Who we are
Carrick Eyecare (“We”, “us”, “our”) is an independent opticians in Carrickfergus, County Antrim and we are committed to respecting your privacy.
This Privacy Policy, and other documents referred to within, sets out the basis in which we collect and process your personal information as a Data Controller when you visit the website.
With over 30 years of experience in-store, we offer eye examinations, contact lens and a range of frames, lenses and sunglasses as well as providing general services for eyecare.
Our website address is https://www.carrickeyecare.com (“Website”, “site”). By visiting our website, you are accepting and consenting to the practices described in this Privacy Policy.
Data Controller
For the purposes of EU and UK data protection laws relating to the processing of personal data, the data controller is Carrick Eyecare Ltd. of 7 Lancasterian St, Carrickfergus, County Antrim, BT38 7AB.
Legal basis for processing
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
- To fulfil our contractual obligations to you.
- Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
- To comply with a legal obligation.
To the extent we process your personal data for any other purposes, we ask for your consent in advance or require that our partners obtain such consent.
Personal data we may collect about you
We may collect and process personal data about you. Personal data, or personally identifiable information, means any information about an individual from which that individual can be identified. This does not include data where the identity has been removed (anonymous data).
We collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:
- Identity Data: includes first name, maiden name, last name,.
- Contact Data: includes billing address, email address, company name, website.
- Transaction Data: includes details about payments to and from you and other details of products and services you have purchased from us.
- Financial Data: includes VAT number (if applicable) and payment card details.
- Technical Data: includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this Site or the Services.
- Profile Data (if applicable): includes your username and password, purchases or orders made by you, your interests, preferences, feedback and survey responses.
- Usage Data: includes information about how you use our Site and Services, including the full Uniform Resource Locators (URL) clickstream to, through and from our Site and Services (including date and time); products you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page and any phone number used to call our customer service number.
- Marketing and Communications Data: includes your preferences in receiving marketing from us and our third parties and your communication preferences.
- Aggregated Data: We also collect, use and share statistical or demographic data for any purpose. This Aggregated Data could be derived from your personal data but is not considered personal data in law as this data will not directly or indirectly reveal your identity.
- Special Category Data: We do not collect, store and/or use special category data about you. This means details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data.
If you fail to provide personal data
Where we need to collect personal data by law, or under the terms of a contract we have with you, and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with goods or services). In this case, we may have to cancel a product or service you have with us but we will notify you if this is the case at the time.
How Personal Data is Collected
We use different methods to collect data from and about you including via:
- Direct Interactions. You may give us your Identity, Contact and Financial Data when you visit us in-store, fill in forms or correspond with us by post, phone, email or otherwise. This includes personal data you provide when you register to use our Site or to receive our newsletter, subscribe to use our Services, create an account to use our Site or Services, request marketing to be sent to you, search for a product or place an order on our Site, participate in discussion boards or other social media functions on our Site, enter a competition, promotion or survey, attend a conference or webinar, give us feedback or contact us and when you report a problem with our Site or Services.
- Purchases: If you make purchases in-store, via our Site or within any Services, or register for an event or webinar, we may require you to provide your Identity, Contact, Financial and Transaction Data.
- Automated Technologies or Interactions. As you interact with our Services, Sites or emails, we automatically collect Technical Information about your device, browsing actions, patterns, Location Data and Usage Data. We may collect this personal data by using cookies, server logs, web beacons, pixels, and similar technologies about your device, and your use of our Site and Services. We may also receive Technical Data and Location Data about you if you visit other websites that employ our cookies. Please see the Cookie section below for further details.
Disclosure of Your Personal Data
Personal data we share with third parties: We may share your personal data with select third parties. Below is a summary of the types of third parties used:
- Business partners, suppliers and subcontractors for the performance of any contract we enter into with them or you to provide services such as IT and system administration services, email communications, hosting services, backup services, credit card processing, research, development, marketing and customer support.
- Professional advisors acting as service providers to us in relation to the Site or Services – including lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance and accounting services.
- Tax authorities, regulators and other authorities who require reporting of processing activities in certain circumstances.
- Advertisers and advertising networks that require the data to select and serve relevant adverts to you and others. We do not disclose personal data about identifiable individuals to our advertisers, but we may provide them with Aggregated Data about our users (for example, we may inform them that 250 men aged over 25 have clicked on their advertisement on any given day). We may also use such Aggregated Data to help advertisers reach the kind of audience they want to target (for example, women living in London). We may make use of the personal data we have collected from you to enable us to comply with our advertisers’ wishes by displaying their advertisement to that target audience.
- Analytics and search engine providers that assist us in the improvement and optimisation of our Site and Services.
Personal data we disclose to third parties: We may disclose your personal data to third parties:
- In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets.
- If we or a member of our group of companies or substantially all of their assets are acquired by a third party, in which case personal data held by them about their customers will be one of the transferred assets.
- If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms and conditions, terms of use and/or any other legal agreements; or to protect our rights, property, safety, our customers or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
- We may share Aggregated Data in the normal course of operating our business; for example, with other Site or Services users, our customers or publicly to show trends or benchmark the general use of our Site and Services.
Cookies
If you leave a comment on our site you may opt in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
WordPress also sets this cookie when a user interacts with emojis on a WordPress site. It helps determine if the user’s browser can display emojis.
We also utilise the services of other suppliers who provide their service in order for us to fulfil our objectives with our website. We suggest you take time to review their relevant Privacy Policies. When visiting the website, you can Accept or Customise the Cookies you accept when browsing the website.
Other suppliers services that we utilise on the website include:
- CookieYes – Sets a cookie to remember users’ consent preferences so that their preferences are respected on subsequent visits to this site. It does not collect or store any personal information about the site visitors.
- Google Analytics – Sets cookies to store and count page views, to calculate visitor, session and campaign data and track site usage for the site’s analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Transfer of Data outside UK
Your personal data may be stored and processed in any country where we have operations, our staff are located or where we engage service providers engaged in, among other things, the fulfilment of your order, the processing of your payment details or the provision of support services. This may involve a transfer of your personal data to countries outside of your country of residence, where data protection rules are different from those of your country of residence.
Processing of your personal data will involve a transfer of data to countries outside the European Economic Area (“EEA“), Switzerland or the UK.
We will take all steps reasonably necessary to ensure that your personal data is treated securely and in accordance with this Privacy Policy. In particular, this means that your personal data will only be transferred to a country that provides an adequate level of protection or where the recipient is bound by standard contractual clauses according to conditions provided by the European Commission or ICO.
Our Site and Services are accessible via the internet and may potentially be accessed by anyone around the world. Other users may access the Site or Services from outside the EEA, or the UK. This means that where you chose to post your personal data on our Site or within the Services, it could be accessed from anywhere around the world and therefore a transfer of your personal data outside of the EEA or the UK may be deemed to have occurred.
Comments
If and when visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service Privacy Policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.
Media
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website may be able to download and extract any location data from images on the website.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us.
You retain yourright to withdraw your consent at any time and you can request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
You have a right to lodge a complaint with the Information Commissioner’s Office (ICO).
How to contact us
If you have any questions about our privacy policy, the data we hold on you, or you would like to exercise one of your data protection rights, please do not hesistate to contact us.
Email: hello@carrick-eyecare.com