Information We Collect

When you reach out to us for corporate floral arrangements or gifts, we gather details you choose to share. This may include your name, company name, email, phone number, delivery addresses, and specific requirements for your floral needs. We also collect payment details when placing orders, though processing is handled securely by our payment partners.

For corporate clients, we may obtain additional business details such as registration information, preferred delivery timelines, and budget preferences. This helps us tailor our service to your organization's needs.

Our site automatically gathers certain technical data when you browse. This includes your IP address, browser type, device information, and navigation patterns on our site. We use this information to enhance site performance and to understand how customers discover our services.

How We Use Your Information

We primarily use your personal data to fulfill orders and deliver excellent customer service. This includes processing orders, coordinating deliveries, sending confirmations, and following up to ensure satisfaction.

• Processing and completing your flower orders and gift arrangements
• Communicating updates about order status and delivery timing
• Providing customer support and responding to inquiries
• Enhancing our services based on your feedback and preferences
• Sending relevant service updates (with your consent)
• Maintaining records for business and legal compliance

We also use aggregated, non-identifiable data to gain insights into market trends and improve our operations. For example, we may analyze which types of arrangements are most popular in different seasons to better plan inventory.

With your explicit consent, we may send information about seasonal offerings, special promotions, or new services that could interest your business. You can opt out of these communications at any time by using the unsubscribe link in our emails or contacting us directly.

Information Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. Your data stays within our organization and is shared only when necessary to provide our services or to comply with legal requirements.

We collaborate with trusted service providers who assist in delivering our services. This includes payment processors, delivery partners, and flower suppliers. These partners are contractually obligated to protect your data and use it solely for the services they perform for us.

We may disclose your information if required by United Kingdom law, court orders, or government regulations. This includes compliance with GST regulations, business licensing requirements, and other lawful obligations that apply to our operations in London and across United Kingdom.

Data Security and Protection

We take data security seriously and implement multiple safeguards. Our systems use encryption for sensitive transmissions, secure servers for storage, and routine security updates to safeguard against threats.

Physical security measures protect our office systems, and access to personal information is limited to staff who need it to perform their duties. Our team receives ongoing training on privacy practices and data handling.

Payment details are processed through secure, encrypted systems that meet industry standards. We do not store full card numbers on our systems—this information is handled by certified payment processors specializing in secure financial transactions.

While we maintain strong security measures, no system is completely risk-free. We continuously monitor and update our security practices to address evolving threats and uphold the highest protection standards.

Your Rights and Choices

You have several rights concerning your personal information. You can request to view what we hold, ask us to correct inaccuracies, or request deletion of your data where legally permissible.

• Access your personal information and understand how we use it
• Request corrections to inaccurate or outdated information
• Ask us to delete your personal information (subject to business and legal requirements)
• Opt out of marketing communications while continuing to receive service-related messages
• Request information about how your data has been shared
• File complaints about our privacy practices

We keep your information only as long as necessary for business and legal purposes. Order records are retained for accounting and warranty reasons, while marketing preferences are kept until you request removal.

When we no longer need your data, we securely delete or anonymize it. Some information may be retained longer if required by United Kingdom business laws or for legitimate interests like fraud prevention.

Cookies and Website Technology

Our site uses cookies to enhance your browsing experience and to help us understand how visitors interact with our site. Cookies are small files stored on your device that remember preferences and enable certain website features.

Essential cookies are necessary for the site to function properly—they enable basic navigation and access to secure areas. These cookies do not collect personal information and are enabled by default when you use our site.

We employ analytics cookies to learn how visitors engage with our site. This helps us identify popular content, optimize page performance, and improve the user experience. This data is aggregated and does not identify individuals.

You can adjust cookie settings in your browser. Disabling some cookies may affect certain features and your overall browsing experience.

Business Transfers and Changes

If GraniteFrameUrban undergoes major business changes such as mergers, acquisitions, or asset sales, your personal information may be transferred as part of the transaction. We would inform you of such changes and ensure your data remains protected under privacy standards aligned with this policy.

In the unlikely event that we discontinue operations, we would ensure your personal data is either securely transferred to a successor entity with appropriate privacy protections or securely deleted in accordance with data protection best practices.

Updates to This Privacy Policy

We may periodically update this privacy policy to reflect changes in our practices, services, or legal requirements. When significant changes occur, we will notify you by email or post a notice on our website before they take effect.

Minor updates for clarity or administrative reasons may be made without prior notice. We encourage you to review this policy periodically to stay informed about how we safeguard your privacy.

Children's Privacy

Our services are intended for business users and adult consumers. We do not knowingly collect personal information from individuals under 18. If we become aware that we have inadvertently collected data from someone under 18, we will promptly remove it from our systems.

Parents or guardians who believe we may have collected information from their child can reach out to us using the contact details below, and we will address the matter promptly.

International Data Considerations

Our primary operations are based in United Kingdom, and data is stored and processed within United Kingdom jurisdiction. However, some service providers may process data outside the country. When this occurs, we ensure appropriate safeguards are in place to protect your information in accordance with applicable privacy laws.

We comply with United Kingdom data protection laws and regulations, including those governing business operations, financial transactions, and handling customer data. Our practices align with evolving privacy standards in United Kingdom's digital economy.