Who we are:

Suggested text: Our website address is: https://thebakersshop.net.

The Bakers Shop collects data:

We try to store only enough personal information to fulfil your order and to monitor the performance and health of our website.

This includes:

• Your Name
• Your Email address so we can send confirmation emails
• A contact telephone number if we need to contact you about your order
• Delivery details of the order (recipient’s name, address, delivery instructions)
• Your order history and details of the items purchased
• Any personalised messages or customisation related to your order
• A hashed representation of your password (should you choose to create an account)
• Any correspondence or communication with us.
• Automated technologies or interactions. As you interact with our website, we may automatically collect technical data about your equipment, browsing actions and patterns. We collect this data by using cookies, server logs, website user tracking, session replay and other similar technologies.

Third Party Data Sharing:

We share some essential items of your personal data with carefully selected service providers in order to process your order. Order particulars such as postcode may dictate which of these we will send your details to. Here is a breakdown of these essential providers, what personal data we share with them and why:

Postmark

Postmark is a third-party service provider that specializes in email delivery and management. When you place an order on The Bakers Shop website, your email address and the contents of any emails related to your order are shared with Postmark for the purpose of sending confirmation emails and other relevant communications.

Here’s a more detailed breakdown of the information shared with Postmark:

1. Email Address: Your email address is shared with Postmark so they can send confirmation emails regarding your order, including order confirmation, shipping updates, and any other necessary communications related to your purchase.

2. Contents of Emails: This refers to the actual content of the emails sent to you by The Bakers Shop, including any personalized messages, order details, or other information related to your purchase. Postmark requires access to this information to properly deliver and manage the emails sent to you.

Comments:

Suggested text: When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

Suggested text: If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies:

Suggested text: If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites:

Suggested text: Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with:

Suggested text: If you request a password reset, your IP address will be included in the reset email.

How long we retain your data:

Suggested text: If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data:

Suggested text: If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where your data is sent:

Suggested text: Visitor comments may be checked through an automated spam detection service.

DATA  SECURITY:

Ensuring data security in a baker’s shop is paramount, despite it not being traditionally associated with digital information protection. However, in today’s interconnected world where customer information, financial records, and business operations are often managed digitally, the need for robust data security measures cannot be overstated. The baker’s shop must implement protocols to safeguard sensitive information such as customer payment details, employee records, and proprietary recipes from unauthorized access, theft, or manipulation.

Implementing data security measures begins with conducting a comprehensive risk assessment to identify potential vulnerabilities and threats to the bakery’s data infrastructure. This includes securing the network through encryption, firewalls, and regular software updates, as well as implementing access controls to limit who can view or modify sensitive information. Regular staff training on data security best practices is also essential to ensure that employees understand their role in maintaining the integrity and confidentiality of the bakery’s data. By prioritizing data security, the baker’s shop can protect both its customers and its business interests from potential cyber threats and breaches.  

Website Security:

Ensuring website security for a bakery shop’s online platform is crucial for protecting customer information, maintaining trust, and safeguarding against cyber threats. Here are some essential measures that a bakery might take to enhance website security.

Payment Security:

We do not store any of your credit or debit card details on any of our servers. When you enter these details, they are encrypted by our bank’s payment gateway service. You may therefore be requested to enter additional details to confirm payments. Ensuring payment security is paramount for a bakery shop to protect both the business and its customers from financial fraud and data breaches. 

List of cookies we collect: