Need help? 0371 200 0724

Privacy Policy

About this Privacy Policy
1. What personal data do we collect?
2. When do we collect your personal data?
3. How do we use your personal data and what are our legal justifications for doing so?
4. Who do we share your personal data with?
5. Your rights
6. Security and retention of your personal data
7. Changes to this privacy policy

 

About this Privacy policy

We know how important it is for you to understand how we use your data. This Privacy policy sets out how and why we collect, store, process and share your personal data. We will always be transparent with you about what we do with your personal data.

This Policy also tells you what your rights are in relation to the personal data you give to us. If you have any questions about this Privacy policy or your rights under it please contact:

This website is operated on behalf of IKEA by Voucher Express. Voucher Express are responsible for processing any orders placed on this website. For the purposes of current data protection legislation, IKEA are the Data Controller and Voucher Express are the Data Processor.

Voucher Express (Data Processor)

Voucher Express (company number: 543174) (“Voucher Express”) and our registered address is Metcalfe House, 23h Kirkgate, Ripon, North Yorkshire, HG4 1PB. Voucher Express is the “data processor” of any personal data it may collect, process and hold about you, unless we inform you otherwise.

Address: DPO, IKEA Gift Cards, Metcalfe House, 23h Kirkgate, Ripon, North Yorkshire, HG4 1PB

Phone0371 200 0724

Emaildpo@voucherexpress.co.uk

IKEA Limited (Data Controller)

IKEA Limited (company number: 01986283) (“IKEA”) and our registered address is Witan Gate House, 500-600 Witan Gate West, Milton Keynes, Buckinghamshire, MK9 1SH. IKEA is the “data controller” of any personal data it may collect, process and hold about you, unless we inform you otherwise.

 

1. What personal data do we collect?

The personal data we collect from you directly can include your name, email address, personal message (if included) mobile/landline telephone number, address, your credit, or debit card or other payment information, and information you give us when you contact our customer services team or when you engage with our social media platform (for example by tagging us in a post on Instagram).

If you are using a mobile device and shopping with us online or browsing our website, we may collect your IP address or other device identifier, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, and other portable device information.

We may, where we have a lawful basis for doing so, also collect personal data about you from third parties who provide us with additional publicly available information about you.

 

2. When do we collect your personal data?

 

3. How do we use your personal data and what are our legal justifications for doing so?

To make our products and services available to you

We use your personal data to provide you with the information, products and services that you request or purchase from us (i.e. to complete certain tasks, processes or orders on our website or within our apps, take payment online (where applicable) and deliver your products or services), and to communicate with you regarding those products and services that you purchase from us and respond to your questions and comments;

We may also use your personal data to measure how satisfied our customers are and provide customer service (including troubleshooting in connection with purchases or your requests for services or when you ask us questions on social media);

We rely on our contractual arrangements with you as the lawful basis on which we collect and process your personal data when you make an order for products and services. Alternatively, in some cases, we rely on our legitimate interests as a business (for example, to measure customer satisfaction and troubleshoot customer issues). Where we rely on our legitimate interests, we will always make sure that we balance these interests against your rights.

For administrative and internal business purposes

We may use your personal data for our internal business purposes, such as enhancing our site, improving our services and products and identifying usage trends. We may also use your data to monitor the use of our website and ensure that our website is presented in the most effective and relevant manner for you and your device and setting default options for you (such as language and store location);

It is in our legitimate interests as a business to use your personal data in this way. For example, we want to ensure our website is customer friendly and works properly and that our products and services are efficient and of high quality. We also want to make it easy for you to interact with us. Where we rely on our legitimate interests, we will always make sure that we balance these interests against your rights.

For security and legal reasons

We use your personal data to:

In some cases, we will use your personal data because it's necessary for us to comply with a legal obligation (such as if we receive a legitimate request from a law enforcement agency). In other cases (such as the detection of fraud) we will rely on our legitimate interests as a business to use your personal data in this way. Where we rely on our legitimate interests, we will always make sure that we balance these interests against your rights.

 

4. Who do we share your personal data with?

We will never sell any of your personal data to a third party. However, in order for us to provide our services to you, we share your personal data with our trusted third party service providers or our group companies, as detailed below. Whenever we share your personal data, we put safeguards in place which require these organisations to keep your data safe and to ensure that they do not use your personal data for their own marketing purposes.

Third party service providers

To fulfil orders for products and services

We work with a number of trusted service providers who carry out services on our behalf. When you purchase products and services from us, the services provided by these organisations includes delivery, product assembly and installation, waste removal and processing payments. It is in our legitimate interests as a business to work with these service providers since we may not have the capabilities to provide these services ourselves. In each case, we will ensure that the service provider is only allowed to use your personal data in order to provide the services to us and for no other purpose.

To prevent crime and comply with laws

We share your financial information including your credit, debit card or other payment information with third parties to ensure that your payment is safe and that your details are not being used fraudulently. This data sharing enables us to conduct fraud analysis which ensures that genuine and accurate payment details are provided to us for any purchase. We may share your personal data with credit agencies if you are requesting credit.

There may be other scenarios where we are subject to a legal obligation to share or disclose your personal data, such as with law enforcement agencies or public authorities in order to prevent or detect crime or fulfil a legal requirement.

Other professional services

We may need to disclose your personal data to our insurers where we believe that it is required under our contractual relationship with our insurance provider to do so.

Transfer of your personal data outside the EEA

We may transfer to and store the information we collect about you in countries other than the country in which the information was originally collected, including the United States and other destinations outside the European Economic Area (“EEA”), in accordance with applicable law. Those countries may not have the same data protection laws as the country in which you provided the information. When we transfer your information to other countries, we will protect the information as described in this Privacy Statement and comply with applicable legal requirements providing adequate protection for the transfer of information to countries outside the EEA. This includes by entering into the European Commission’s EU Standard Contractual Clauses with the data recipient or ensuring that the data recipient has implemented Binding Corporate Rules. To obtain a copy of the safeguards we have put in place, please contact us as indicated below.

5. Your rights

You have a number of rights relating to your personal information and what happens to it. You are entitled to:

You can read more about your rights, including the circumstances in which they apply, in the Guidance from the UK Information Commissioner’s Office (ICO) https://ico.org.uk/for-the-public. You also have the right to complain about our use of personal data to the ICO. You can do these by contacting the ICO via their website https://ico.org.uk/concerns or by calling 0303 123 1113.

If you would like to speak to us in relation to any of your rights, please contact us.

 

6. Security and retention of your personal data

Security of your personal data

We take the security of your personal data very seriously. We have implemented various strategies, controls, policies and measures to keep your data secure and keep these measures under close review. We protect your data by using encryption techniques and we use other safeguards such as firewalls and password protection. This means that your data is protected and only accessible by co-workers who need it to carry out their job responsibilities. We also ensure that there are strict physical controls in our buildings which restricts access to your personal data to keep it safe.

Retention of your personal data

In broad terms, we will only retain your personal data for as long as is necessary for the purposes described in this Privacy policy. This means that the retention periods will vary according to the type of the data and the reason that we have the data in the first place.

We have procedures in place regarding our retention periods which we keep under review taking into account our reasons for processing your personal data and the legal basis for doing so.

 

7. Changes to this Privacy policy

We may update this Privacy policy from time to time. If we make significant changes we will let you know but please regularly check this policy to ensure you are aware of the most updated version.

This Privacy policy was last updated on 14th May 2018.