Privacy Policy

Our data protection policy
Protecting your privacy

Introduction

When it comes to quality, Hay Cap strive to get it right every time. Getting everything just right is why customers across Europe trust Hay Cap to make every buying experience just perfect.

We believe the most important details, though, are yours – and to keep the information you share with us as safe as possible, we’ve updated our privacy policy in line with the requirements set out by General Data Protection Regulation.

The details you share with us help us to bring you our latest offers, deals and information on new products.

What is our Privacy Policy?

Hay Cap’s Privacy Policy

Hay Cap is a trading name and part of The Humberton Group which is a company registered in England

Maintaining the security of your data is a priority at Hay Cap, and we are committed to respecting your privacy rights.  We pledge to handle your data fairly and legally at all times. Hay Cap is also dedicated to being transparent about what data we collect about you and how we use it.

This policy, which applies whether you visit our office, use a mobile device or go online, provides you with information about:

  • how we use your data;
  • what personal data we collect;
  • how we ensure your privacy is maintained; and
  • your legal rights relating to your personal data.

HOW WE USE YOUR DATA

General

  • to provide goods, offers and services to you;
  • to manage any registered account(s) that you hold with us;
  • to contact you electronically about promotional offers and products and services which we think may interest you;
  • for market research purposes – to better understand your needs;
  • to enable Hay Cap to manage customer service interactions with you

Other Marketing

Promotional communications

Hay Cap aims to update you about products & services which are of interest and relevant to you.

You have the right to opt out of receiving promotional communications at any time, by:

1. making use of the simple “unsubscribe” link in emails

2. contacting Hay Cap via the contact channels set out in this Policy.

Hay Cap Customers

If you are a customer of Hay Cap, we may collect data directly from you, as well as analysing your browsing and purchasing activity, both on-line and in the office, and your responses to marketing communications.  The results of this analysis, together with other demographic data, allows us to ensure that we contact you with information on products and offers that are relevant to you.  To do so, we use software and other technology (automated processing).

Web Banner Advertising

If you visit our websites, you may receive personalised banner advertisements whilst browsing other websites.  Any banner advertisements you see will relate to products you have viewed whilst browsing our websites on your computer or other devices.

These advertisements are provided by Hay Cap via market leading specialist providers using ‘cookies’ placed on your computer or other devices (see further information on the use of cookies in our Cookie Policy).  You can remove or disable cookies at any time – see below for further information.

Sharing data with third parties
Our service providers and suppliers

Hay Cap will NOT disclose your personal data to any third party, except as set out below.  We will never sell or rent our customer data to other organisations for marketing purposes.

We may share your data with:

  • governmental bodies, regulators, law enforcement agencies, courts/tribunals and insurers where we are required to do so: -
  • to comply with our legal obligations;

How long do we keep your data?

Different retention periods apply for different types of data, however the longest we will normally hold any personal data is 10 years or as long as you are a client of Hay Cap.

WHAT PERSONAL DATA DO WE COLLECT?

Hay Cap may collect the following information about you:

  • your name including salutation
  • your contact details: your address including billing and delivery addresses, telephone numbers (including mobile numbers) and e-mail address, website (if a business);
  • purchases and orders made by you;
  • your on-line browsing activities on the Hay Cap website;
  • your password(s);
  • your communication and marketing preferences;
  • other publicly available personal data, including any which you have shared via a public platform (such as a Twitter feed or public Facebook page).

Our websites are not intended for children and we do not knowingly collect data relating to children.

This list is not exhaustive and, in specific instances, we may need to collect additional data for the purposes set out in this Policy. Some of the above personal data is collected directly, for example when you set up an on-line account on our websites or send an email to our customer services team. Other personal data is collected indirectly, for example your browsing or shopping activity. We may also collect personal data from third parties who have your consent to pass your details to us, or from publicly available sources.

HOW WE PROTECT YOUR DATA

Hay Cap controls

Hay Cap is highly committed to keeping your personal data secure and safe.

Our security measures include: –

  • encryption of data;
  • regular cyber security assessments of all service providers who may handle your personal data;
  • security controls which protect our IT infrastructure from external attack and unauthorised access; and
  • internal policies setting out our data security approach and training for employees.

WHAT YOU CAN DO TO HELP PROTECT YOUR DATA

Hay Cap will never ask you to confirm any bank account or credit card details via email.  If you receive an email claiming to be from Hay Cap asking you to do so, please ignore it and do not respond.

If you are using a computing device in a public location, we recommend that you always log out and close the website browser when you complete an online session.

In addition, we recommend that you take the following security measures to enhance your online safety both in relation to Hay Cap and more generally: –

  • keep your account passwords private.  Remember, anybody who knows your password may access your account.
  • when creating a password, use at least 8 characters.  A combination of letters and numbers is best.  Do not use dictionary words, your name, email address, or other personal data that can be easily obtained.  We also recommend that you frequently change your password.
  • avoid using the same password for multiple online accounts.

