Privacy and cookie statement Every Alstroemeria

Privacy statement

Last updated 1 July 2022

Thank you for visiting the Every Alstroemeria website (" Every Alstroemeria ", " Company ", " we ", " us ", or " our "). We are committed to protecting your personal information and your right to privacy. If you have any questions or comments about our notice or our practices regarding your personal information, please contact us at info@everyalstroemeria.com

We take your privacy very seriously. In this privacy statement, we try to explain to you as clearly as possible what information we collect, how we use it and what rights you have with it. We hope you will take a moment to read it carefully because it is important. If there are any terms in this privacy statement that you do not agree with, please stop using our website and our services.

This Privacy Statement applies to all information collected through our websites, including but not limited to related services, sales, marketing or events (we refer to them collectively in this Privacy Statement as the "Services").

Please read this Privacy Statement carefully as it will help you make informed decisions about sharing your personal information with us.

1. What information do we collect?

Automatically collected information

In brief: Some information - such as IP address and/or browser and device characteristics - is collected automatically when you visit our Website.

We automatically collect certain information when you visit, use or navigate. This information does not reveal your specific identity (such as your name or contact details), but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location , information about how and when you use our apps and other technical information. This information is primarily needed to maintain the security and operation of our website, and for our internal analysis and reporting purposes.

Like many companies, we also collect information through cookies and similar technologies.

Information collected through our apps

In short, we may collect information about your push notifications when you use our apps.

When you use our apps, we may also collect the following information

• Push Notifications. We may ask you to send us push notifications related to your account or the mobile application. If you wish to opt out of receiving these types of communications, you may do so in your device's settings.

2. How do we use your information?

In short, we process your data for purposes that are based on legitimate business interests, the performance of our contract with you, compliance with our legal obligations and/or your consent.

We use personal information collected through our Apps for various business purposes described below. We process your personal information for these purposes based on our legitimate business interests, to enter into or perform a contract with you, with your consent, and/or to comply with our legal obligations. We indicate the specific processing grounds we rely on in addition to each purpose listed below.

Below are some definitions that will help you understand the roles and responsibilities of Every Alstroemeria...:

"Data controller" means a person who (alone or together with other persons) determines the purposes for which and the manner in which personal information is used.

"Data processor", in relation to personal information, means any person (other than an employee of the data controller) who processes the data on behalf of the data controller.

If you provide the data and instructions, you are the data controller and Every Alstroemeria is the data processor.

When determining the purposes for which we collect and use your personal data, we are the data controller. We use the information we collect or receive:

• To enforce our terms and conditions and policies for business, legal and contractual purposes.
• To respond to legal requests and prevent damage. If we receive a subpoena or other legal request, we may need to inspect the information we have to determine how to respond.
• To provide services to the user. We may use your data to provide you with the requested service.

3. Is your information shared with anyone?

In short: we only share information with your consent, to comply with laws, to provide you with services, to protect your rights or to fulfil business obligations.

We may process or share data on the following legal basis:

• Consent: We may process your data if you have given us specific consent to use your personal data for a specific purpose.
• Legitimate interests: we may process your data where this is reasonably necessary to pursue our legitimate business interests.
• Execution of a contract: where we have entered into a contract with you, we may process your personal data in order to fulfil the terms of our contract.
• Legal obligations: we may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, court order or legal process, such as in response to a court order or subpoena (including in response to government agencies to comply with national security or law enforcement requirements).
• Vital interests: we may disclose your information when we believe it is necessary to investigate, prevent or take action regarding possible violations of our policies, suspected fraud, situations involving potential threats to the safety of any person and illegal activities, or as evidence in legal proceedings involving us.

More specifically, we may need to process your data or share your personal data in the following situations:

• vendors, consultants and other third-party service providers. We may share your information with outside vendors, service providers, contractors or agents who perform services for us or on our behalf and need access to such information to do that work. Examples include: payment processing, data analysis, email delivery, hosting services, customer service and marketing efforts. We may allow selected third parties to use tracking technology on the Apps, allowing them to collect data about how you interact with the Apps over time. Among other things, this information may be used to analyze and track data, determine the popularity of certain content, and better understand online activity. Except as described in this policy, we do not share, sell, rent or trade your information with third parties for their promotional purposes.
• Business Transfers. We may share or transfer your information in connection with, or in the course of negotiating, a merger, sale of company assets, financing or acquisition of all or part of our business to another company.
• Third party advertisers. We may use third-party advertising companies to serve ads when you visit the Apps. These companies may use information about your visits to our website(s) and other websites contained in web cookies and other tracking technologies to provide advertisements about goods and services of interest to you.
• Business partners. We may share your information with our business partners to offer you certain products, services or promotions.

