Florist & Home Samantha

Updated:

Privacy Policy

This policy explains how Florist & Home Samantha (“Florist & Home”, “we”, “us”) collects, uses, stores, and safeguards your personal data when you engage with our floral studio, digital platforms, and delivery partners.

Back to Home Request Data Update

Our commitment

We comply with the EU General Data Protection Regulation (GDPR) and Spanish data protection standards. Your information is processed lawfully, transparently, and solely for the purposes detailed on this page.

Contact our Data Protection Lead at privacy@floristandhome.com

1. Information We Collect

We collect the minimum personal data necessary to fulfil our services. Depending on your interaction with us, this may include your name, email address, phone number, billing and delivery addresses, order history, payment confirmations processed through secure providers, stylistic preferences, and any inspiration images you choose to share. When you order via partners such as Glovo or Telegram, they send the essential fulfilment data required to prepare and deliver your flowers. We never receive or store payment card numbers.

2. How & Why We Use Your Data

Personal data is used to confirm and deliver orders, coordinate event logistics, respond to enquiries, personalise floral recommendations, manage invoicing, and share essential updates related to your purchase. With your consent, we may send seasonal newsletters or previews of new collections—you can opt out at any time. We also analyse aggregated, anonymised data to better understand customer preferences. We never sell personal information or share it for unrelated marketing.

3. Legal Bases for Processing

Florist & Home relies on the following lawful bases under GDPR: performance of a contract (processing your order), compliance with legal obligations (tax, invoicing, accounting), legitimate interests (service refinement, security, fraud prevention), and, where applicable, your explicit consent (marketing communications or featuring photos of our work).

4. Data Retention & Security

We retain personal data only as long as needed to provide our services or to meet legal obligations. Information is stored on secure, access-controlled systems and accessed by trained team members only. When data is no longer required, it is deleted or anonymised. We use encryption, password policies, and regular access reviews to safeguard your information, while acknowledging that no digital transmission is entirely risk-free.

5. Your Rights

Under GDPR you may access, correct, update, or delete your personal data, restrict processing, request data portability, or object to certain uses. You can withdraw consent at any time without affecting the lawfulness of prior processing. To exercise these rights, email privacy@floristandhome.com. You may also lodge a complaint with the Spanish Data Protection Agency (Agencia Española de Protección de Datos) or your local authority.

6. Sharing with Third Parties

We share limited data with trusted service providers—delivery couriers, payment processors, email services—who help us operate the business. These partners act under written agreements, follow our instructions, and keep your information confidential. When data travels internationally, we use approved safeguards such as Standard Contractual Clauses to protect it.

7. Policy Updates

We review this policy regularly to reflect regulatory changes or improvements to our services. Significant updates will be announced on our website or communicated directly when appropriate. The “Updated” date at the top of this page indicates the latest revision.