Privacy Policy
1. Introduction
London Lost and Found (“we”, “our”, “us”) is firmly committed to protecting and respecting your privacy. We recognize the importance of preserving the confidentiality and security of your personal data and are dedicated to handling the information you provide to us in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, store, and protect your information when you interact with our website, londonlostandfound.com.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all personal data collected through your use of londonlostandfound.com (“Website”), including any data you may provide to us when you create an account, communicate with us, make a transaction, or use any service we offer. London Lost and Found is the data controller of the personal data processed under this Policy, determining the purposes and manner in which such data is handled.
3. Categories of Data Processed
We collect and process the following categories of personal data:
a. Usage Data
Information concerning your interaction with londonlostandfound.com, including IP address, browser type, referral URLs, pages viewed, session duration, and site navigation paths.
b. Account Data
Personal information provided at registration, such as your full name, residential address, email address, and phone number.
c. Profile Data
Details relating to your preferences, search history, behavioral patterns, language settings, saved items, and user-selected filters.
d. Communication Data
Records of your inquiries and correspondence with our support team, including emails, chat messages, contact forms, and your communication history with us.
e. Technical Data
Device information such as operating system, browser configuration, time zone settings, and mobile or desktop usage data.
f. Transaction Data
Details of items reported, payments made or received, delivery and pick-up information, order history, and transaction metadata.
g. Preference Data
Information regarding your communication and marketing preferences, product interest notifications, and consent to receive targeted updates.
4. Legal Bases for Processing
We process your personal data under the following lawful bases:
– Performance of Contract: Where processing is necessary to fulfill our obligations under a contract with you, such as account management and transaction processing.
– Legitimate Interest: When processing is necessary for our legitimate business interests, such as enhancing user experience, ensuring IT security, and preventing fraud, provided these interests do not override your fundamental rights and freedoms.
– Consent: When you have freely given explicit and informed consent for us to process your personal data for specific purposes, such as receiving promotional communications.
– Legal Obligation: Where processing is required to comply with legal or regulatory obligations.
5. Your Rights
As a data subject, you have the following rights under the GDPR and CCPA, which you may exercise by contacting us at [email protected]:
– Right of Access: You may request confirmation of whether we process your data and obtain a copy of that data.
– Right to Rectification: You have the right to correct inaccurate or incomplete personal data.
– Right to Erasure: In certain circumstances, you may request the deletion of your personal data.
– Right to Restriction: You may request that we limit the processing of your data in specific cases.
– Right to Portability: You may request your personal data be provided to you or another controller in a structured, commonly used format.
– Right to Object: You may object to processing conducted on the basis of legitimate interest or for direct marketing purposes.
– Right to Non-Discrimination (CCPA): You will not receive discriminatory treatment for exercising your data protection rights.
6. Security Measures
We implement a range of technical and organizational safeguards to protect your personal data against unauthorized access, disclosure, alteration or destruction. These include:
– Encrypted data transmission (HTTPS, TLS)
– Role-based access control to restrict data use
– Regular system backups and integrity checks
– Continuous security training and awareness for staff
– Internal policies that promote secure data handling
7. International Transfers
Where personal data is transferred outside the European Economic Area (EEA) or other jurisdictions with similar protections, we ensure such transfers are governed by appropriate legal safeguards, including Standard Contractual Clauses approved by the European Commission or other legally authorized mechanisms that ensure an adequate level of data protection consistent with applicable laws.
8. Data Retention
We retain your personal data only as long as necessary for the purposes for which it was collected and in accordance with applicable legal, regulatory, or operational requirements. Retention periods by category include:
– Usage Data: 12 months
– Account and Profile Data: As long as the account remains active, and up to 6 years after closure
– Communication Data: 3 years
– Technical Data: 12 months
– Transaction Data: 7 years for audit and legal compliance
– Preference Data: Until opt-out or withdrawal of consent
9. Cookie Policy
Our website uses cookies and similar technologies to ensure proper functionality and enhance user experience. These include:
– Essential Cookies: Required for core site operations and account functionality
– Functional Cookies: Enable personalized settings and preferences
– Analytics Cookies: Collect anonymized usage data for site performance and traffic evaluation
– Performance Cookies: Measure and improve the responsiveness of our Website
10. Cookie Management and Compliance
In compliance with GDPR and CCPA, you are given control over your cookie preferences upon visiting londonlostandfound.com. You may modify your choices at any time via our cookie management interface. Additionally, you have the option to disable cookies entirely through browser settings, though this may affect website functionality. For more information, please review our separate Cookie Notice found on our Website.
11. Children’s Privacy
Our services are not directed to, nor do we knowingly collect data from, children under the age of 13. If we become aware that we have inadvertently gathered personal data from a child under 13, we will take appropriate steps to delete such data promptly. If you are a parent or guardian and believe that your child has provided us with personal data, please contact us immediately at [email protected].
12. Policy Updates
We reserve the right to amend this Privacy Policy from time to time to reflect changes in our practices or applicable laws. Any material changes to this Policy will be communicated through prominent notices on our Website. Continued use of our services after an update will be deemed acceptance of the revised terms.
13. Contact
If you have any questions, concerns, or requests relating to this Privacy Policy or our data practices, you may contact our Privacy Team directly at:
Email: [email protected]
Website: https://londonlostandfound.com
We are committed to ensuring lawful and transparent data practices and comply fully with applicable regulations, including GDPR and CCPA. Please don’t hesitate to contact us at the address above with any concerns involving the privacy of your personal data.