Details of how we how we protect your privacy, and in particular how we gather, use, disclose and manage your data.
This document sets out details of how we protect your privacy, and in particular how we gather, use, disclose and manage your data.
Right to Object: You have a legal right to object at any time to: (i) use of your personal information for direct marketing purposes; and (ii) processing of your personal information which is based on our legitimate interests, unless there are compelling legitimate grounds for our continued processing.
NOTE: If you do object, we may not be able to provide the Services to you.
1. Age requirements
We do not knowingly collect personal information from children under 16 years of age. If you are under 16 years old, please do not provide any personal information to us.
2. Information we may collect about you
2.1. We may collect and process the following information about you:
– 2.1.1 information provided to us by our retail partners when you choose to use our Services to collect a parcel, by selecting that option on the website of one of our retail partners;
– 2.1.2 information that you provide to our retail partners in the course of selecting our Services, including information relating to parcels you send through the Services, the Doddle location you choose and contents of parcels;
– 2.1.3 information that you may share with us when choosing to return a parcel at one of the Doddle locations, which may include your name, Order ID and email address – to enable us to provide you with tracking information;
– 2.1.4 information that you may publish directly to us on our website;
– 2.1.5 information that you authorise a third party (e.g. a social network such as Facebook) to share with us, such as your email address or other information that may identify you, including to enable you to sign up for Doddle Services. Here’s a link to details on how you can manage what you share with us via Facebook – https://www.facebook.com/about/login/;
– 2.1.6 correspondence, or a record of it, if you should contact us;
– 2.1.7 surveys that you complete;
– 2.1.8 usage data – which includes information about how you use our website and Services;
– 2.1.9 marketing and communications data, which includes your preferences in receiving marketing from us and your communication preferences; and
– 2.1.10 statistical data about your browsing actions and patterns. This means information about your computer and your use of our Services, including (where available) your IP address, unique mobile device identifier (UDID), International Mobile Equipment ID (IMEI), Android ID, device MAC address, browser information, operating system, timestamps, the pages that you request, applications downloaded, traffic data, location data, weblogs and other communication data, and the resources that you access.
3. How we use your information
3.1 We use information held about you in the following ways:
– 3.1.1 to provide the Services;
– 3.1.2 to ensure that the Services are presented in the most effective manner for you and for your computer or device;
– 3.1.3 to identify you when you use the Services, and where possible to customise your experience when using the Services;
– 3.1.4 to answer your questions and improve the Services;
– 3.1.5 to notify you about changes to our Services;
– 3.1.6 to provide you with updates and other information about special offers and new features of our Service; and
– 3.1.7 for marketing purposes (including sending you promotional information about third parties) where you specifically agree to this. You can unsubscribe from marketing messages at any time via the link at the foot of each marketing email. If you change your mind about us processing your personal information for marketing purposes, please contact us here.
4. The legal basis for processing your information
4.1 Under GDPR, the main grounds that we rely upon in order to process personal information of users of our website and customers are the following:
– 4.1.1 necessary for entering into, or performing, a contract – in order to perform obligations that we undertake in providing the Service to you, or in order to take steps at your request to enter into a contract with us, it will be necessary for us to process your personal data;
– 4.1.2 necessary for compliance with a legal obligation – we are subject to certain legal requirements which may require us to process your personal data. We may also be obliged by law to disclose your personal data to a regulatory body or law enforcement agency;
– 4.1.3 necessary for the purposes of legitimate interests – either we, or a third party, will need to process your personal data for the purposes of our (or a third party’s) legitimate interests, provided we have established that those interests are not overridden by your rights and freedoms, including your right to have your personal data protected. Our legitimate interests include responding to requests and enquiries from you or a third party, optimising our website and customer experience, informing you about our products and services and ensuring that our operations are conducted in an appropriate and efficient manner;
– 4.1.4 consent – in some circumstances, we may ask for your consent to process your personal data in a particular way.
5. How we share your information
5.1 We may share your personal information with third parties in the following circumstances:
– 5.1.1 for marketing purposes where you consent to this;
– 5.1.2 to other members of the Company’s group of companies, our partners and service providers for the purpose of: managing or administering certain aspects of our Services, for analytics purposes and to help us develop new services;
– 5.1.3 to protect the rights, property or safety of us or other Service users;
– 5.1.4 where we are obliged, or permitted, to do so by applicable law, regulation or legal process; or
– 5.1.5 if we (or substantially all of our assets) are acquired by a third party, in which case personal information held by us about our users will be one of the transferred assets.
– 5.2 Such third parties as referenced in paragraph 5.1 may include:
– 5.2.1 Companies that help us build and sustain the Doddle technology platform, including third party software as a service (SaaS) providers, and other providers of IT infrastructure (including data storage providers);
– 5.2.2 Companies approved by you, such as social media sites (if you choose to link your accounts to us – e.g. when using Facebook Messenger to arrange to return your parcels);
– 5.2.3 Professional service providers, such as marketing agencies, advertising partners and website hosts, who help us run our business;
– 5.2.4 Law enforcement and fraud prevention agencies, so we can help tackle fraud; and
– 5.2.5 The parties to a sale if we (or substantially all of our assets) are acquired by a third party.
