legislation implemented in connection with the General Data Protection Regulation which is the governing legislation that regulates data protection across the EEA. This includes any replacement legislation coming into effect from time to time.

Prefer to download and print? Just click this [PDF].


2. DATA PROTECTION CONTROLLER


It only seems fair, that as we have your data, you have ours too. Long Tall Sally Ltd Is the data controller. We manage the data we collection you and can be contacted by:


Email at :

[email protected]

Write to us :

Data Protection Officer
Long Tall Sally
The Lansdowne Building
2 Lansdowne Road
Croydon
CR9 2ER

Call us :

UK Freephone 0800 107 8826

From outside the UK +44 207 1111 595

Our Data Protection officer is:

DPO Centre
The DPO Centre Ltd
50 Liverpool Street
London
EC2M 7PR

Call us :

0203 797 1289

Email at :

[email protected]

3. DATA WE COLLECT


When you shop at longtallsally.com, by phone, catalogue or in store, we collect data so we can send the right order to the right person at the right address. This type of information is necessary to fulfil our contract with you.

This data includes:

  • • the items you ordered including size, colour, price .
  • • your delivery and billing address
  • • your contact details (telephone numbers are optional but handy if the courier can’t find you or if there’s a query with your order)
  • • your payment details

We use the following established companies to safely and securely process payments. Further details on their privacy policies may be found by clicking on the link beneath their names:


Adyen Privacy Policy
PayPal Privacy Policy
iDeal Privacy Policy
Arvato Privacy Policy
Klarna Privacy Policy

We also collect some optional information like your birthday, clothes and shoe size to provide you with a more personal service.


4. PROMOTIONAL COMMUNICATIONS


We want to keep you up to date with all things tall, so unless you tell us otherwise, we’ll send you catalogues, special offers and promotions by post and email.

Like all other retailers, we track email engagement using specific metrics, e.g. open rate, click through rate and links clicked. This data is “pseudonymised”. In plain English, that means it’s recorded separately to your personal data.

Under data protection law, it’s considered legitimate business interest for us to use customers’ data for direct marketing, but we appreciate not everyone wants that, so there are different ways to unsubscribe:

  • • update your customer preferences in My Account
  • • click the Unsubscribe link in our promotional emails
  • • email us at [email protected] with your name, address and account number.

5. PERSONALISING AND IMPROVING OUR SERVICE


In addition to sending you promotional communication, we rely on legitimate interest to process your personal data to carry out market research, improving our product range and services, and learning more about your likes and dislikes so we can let you know about products you will be interested in.


6. SHARING DATA WITH OTHERS


The data we’ve collected will only be passed on if it’s for legal purposes, our legitimate interest, or if you’ve expressly consented to it.

To make certain services available to you, we may need to share your personal data with some of our partners. These include IT, delivery and marketing service providers. These third parties are carefully selected and contractually bound to put in place the proper measures to protect customers’ data. Rest assured we monitor them regularly.

These partners do change from time to time.


JivoChat

JivoChat are our customer service live chat programme. To unsubscribe/delete your data, please see the JivoSite Policy here.


Trustpilot

We partner with Trustpilot which gathers reviews to help customers make informed shopping decisions. If you don’t want Trustpilot to contact you, email them at [email protected]. You can read TrustPilot’s Privacy Policy here.


Facebook Custom Audiences

We may pass Facebook an identifier that is created by converting your email address into a jumble of letters and numbers that are unique to you but that cannot be unscrambled to reveal your identifiable details. We use this identifier to link our advertising to your Facebook profile so that we can advertise the most relevant messages to you on Facebook. You can check Facebook’s Privacy Policy here.


7. TRANSFER OF DATA TO THE US


In the course of providing their services, some companies may transfer personal data to the US. In order to do so, they are certified to the EU-US Privacy Shield, which is an agreement that commits the US companies to maintaining high standards of personal data protection.

The following companies may send personal data to the US, and are all subscribed to the Privacy Shield (on which you may find more information here):


  • • Microsoft
  • • MotionPoint
  • • Facebook
  • • New Relic
  • • Google

8. COMPETITIONS


From time to time we run competitions and collect your contact information to register your entry and so we can inform you if you win. Unless you have provided these details elsewhere for other purposes, we will only use this information for the competition, and once it is closed will erase your personal data, unless you give us your consent to use your data to for promotional communications.


9. WEBSITE DATA


Every time you visit our website, the data your browser transmits is collected. Data includes:


  • • The IP address of the device
  • • The date and time you visited
  • • The website address you came from
  • • The website address you visited
  • • Details of the browser and operating system
  • • Online identifiers (e.g. device identifiers, session IDs)

Access data is anonymous and tells us nothing about you as a person. We use it to track usage patterns e.g. mobile versus desktop visits, before archiving after 30 days.


10. COOKIES


What are cookies?

