How GardenNest treats personal data and keeps your details calm.

In this notice, “GardenNest”, “we”, “us” and “our” refer to the operator of the GardenNest website and brand for outdoor and garden furniture. We act as the controller of personal data processed in connection with this website.

If you have any question about this Privacy Policy or how GardenNest handles your information, you can reach our privacy contact using:

• E-mail: privacy@gardennest.com
• Suggested subject line: “Privacy request – GardenNest website”.

We aim to collect only the information needed to operate GardenNest, respond to your requests and improve our services. Depending on how you interact with us, we may process the following categories of data:

Information you provide directly

• Contact details such as your name, e-mail address, phone number and preferred language when you contact us or request information.
• Order information such as delivery details, billing address and the products you select when you place or prepare an order.
• Communication content including messages, feedback and other information you choose to send us.

Information collected automatically

• Technical data such as IP address, browser type and version, device identifiers, operating system, time zone and language settings.
• Usage data including pages you visit, time spent on each section, clicked links and general interaction patterns on the site.

Information from partners

In some cases, we may receive limited data from payment, analytics or logistics providers, for example confirmation that a payment was successful or aggregated statistics about visits and campaigns.

We use personal data only for clear and lawful purposes. Typical examples include:

• Operating the website. To display pages, remember layout preferences, maintain shopping carts and provide a smooth browsing experience.
• Fulfilling requests and orders. To answer questions, send quotations, process payments, arrange delivery and provide support when you contact us about GardenNest products.
• Improving GardenNest. To understand which layouts and sections are most useful, fix errors, and refine navigation and content.
• Direct communication. To send you important information about an order or account, or updates you have chosen to receive.
• Security and fraud prevention. To keep GardenNest and our visitors safe, monitor suspicious behaviour and comply with legal obligations.

Cookies are small text files stored on your device. They help GardenNest remember your preferences and understand how visitors use the site. We may use:

• Essential cookies needed for core functions such as keeping you signed in or remembering items in a cart.
• Analytics cookies to help us measure visits, improve navigation and understand which content is helpful.
• Preference cookies to save choices such as language or display settings.

Where required by local law, we will ask for your consent before placing cookies that are not strictly necessary. You can control or delete cookies through your browser settings, but some features of the site may work less smoothly without them.

When privacy laws such as the GDPR apply, GardenNest relies on one or more of the following legal bases to process personal data:

• Contract. Processing that is necessary to perform a contract with you or take steps at your request before entering into a contract (for example, handling an order).
• Consent. Processing based on your explicit permission, such as sending newsletters or placing certain cookies, which you can withdraw at any time.
• Legitimate interests. Processing needed to operate and improve GardenNest in a balanced way that does not override your rights and freedoms.
• Legal obligations. Processing required to comply with laws, for instance retaining records for tax or accounting rules.

We share personal data only when necessary and with appropriate safeguards in place. Typical recipients include:

• Service providers such as hosting companies, analytics platforms, payment processors, logistics partners and communication tools that support GardenNest.
• Professional advisers including legal, auditing or accounting partners where required for business and compliance purposes.
• Public authorities when we are legally required to provide information, for example to comply with a lawful request from law enforcement.

Service providers are not allowed to use your information for their own independent purposes, and they must protect it according to applicable data protection rules.

We retain personal data only for as long as needed to fulfil the purposes described in this notice or as required by law. After that, data is either deleted or anonymised.

• General contact enquiries are typically kept for up to two years so that we can understand recurring questions and improve our support.
• Order and payment records may be stored for longer periods where local regulations require us to keep them.
• Technical logs may be retained for a shorter period, often a few months, unless needed as part of a security investigation.

GardenNest uses a combination of technical and organisational measures to help keep personal data secure. These measures can include access controls, encryption or pseudonymisation where appropriate, secure coding practices and staff awareness.

No online service can be completely risk-free, but we aim to keep risks proportionate and respond promptly if we become aware of an issue that could affect your data.

Depending on where you live and which laws apply, you may have some or all of the following rights:

• to ask whether we process your personal data and to request a copy of it;
• to ask us to correct inaccurate or incomplete information;
• to request deletion of data in certain circumstances;
• to object to specific types of processing, including direct marketing;
• to ask us to limit how we use your data in particular situations;
• to request that we provide data in a portable format where technically feasible;
• to lodge a complaint with your local data protection authority if you are unhappy with how we handle your information.

We will respond to privacy requests in line with applicable laws. To help us locate your data, please provide enough information to identify yourself and describe your request clearly.