– 5.3 We may pass aggregated information to third parties about how our users use our Services but this will not include information which could be used by them to identify you. We use Google Analytics, Amplitude and Facebook Tracking. For further information on how each of these processors uses data when you use our website or Services, see the following:
5.4 We may, from time to time, use Google, Amplitude and Facebook tracking tools to track user behaviour over time and across third party sites to improve our understanding of customer behaviour and to track any affiliate sales.
5.5 We may collect information about what ads users view and whether they click on our ads. We use this information to improve and customise our advertising.
6. Where we store your information
6.1 We take appropriate organisational and technical measures to protect your personal information that we hold. We limit access to your personal information to those who we believe reasonably need to come into contact with that information in order to carry out their jobs.
6.2 The data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area (EEA). It may also be processed by persons operating outside the EEA who work for us, one of our associated companies or a third party engaged by us. To the extent that any personal information is provided to third parties outside the EEA, or who will access the information from outside the EEA, we will ensure that approved safeguards are in place, such as the standard contractual clauses approved by the European Commission or the EU/US Privacy Shield.
6.3 Given that the internet is a global environment, using the Internet to collect and process personal data necessarily involves the transmission of data on an international basis. Unfortunately, the transmission of information via the internet (including via mobile applications which utilise the internet) is not completely secure. Although we will do our best to protect your personal information, we cannot guarantee the security of your information transmitted to our Service and any transmission is at your own risk.
6.4 We will retain your information for as long as is necessary to fulfill any of the Services we provide or to comply with applicable legislation, regulatory requests and relevant orders from competent courts. Our data retention policy is periodically reviewed.
7. Your rights on information we hold about you
7.1 You have certain rights in relation to personal information we hold about you, which can be exercised in accordance with applicable data protection laws including the GDPR. Details of these rights and how to exercise them are set out below. We will require evidence of your identity before we are able to act on your request.
7.2 Right of Access:
– 7.2.1 You have the right to access information held about you and you can ask us for a copy of the information at any time. Where we have good reason, and if the GDPR permits, we can refuse your request for a copy of your personal information, or certain elements of the request. If we refuse your request or any element of it, we will provide you with our reasons for doing so.
7.3 Right of Correction or Completion:
– 7.3.1 If personal information we hold about you is not accurate, out of date or incomplete, you have a right to have the data rectified, updated or completed. You can let us know by contacting us here.
7.4 Right of Erasure:
– 7.4.1 In certain circumstances, you have the right to request that personal information we hold about you is erased e.g. if the information is no longer necessary for the purposes for which it was collected or processed or our processing of the information is based on your consent and there are no other legal grounds on which we may process the information.
7.5 Right to object to or restrict processing:
– 7.5.1 In certain circumstances, you have the right to object to our processing of your personal information by contacting us here. For example, if we are processing your information on the basis of our legitimate interests and there are no compelling legitimate grounds for our processing which override your rights and interests. You also have the right to object to use of your personal information for direct marketing purposes.
– 7.5.2 You may also have the right to restrict our use of your personal information, such as in circumstances where you have challenged the accuracy of the information and during the period where we are verifying its accuracy
7.6 Right of Data Portability:
– 7.6.1 In certain instances, you have a right to receive any personal information that we hold about you in a structured, commonly used and machine-readable format. You can ask us to transmit that information to you or directly to a third party organisation.
– 7.6.2 This right exists only in respect of personal information that:
(a) you have provided to us previously; and
(b) is processed by us using automated means
– 7.6.3 While we are happy for such requests to be made, we are not able to guarantee technical compatibility with a third party organisation’s systems. We are also unable to comply with requests that relate to personal information of others without their consent.
– 7.7.1 You have the right to ask us not to process your personal information for marketing purposes. We will inform you, before collecting your personal information, if we intend to use your personal information for such purposes or if we intend to disclose your personal information to any third party for such purposes. We will only process your personal information for such purposes where you agree to such processing (eg, by checking certain boxes on the forms or registration pages we use to collect your information).
– 7.7.2 If you have previously agreed to us using your personal information for marketing purposes, you may change your mind at any time by contacting us here. You will also be given the opportunity to unsubscribe when you receive marketing messages.
7.8 You can exercise any of the above rights by contacting us here.
7.9 Most of the above rights are subject to limitations and exceptions. We will provide reasons if we are unable to comply with any request for the exercise of your rights.
7.10 To the extent that we are processing your personal information based on your consent, you have the right to withdraw your consent at any time. You can do this by contacting us here.