4. Do we use cookies and other tracking technologies?

technologies?

In short, we may use cookies and other tracking technologies to collect and store your information. .

We may use cookies and similar tracking technologies (such as web beacons and pixels) to access or store information. You can find specific information on how we use such technologies and how to reject certain cookies in our Cookie Policy.

5. How long do we keep your information?

In short, we will retain your data for as long as necessary to fulfil the purposes set out in this privacy statement, unless otherwise required by law.

We retain your personal information only as long as necessary for the purposes set forth in this privacy statement, unless a longer retention period is required or permitted by law (such as tax, accounting or other legal requirements). No purpose in this policy requires us to retain your personal information for longer than 90 days.

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymise it, or, if this is not possible (for example, because your personal information is stored in back-up archives), we will securely store your personal information and isolate it from further processing until deletion is possible.

6. How do we keep your information safe?

In short, we strive to protect your personal information through a system of organisational and technical security measures.

We have implemented appropriate technical and organisational security measures to protect the security of all personal information we process. However, please note that we cannot guarantee that the Internet itself is 100% secure. While we will do our best to protect your personal information, your transmission of personal information to and from our Apps is at your own risk. You may only access the Services within a secure environment.

7. Do we collect information from

minors?

In short: we do not knowingly collect data from or sell to children under the age of 18 .

We do not knowingly solicit data from or sell to children under the age of 18. By using the Apps, you represent that you are at least 18 years of age or that you are the parent or guardian of such a minor and consent to the use of the Apps by such a dependent minor. If we become aware that personal information of users under the age of 18 has been collected, we will deactivate the account and take reasonable steps to delete such information from our records immediately. If you become aware of any data that we have collected from children under the age of 18, please contact us at info@everyalstroemeria.com.

8. What are your privacy rights?

In short, in some regions, such as the European Economic Area, you have rights that give you more access to and more control over your personal information. You can review, change or terminate your account at any time.

In some regions (such as the European Economic Area), you have certain rights under applicable data protection laws. These may include the right (i) to access and obtain a copy of your personal information; (ii) to request rectification or erasure; (iii) to restrict the processing of your personal information; and (iv) where applicable, to data portability. In certain circumstances, you may also have the right to object to the processing of your personal data. To make such a request, please use the contact details below. We will consider each request and act upon it in accordance with applicable data protection law.

Where we rely on your consent to process your personal data, you have the right to withdraw your consent at any time. However, please note that this does not affect the lawfulness of the processing before the withdrawal.

If you are resident in the European Economic Area and you believe that we are processing your personal data unlawfully, you also have the right to lodge a complaint with your local data protection supervisory authority. You can find their contact details here: http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm .

9. Controls for do-not-track

functions

Most web browsers and some mobile operating systems and mobile applications contain a Do-Not-Track ("DNT") function or setting that you can activate to indicate your privacy preference not to have data about your online browsing activities monitored and collected. There is not yet a uniform technology standard for recognising and implementing DNT signals. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will notify you in a revised version of this Privacy Statement.

10. Do we make updates to this policy?

In short: Yes, we will update this policy as necessary to remain compliant with relevant laws.

We may update this privacy statement from time to time. The updated version will be identified by an updated "Revised" date and the updated version will be effective upon becoming available. If we make material changes to this privacy statement, we may notify you by placing a prominent notice of such changes or by sending you a notification directly. We encourage you to periodically review this Privacy Statement to stay informed about how we are protecting your information.

11. How can you contact us about

this policy?

If you have any questions or comments about this policy, please send an e-mail to info@everyalstroemeria.com

If you are a resident of the European Economic Area, Royal FloraHolland is the "data controller" of your personal data.

12. How can you control the data that we have from you?

collect, edit or

remove?

Under the laws of some countries, you may have the right to request access to the personal information we collect from you, to amend that information or to delete it in certain circumstances. To request access to, update or delete your personal information, please submit a request to us. We will respond to your request within 30 days.

© Every Alstroemeria 2022