When the internet was first created, websites were stateless. That is, the website didn't know when someone visited a website whether they had just arrived at the site or were browsing from another page on the site. Obviously, this made it pretty impossible for functionality such as baskets and checkouts. A solution known as cookies was developed. A cookie is a very small text file which a website can save onto your computer and which is then sent back to the website each time you visit it to enable the website to tailor it's services and provide functionality such as shopping baskets and checkouts. Cookies can be set to expire after the session (when you close your browser) or at a predetermined date in the future.

For more general information about cookies and details on how to control how your browser handles all cookies please visit here.

Why are we explaining all this?

The European Union passed the 'Privacy and Electronic Communications Directive' which states that websites must provide clear information about how they use cookies and give users means to not have cookies saved on their computer unless they are strictly necessary for the functioning of the website. We strongly believe that the use of cookies is very important for making Long Tall Sally the best website for tall women across the world and are happy to give full disclosure here of exactly how cookies are used on our websites. There is also information below detailing how to opt-out of third-party tracking on our site in line with the Information Commissioner's Office recommendations.

So how do we use cookies on longtallsally.com?

Long Tall Sally and our partners use cookies to store information needed to support a number of activities including delivering functionality, measuring our website performance and advertising.

The following types of cookies are used on longtallsally.com:

Functionality cookies

These are used to enable functionality across the site, including. customer preference management, onsite chat, language translations and customer referral capabilities.

Performance cookies

These enable us to understand how our customers use the site and how our infrastructure supports our customer base. This information is used to improve our website, make our marketing more relevant and help us plan for our busy periods.

Targeting cookies

We use targeting cookies to track our customers interest in products, and to tailor ads based on their browsing behaviour. All of our targeting cookies can be opted out of using the information provided in the links below:



A list of the different cookie providers, types and purposes used on the site are documented in the table below:


# Cookie Provider Type Description
1 Long Tall Sally Functionality Used to provide key browse and buy functionality, managing your account and preferences, wishlists and order history.
2 Dressipi Functionality Used to improve the accuracy and relavance of product suggestions
3 Google Optimize Functionality Enables testing of improvements to user experience and functionality
4 Google Tag Manager Functionality Supports the application of tools and scripts used on the site
5 JivoChat Functionality Enables our live chat functionality
6 MentionMe Functionality Provides our refer a friend functionality
7 MotionPoint Functionality Enables the delivery of our content in different languages
8 Decibel Insight Performance Tracks the effectiveness of our ads and marketing
9 Google Analytics Performance Used for measuring the performance of the site across different device and browser types
10 New Relic Performance Tracks the performance of our servers and website
11 3lift.com Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
12 ad.360yield.com Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
13 Bing Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
14 Bluekai.com Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
15 Captify Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
16 casalemedia.com Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
17 Criteo Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
18 Doubleclick/Google Marketing Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
19 Facebook Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
20 Google Adwords Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
21 omnitagjs.com Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
22 Openx.net Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
23 Postrelease.com Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
24 pubmatic.com Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
25 Rubiconproject.com Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
26 Sharethrough.com Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
27 tag4arm.com Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
28 thebrighttag.com Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
29 Tremorhub.com Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.
30 Yieldmo.com Targeting Tracks the effectiveness of our ads and marketing. Can also be used to tailor adverts based on your browsing behaviour.

11. WEBSITE SECURITY


You’ve entrusted your data to us, so we have a legal duty to look after it - one we don’t take lightly.

That’s why we:


  • • Implemented a new security solution to filter our website traffic and block threats in real-time
  • • Use a 3rd party security provider to regularly scan our site for any vulnerabilities
  • • Update our site/infrastructure on a regular basis with fixes and updates to prevent breaches
  • • use a fully verified 3rd party SSL certificate to encrypt data securely between browser and all pages on the website
  • • Removed support for any browsers using the insecure TLS 1.0 & 1.1 security mechanisms
  • • Restricted access to our customer data and audit where changes are made to it by the LTS team

12. STORAGE PERIOD


We won’t retain your data for longer than necessary for the purposes laid out in this policy. Different retention periods apply for different types of data, however the longest we will normally hold any personal data is six years.



13. YOUR RIGHTS


You have the following rights surrounding access and control of your personal data:


  • • the right to ask for a copy of personal data that we hold about you;
  • • the right to request that we delete personal data held about you;
  • • the right to ask us to update and correct any out-of-date or incorrect personal data that we hold about you;
  • • the right to opt out of any marketing communications that we may send you, and to object to us holding your personal data if we have no legitimate reasons to do so
  • • where we ask for your consent to use your personal data, you have the right to later withdraw your consent, which does not affect the lawfulness of the data processed until that point

If you wish to exercise any of the above rights, please contact using the details in point 2 above.

If you feel that your personal data has not been handled correctly, or you are unhappy with our response to any requests you have made to us regarding the use of your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office.


You can contact them by calling 0303 123 1113, or visit www.ico.org.uk/concerns or write to:

Information Commissioner's Office,

Wycliffe House,
Water Lane,
Wilmslow,
Cheshire,
SK9 5AF


14. UPDATE OF THE PRIVACY POLICY


We’ll update this policy when our website changes or to keep abreast of legal requirements.