YOUR RIGHTS

You have the following rights:

  • the right to ask for a copy of personal data that we hold about you (the right of access);
  • the right (in certain circumstances) to request that we delete personal data held on you; where we no longer have any legal reason to retain it (the right of erasure or to be forgotten);
  • the right to ask us to update and correct any out-of-date or incorrect personal data that we hold about you (the right of rectification);
  • the right to opt out of any marketing communications that we may send you and to object to us using / holding your personal data if we have no legitimate reasons to do so (the right to object);
  • the right (in certain circumstances) to ask us to supply you with some of the personal data we hold about you in a structured machine-readable format and/or to provide a copy of the data in such a format to another organisation (the right to data portability).

If you wish to exercise any of the above rights, please contact us using the contact details set out below.

LEGAL BASIS FOR USING DATA

Hay Cap processing customer personal data

General

Hay Cap collects and uses customers’ personal data because is it necessary for:

  • the pursuit of our legitimate interests (as set out below);
  • the purposes of complying with our duties and exercising our rights under a contract for the sale of goods to a customer; or
  • complying with our legal obligations.

In general, we only rely on consent as a legal basis for processing personal data in relation to sending direct marketing communications to customers via email.

Customers have the right to withdraw consent at any time.  Where consent is the only legal basis for processing, we will cease to process data after consent is withdrawn.

Our legitimate interests

The normal legal basis for processing customer data, is that it is necessary for the legitimate interests of Hay Cap including:-

  • selling and supplying goods and services to our customers;
  • protecting customers, employees and other individuals and maintaining their safety, health and welfare;
  • promoting, marketing and advertising our products and services;
  • sending promotional communications which are relevant to our customers;
  • understanding our customers’ behaviour, activities, preferences, and needs;
  • improving existing products and services and developing new products and services;
  • complying with our legal and regulatory obligations;
  • handling customer contacts, queries, complaints or disputes;
  • fulfilling our duties to our customers, staff and directors.

DATA PROTECTION POINT OF CONTACT

Hay Cap has appointed a Data Protection ‘point of contact’ to ensure we protect the personal data of our customers (and others) and comply with data protection legislation.

If you have any questions about how we use your personal data that are not answered here, or if you want to exercise your rights regarding your personal data, please contact Rachael on:

  • phone: 01423 360212
  • e-mail:rachaelsowray@gmail.com or
  • write to: Hay Cap, Humberton, Helperby, York, YO61 2RX

Our Cookie Policy

To make full use of the online shopping and personalised features on the Hay Cap website, your computer, tablet or mobile phone will need to accept cookies, as we can only provide you with certain personalised features of this website by using them.

Our cookies don’t store sensitive information such as your name, address or payment details: they simply hold the ‘key’ that, once you’re signed in, is associated with this information. However, if you’d prefer to restrict, block or delete cookies from Hay Cap or any other website, you can use your browser to do this. Each browser is different, so check the ‘Help’ menu of your particular browser (or your mobile phone’s handset manual) to learn how to change your cookie preferences.

Here’s a list of the main cookies we use, and what we use them for.

Cookie Name Cookie Owner Cookie Description
gwcc Google Analytics This cookie is used to collect information about how visitors use our site. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited.
wfvt_ Wordfence This allows a security plugin we use to operate
wfwaf-authcookie Wordfence This cookie is set by the WordPress security plugin “Wordfence”. It is used to authenticate user’s login request.
wordfence_verifiedHuman Wordfence Cookie set by the Wordfence Security WordPress plugin to protect the site against malicious attacks.
wfvt_952151911 Wordfence This allows a security plugin we use to operate
_gid Google Analytics Used to distinguish users.
DYNSRV Hosting Provider This cookie is believed to be used for load balancing to manage server traffic demand.
_gat Google Analytics Used to throttle request rate. If Google Analytics is deployed via Google Tag Manager, this cookie will be named _dc_gtm_.
_ga Google Analytics Used to distinguish users.
wordpress_logged_in WordPress After login, wordpress sets the wordpress_logged_in_[hash] cookie, which indicates when you’re logged in, and who you are, for most interface use.
wordpress_sec WordPress Essential WordPress session management cookies for logged in users.
wordpress_test_cookie WordPress WordPress sets this cookie when you navigate to the login page. The cookie is used to check whether your web browser is set to allow, or reject cookies.
wp-setting- WordPress WordPress also sets a few wp-settings-[UID] cookies. The number on the end is your individual user ID from the users database table. This is used to customize your view of admin interface, and possibly also the main site interface.
wp-settings-time- WordPress WordPress also sets a few wp-settings-{time}-[UID] cookies. The number on the end is your individual user ID from the users database table. This is used to customize your view of admin interface, and possibly also the main site interface.
gdpr_cookie Hay Cap This cookie is used to track who has already been shown the notice. The cookie has been set never to expire unless there is a change in the privacy policy.