Privacy Policy
This Privacy Policy explains how Floristry Academy ("we", "us", or "our") collects, uses, shares, and protects information when you visit our website or interact with our services. The policy is written to be readable, but also precise. Each section includes an inline TL;DR toggle you can open for a quick summary.
1) Scope & acceptance
What this policy covers and what it does not.
This policy applies to this website and our direct interactions. It does not cover third-party sites or services you access via links.
This Privacy Policy applies to information processed in connection with: (a) your use of our website, (b) communications with us (email, forms, or support requests), and (c) any online services or experiences that reference this policy. By accessing or using our website, you acknowledge that you have read and understood this policy.
This policy does not apply to third-party websites, apps, or services that may be linked from our website. Third parties have their own privacy policies, and we encourage you to review them before interacting with those services.
2) Information we collect
Data you provide, data generated by use, and technical data.
We collect what you submit (like name/email in a form), and basic technical logs (IP, device/browser, timestamps) for security and performance. Cookie preferences and theme selection are stored locally.
Information you provide directly. You may choose to provide information such as your name, email address, phone number, and message contents when you contact us, submit forms, or request support.
Technical and usage information. When you use the website, certain information is generated automatically and may be logged: IP address, approximate location derived from IP (city/region level), device type, operating system, browser type, pages visited, time spent, referrer URL, and error events. This data helps us keep the site reliable, prevent abuse, and understand general usage patterns.
Preference data. We store certain preferences such as theme (dark/light) and cookie choices to respect your selections. These preferences are stored using local storage and/or cookies depending on your settings.
3) How we use information
Purposes of processing and practical examples.
We use data to operate the website, respond to you, improve security, and comply with legal obligations. We don’t sell personal information.
Provide and maintain the website. We use technical data to deliver content, optimize performance, and detect downtime or errors.
Communicate with you. If you contact us, we use your contact details and message to respond, troubleshoot issues, or provide requested information.
Protect users and the service. We use logs and security signals to prevent fraud, abuse, and unauthorized access, including rate limiting and anomaly detection.
Improve our offerings. We may aggregate and analyze usage patterns to improve content and user experience (e.g., what pages are most helpful).
Compliance. We may process information to comply with laws, enforce terms, or respond to lawful requests.
4) Legal bases (GDPR-style)
Why we’re allowed to process certain data.
We process data based on consent (optional cookies), legitimate interests (security, basic analytics), and legal obligations. For requests, we process to respond and verify identity.
Consent. Where required, we rely on your consent for non-essential cookies and similar technologies. You can withdraw consent at any time through cookie settings.
Legitimate interests. We process limited technical and usage data to secure our website, prevent abuse, debug issues, and understand how our site is used at a high level. We balance these interests against your rights.
Contract / pre-contract steps. If you request information or services, we process relevant data to communicate and take steps at your request.
Legal obligations. We may retain and process information as required by applicable laws (e.g., tax, accounting, security, and compliance obligations).
5) Cookies & similar technologies
What we store, why, and how to control it.
Essential cookies keep preferences and basic security. Optional analytics cookies can be turned on/off. You can open cookie settings anytime and change your choice.
We use cookies and similar storage technologies (such as local storage) to enable core functionality, remember your settings, and (if enabled) understand usage trends.
Essential cookies/storage help us: store your cookie choice, remember theme preference, and support basic anti-abuse measures. These are generally required for the site to behave consistently.
Optional analytics cookies (if enabled by you) are used to generate aggregated insights (e.g., pages visited, approximate session patterns) to improve site experience. We design analytics to avoid collecting sensitive data and to prioritize aggregation.
You can manage cookie preferences through the cookie banner or by using the “Cookie settings” button. You may also adjust browser-level cookie controls; note that blocking essential storage may reduce site functionality.
6) Sharing & disclosure
When information may be shared and with whom.
We share data only with service providers who help run the site, or when legally required. We don’t sell personal data.
Service providers. We may share limited information with vendors who support hosting, security monitoring, email delivery, and infrastructure operations, under contractual confidentiality and security obligations.
Legal and safety reasons. We may disclose information if required by law, subpoena, or court order, or when we believe disclosure is necessary to protect rights, safety, and the integrity of the service.
Business transfers. If we are involved in a merger, acquisition, or asset sale, information may be transferred as part of that transaction, subject to appropriate safeguards.
7) Data retention
How long we keep information and why.
We keep data only as long as needed: messages for support, logs for security, and preference cookies until you change them or they expire.
We retain personal information for as long as necessary to fulfill the purposes described in this policy, including to provide services, resolve disputes, ensure security, and comply with legal obligations.
Retention periods vary depending on the type of information: support messages are typically kept for continuity and auditing; security logs may be kept for a limited period to investigate incidents; and cookie/storage preferences remain until you change them or they expire.
Where feasible, we de-identify or aggregate data so it no longer identifies you, and retain that in aggregated form for analytics and performance measurement.
8) Security
How we protect information (and what you can do).
We use reasonable safeguards (access controls, monitoring, encryption in transit where available). No system is 100% secure—use strong passwords and avoid sending sensitive data via forms.
We implement technical and organizational safeguards designed to protect information against unauthorized access, alteration, disclosure, or destruction. Measures may include access restrictions, logging and monitoring, secure configuration, and encryption in transit where available.
However, no internet transmission or storage system is guaranteed to be completely secure. If you believe your interaction with us is no longer secure, contact us promptly at [email protected].
Please avoid including sensitive personal information (such as government ID numbers or full payment details) in general contact forms.
9) Your privacy rights
Access, deletion, correction, and preference controls.
You can request access, correction, deletion, and restriction/objection where applicable. You can also manage cookies and withdraw consent anytime.
Depending on your location and applicable law, you may have the right to request: access to your personal information, correction of inaccurate information, deletion, portability, restriction of processing, or to object to certain processing activities.
You may also have the right to withdraw consent where processing is based on consent, without affecting the lawfulness of processing before withdrawal.
To make a rights request, use the “Rights request” button near the top of this page or email us at [email protected]. We may ask for information to verify your identity before fulfilling certain requests.
If you are not satisfied with our response, you may have a right to lodge a complaint with your local data protection authority (where applicable).
10) International transfers
Cross-border processing and safeguards.
Your data may be processed in other countries. When required, we use safeguards like contractual protections and security controls.
We may process information in countries other than your own, including where our service providers operate. Data protection laws vary by jurisdiction.
Where required by law, we implement appropriate safeguards for international data transfers, such as contractual clauses, vendor due diligence, and security measures designed to protect personal information.
11) Children’s privacy
We’re not designed for young children.
We do not knowingly collect personal information from children under 13 (or higher age where required). Contact us if you believe a child provided data.
Our website is not directed to children under 13 years old (or the age threshold defined by applicable law). We do not knowingly collect personal information from such children.
If you believe a child has provided personal information, contact us at [email protected] and we will take appropriate steps to delete that information.
12) Changes to this policy
How updates are communicated.
If we update the policy, we’ll revise the date and may provide additional notice for major changes.
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors.
When we make changes, we will update the “Last updated” date at the top of this page. For material changes, we may provide additional notice on the website.
Your continued use of the website after an update becomes effective constitutes acceptance of the updated policy, to the extent permitted by law.