Elmbronze Ltd and its associated trading names (such as Totally Herby), companies and associates (if any)
respect your privacy during your visits to our websites, and in all our dealings with you on the
WWW or by telephone or mail.
We use the information we collect about you to process orders or enquiries, and where necessary in relation to
these purchases and their delivery to you. We reserve the right to contact you by any means
strictly in relation to your order, payment or delivery.
Storage of your personal data
We are required by our Merchant Services provider (RBS Streamline) who handle our credit and debit card transactions,
to keep a record of these transactions for between 6 months and 2 years. Records with your card details are stored
securely (not on any computer), and then obliterated and destroyed.
We are PCI DSS compliant.
Please be reassured we do NOT store your CVV / CSC - the 3 or 4 digit security code usually found
on the back of your card.
We NEVER ask you for your card PIN number, nor should you ever disclose this to anyone, not even your own bank.
We do store your delivery and order details securely, to identify your purchases with us.
We take security absolutely seriously; even though we invested several months to secure our computer and web server
we review our measures thoroughly twice a year, as well as frequent random checks.
Access is totally restricted to only those authorised,
passwords are a mix of alphabetic, numeric and special characters, we encrypt data.
We provide you with SSL - Secure Socket Layer encryption for your order and personal data entry.
We have no intention of revealing our other security measures!
Data Protection Act 1998 (DPA)
Elmbronze Ltd (and its trading names) are registered as Data Controllers under the DPA with the
Information Commissioner's Office (ICO), our registration number is Z2019857.
The ICO requires from us that if you submit a
Subject Access Request (SAR) to us that we reply within 40 days.
Your SAR to us must be in writing, we are entitled to charge £10 (10 GBP) for our administration,
so your SAR should be accompanied by a cheque or postal order made out to Elmbronze Ltd.
An SAR is simply a formal request for a written record of any personal information we may hold about you;
we should be able to help you free of charge, if you contact us by email or phone.
We are required by the UK Data Protection Acts of 1984 and 1998 to follow strict security
procedures in the handling, storage and disclosure of personal information you have supplied us.
Our security procedures mean we may need to request proof of identity before we are able to disclose your own
information to you. Please be tolerant for any inconvenience this may cause you.
Protection and Ownership of your Personal Data
WE DO NOT SELL or otherwise dispose of your information
as that is YOUR information, not ours.
Whatever information is provided by you will not be passed to third parties unless stricly
necessary for the execution of your order or request for information. We may provide overall
statistics about customers, sales, traffic patterns and related site information to third-parties,
but these statistics will include absolutely no personal information that could identify you.
We cannot prevent bodies such as the Customs and Excise, Inland Revenue or regulatory bodies
from inspecting our records, but do take steps to prevent abuse by anyone.
Any such abuse will be prosecuted.
Your mail address and email address will NOT be used for marketing purposes.
Any voluntary mailing lists we may start will be opt-in only with default
"NO", so you do not have to make any effort to opt out of unwanted abuse of your mailbox.
We intensely dislike spam (junk mail, whether mail or email), and actively fight email abuse.
Your consent to us for using and storing your Personal Data
By using our Web site, you consent to the collection and use of this information by Elmbronze Ltd,
and our own directly owned groups, companies or divisions; or companies with which we have any
applicable agreement, but this will be prominently displayed where appropriate.
but this should not take effect retrospectively.
In other words if we change our policies in the future, this should have no bad affect for any dealings
you make with us now.
Please note however that while we exercise Due Diligence to the best of our means, we
accept no responsibility, financial or otherwise, for any breach of our security that may occur,
or for any inadvertent loss of any information. Also see our legal page.
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
"Cookies" are small pieces of information that are stored by your browser temporarily
on your computer's hard drive. Our cookies do not to date contain any personally identifying
information, but they do enable us to provide special features and to store items in your shopping
basket between visits. Most of our cookies expire at the end of your on-line session, and are
designed to make your visit to our web-site more enjoyable. Cookies used if you personalise your
regular visits will have a longer expiry time, but will be renewable or removable under your control.
Most Web browsers automatically accept cookies, but you can usually change your browser settings to
prevent that. Even without a cookie, you can still use most of the features in any of our stores,
or those of our customers, including placing items in your shopping basket and purchasing them.
You may refuse to accept cookies, and for this we operate a "fail-safe" method of
operation. This would mean that some optional features might not be available to you.
Note: currently this website
(totally herby, itchease.com/co.uk, sting ease, toots ease and all other individual product websites)
- When you order, we need to know your name, delivery address, credit or
debit card number, expiry date, start date, issue number and security code.
This allows us to process and fulfil your orders, and to take payment when your goods are ready to dispatch.
- We also ask for your telephone number which enables us to contact you urgently if there is a
problem with your order. For some international deliveries this number may be given to our
couriers. If you order online we also require your e-mail address to help us and you with your order.
This is a big help to us if there are any problems.
Please add the email address we give you to your address book, or check your spam folder as for instance yahoo mail incorrectly classify spam.
- On some of our websites, unique parts of your e-mail address and order details may be used to allow
you to access any secure informational parts of the website without previous arrangement.
These are carefully selected to make them unique to you and so that they
cannot easily be found at random (order number or licence number for instance).
If such a facility exists, you would be made clearly aware of it on the website before such usage was made.
Currently this facility does not exist on this website.
- You may be given a reference number by telephone, mail, email or webpage,
to allow you to re-order easily, use our secure payment system, or query your order.
Please also visit our
PCI DSS compliance
page, and our
legal and disclaimer page.