8.3 All of the major browsers offer tips and guidance for managing the cookies available on your browser. There are also lots of different third party browser plug-ins and extensions available which you can download to make it easier to see and control your cookies.
8.4 You can find out more about internet advertising by visiting the following websites: www.allaboutcookies.org, www.yourchoicesonline.eu, and www.networkadvertising.org. Some of these sites enable you to opt out of online behavioural advertising and other tracking cookies (in addition to the control settings on your browser).
We may from time to time use third party advertisers or sponsors on our Service. In the event that we do so we will not disclose identifiable information about individuals but we may provide them with aggregated information about our users. We may also use such aggregated information to help advertisers reach the kind of audience they want to target (for example, men in London). We may make use of the personal information we have collected from you to enable us to comply with our advertisers’ and sponsors’ wishes by displaying their advertisement to that target audience.
11. Keeping your account secure
11.1 Where we have given you (or where you have chosen) a password which enables you to access certain parts of the Service, you are responsible for keeping this password confidential and you are responsible for any misuse of such information. You must change your password on a regular basis and must not share your password with anyone.
11.2 You are solely responsible for the security and confidentiality of your account. Please ensure that you do not allow anyone else to access the Service in your name and sign off after you have finished accessing your account.
11.3 You are responsible for all orders, and for the accuracy of all information, sent via the internet using your user ID, password or any other personal identification used to identify you on the Service.
11.4 You will be liable to us for all orders or transactions placed by use of your user ID and password, even if such use might be wrongful. We will not be liable to you for any loss that you may incur as a result of misuse of your user ID and password, and we accept no liability resulting from its unauthorised use, whether fraudulent or otherwise.
13.1 If you are unhappy about our use of your personal information, you can contact us here. You are also entitled to lodge a complaint with the UK Information Commissioner’s Office using any of the below contact methods:
13.2 Telephone: 0303 123 11113
13.3 Website: https://ico.org.uk/concerns/
13.4 Post: Information Commissioner’s Office
13.5 If you live or work outside the UK or you have a complaint concerning our activities outside the UK, you may prefer to lodge a complaint with your local supervisory authority.
14.1 If you have any enquiries or if you would like to contact us about our processing of your personal information, including to exercise your rights as outlined above, please contact us by any of the methods below. When you contact us, we will ask you to verify your identity.
Contact us here.
Our registered office is at:
22 Manchester Square, London, W1U 3PT
What are cookies?
Cookies are small text files containing a string of characters that can be placed on your computer or mobile device that uniquely identify your browser or device.
What are cookies used for?
Cookies are an essential part of how our site works. Some of these cookies are required by our site to enable you to transact whilst other cookies enable us to give you an enhanced, personalised web experience.
What types of cookies does Doddle use?
There are generally four categories of cookies: “Strictly Necessary”. “Performance”, “Functionality”, and “Targeting”. Doddle routinely uses only strictly necessary cookies on this Service. You can find out more about each cookie category below.
Strictly Necessary Cookies. These cookies are essential, as they enable you to move around the Service and use its features, such as accessing logged in or secure areas.
Functionality Cookies. These cookies allow us to remember how you’re logged in, whether you chose to no longer see advertisements, whether you made an edit to an article on the Service while logged out, when you logged in or out, the state or history of Service tools you’ve used. These cookies also allow us to tailor the Service to provide enhanced features and content for you and to remember how you’ve customized the Service in other ways, such as customizing the toolbars we offer in the right column of every page. The information these cookies collect may be anonymous, and they are not used to track your browsing activity on other sites or services.
Targeting Cookies. Doddle, our advertising partners or other third party partners may use these types of cookies to deliver advertising that is relevant to your interests. These cookies can remember that your device has visited a site or service, and may also be able to track your device’s browsing activity on other sites or services other than Doddle. This information may be shared with organizations outside Doddle, such as advertisers and/or advertising networks to deliver the advertising, and to help measure the effectiveness of an advertising campaign, or other business partners for the purpose of providing aggregate Service usage statistics and aggregate Service testing.
First and third party cookies
First-party cookies are cookies that belong to Doddle, third-party cookies are cookies that another party places on your device through our Service. Third-party cookies may be placed on your device by someone providing a service for Doddle, for example to help us understand how our service is being used. Third-party cookies may also be placed on your device by our business partners so that they can use them to advertise products and services to you elsewhere on the Internet.
How long will cookies stay on my device?
The length of time a cookie will stay on your computer or mobile device depends on whether it is a “persistent” or “session” cookie. Session cookies will only stay on your device until you stop browsing. Persistent cookies stay on your computer or mobile device until they expire or are deleted.
How to control and delete cookies
If you want to delete cookies follow the instructions at http://www.allaboutcookies.org/manage-cookies/clear-cookies-installed.html. Note that if you set your browser to disable cookies, you may not be able to access certain parts of our Service and other parts of our Service may not work properly. You can find out more information cookie settings at third-party information sites, such as www.allaboutcookies.org.