Information We Collect

When you reach out to us for corporate floral arrangements or gift services, we gather details you share willingly. This includes your name, business name, email address, phone number, delivery addresses, and any specific requirements for your floral needs. Payment details are collected during checkout, though they are securely processed by our payment partners.

For corporate clients, we may obtain additional business details such as company registration information, preferred delivery timelines, and budget constraints. This enables us to deliver a tailored service that aligns with your business needs.

Our site automatically gathers certain technical data when you visit. This includes your IP address, browser type, device information, and how you navigate our site. We use this information to enhance site performance and understand how clients discover our services.

How We Use Your Information

We primarily use your personal information to fulfill flower orders and deliver excellent service. This includes processing orders, coordinating deliveries, sending order confirmations, and following up to ensure your satisfaction.

• Processing and completing your flower orders and gift arrangements
• Communicating about order status and delivery timing
• Providing customer support and addressing your inquiries
• Improving our services based on your feedback and preferences
• Sending relevant updates about our services (with your consent)
• Maintaining records for business and legal compliance purposes

We also utilize aggregated, non-personal data to understand market trends and optimize our operations. For example, we may analyze popular types of arrangements by season to better manage inventory.

With your explicit consent, we may share information about seasonal offerings, special promotions, or new services that could interest your business. You can opt out at any time by using the unsubscribe link in our emails or contacting us directly.

Information Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. Your data stays within our business ecosystem and is shared only when necessary to provide our services or to comply with legal obligations.

We collaborate with trusted service providers who assist us in delivering our services. This includes payment processors, delivery partners, and flower suppliers. These partners are contractually bound to safeguard your information and use it solely for the services they provide to us.

We may disclose your information if required by United Kingdom law, court orders, or government regulations. This includes compliance with GST regulations, business licensing requirements, and other legal obligations applicable to our operations in London and across United Kingdom.

Data Security and Protection

We treat data security with utmost seriousness and employ multiple protective layers. Our systems use encryption for sensitive data in transit, secure servers for storage, and regular security updates to guard against threats.

We also implement physical security measures for our office systems, and access to personal information is restricted to staff who require it for their work. Our team receives ongoing training on privacy practices and data handling.

Payment information is processed through secure, encrypted systems that meet industry standards. We do not store full credit card numbers on our systems—this information is managed by certified payment processors specializing in secure financial transactions.

While we maintain strong security measures, no system is completely risk-free. We continuously monitor and update our security practices to address evolving threats and uphold high protection standards.

Your Rights and Choices

You have several rights concerning your personal information. You can request to view the data we hold, ask us to correct inaccurate information, or request deletion where legally permissible.

• Access your personal information and understand how we use it
• Request corrections to inaccurate or outdated information
• Ask us to delete your personal information (subject to business and legal requirements)
• Opt out of marketing communications while continuing to receive service-related messages
• Request details about how your data has been shared
• Submit complaints about our privacy practices

We retain your information only as long as needed for business purposes and legal requirements. Order records are kept for accounting and warranty reasons, while marketing preferences remain until you request removal.

When information is no longer needed, we securely delete or anonymize it. Some data may be kept longer if required by United Kingdom business laws or for legitimate interests like fraud prevention.

Cookies and Website Technology

Our site uses cookies to enhance your browsing experience and to help us understand how visitors use our site. Cookies are small files stored on your device that remember preferences and enable certain site features.

Essential cookies are needed for proper site function—they enable basic navigation and access to secure areas. These cookies do not collect personally identifiable information and are enabled automatically when you use our site.

We employ analytics cookies to learn how visitors interact with our site. This helps us identify popular content, optimize page performance, and improve the user experience. This data is collected in aggregate form and does not identify individuals.

You can adjust cookie preferences through your browser settings. Note that disabling certain cookies might affect some features and your overall browsing experience.

Business Transfers and Changes

If GrovePaperStudio undergoes major business changes such as mergers, acquisitions, or asset sales, your personal information may be transferred as part of the transaction. We would inform you of any such changes and ensure your data remains protected under privacy standards consistent with this policy.

In the unlikely event that we cease operations, we would ensure your personal information is either securely transferred to a successor business (with appropriate privacy protections) or securely deleted according to data protection best practices.

Updates to This Privacy Policy

We may periodically update this privacy policy to reflect changes in our practices, services, or legal requirements. When significant changes occur, we will notify you by email or post an update on our website before the changes take effect.

Minor updates for clarity or administrative adjustments may be made without prior notice. We encourage you to review this policy from time to time to stay informed about how we protect your privacy.

Children's Privacy

Our services are designed for businesses and adult consumers. We do not knowingly collect personal information from individuals under 18. If we learn that we have inadvertently collected data from someone under 18, we will promptly remove that information from our systems.

Parents or guardians who believe we may have information from their child can reach out using the contact details below, and we will address the situation promptly.

International Data Considerations

Our primary operations are based in United Kingdom, and we store and process data within United Kingdom jurisdiction. However, some of our service providers may process data internationally. When this occurs, we ensure appropriate safeguards are in place to protect your information according to applicable privacy laws.

We comply with United Kingdom data protection laws and regulations, including those related to business operations, financial transactions, and customer data handling. Our practices align with evolving privacy standards in United Kingdom's digital economy.