Privacy Policy
Find out how we use and protect the personal data that you provide to us.
We are committed to preserving the privacy of all visitors to www.bestheating.com (the Website). Please read the following Policy to understand:
- the personal data we collect about you;
- the purpose for which we collect personal data about you;
- the manner in which we process your personal data;
- with whom your personal data might be shared with; and
- how we protect the personal data which you provide to us.
By either registering as a user of any services provided by us on this Website and/or by using this Website generally you consent and agree to the use of your personal data by us in accordance with this Policy.
The Website and its webpages are operated by Limitless Digital Group Limited (Limitless Digital Group – trading as BestHeating), a company registered in England and Wales. Our registered office is: Dawson Court, Billington Road Industrial Estate, Burnley, Lancashire, BB11 5UB. Our company registration number is 03955231. Our VAT registration number is GB 248 1604 10. Limitless Digital Group and the different brands which belong to the Limitless Digital Group are jointly referred to in this Policy as "we", "us" or "our". A list of the different brands which belong to the Limitless Digital Group can be found at http://www.limitlessdigital.com/.
Limitless Digital Group is a registered Data Controller with the Information Commissioner's Office (ICO) under registration number Z1205869. This means that we are responsible for, and control the processing of, the personal data we collect about you. Details of Limitless Digital Group's notification to the regulator for data protection, may be found in the ICO's Public Register of Data Controllers at www.ico.org.uk.
For the purposes of this Policy, references to "you" or "your" shall mean as a user of the Website and/or a customer of our products and services.
Your use of the Website is also governed by the Website's general Terms and Conditions. Please ensure you have read and understood the Terms and Conditions in addition to this Policy.
-
Personal data which we collect
1.1 We collect personal data about you when you:
- create a new user account with us on our Website;
- purchase or make payments for any of our products or services (Products);
- contact us through our Website;
- contact us by letter, email or telephone;
- post material to our Website;
- post material through our social media pages on sites such as Facebook and Twitter;
- complete customer feedback or surveys;
- sign up for newsletters; or
- enter competitions on our Website.
1.2 The personal data collected in the above manner may include:
- full name;
- postal address;
- email address;
- telephone number;
- payment details; and
- your user account details.
1.3 There may be instances where you provide us with information which is classified as "special categories of personal data", (an example would be where you provide us with special instructions regarding delivery of your Product because you have a disability). We will only process such data for the purpose of providing the Products (e.g. effecting delivery) and in accordance with the requirements of the EU General Data Protection Regulation 2016/679 (GDPR). You can choose whether or not to provide us with any special categories of personal data.
1.4 If you provide us with personal data relating to another person when you order a Product, you confirm that you have the permission of that other person to share their personal data with us.
1.5 We may monitor and record communications with you (such as telephone conversations and emails) in order to maintain customer service standards, assist staff training and fraud prevention/compliance activities.
1.6 If you post material to our social media pages, such material will also be subject to the policies operated by such sites. Please note that we have no control over these policies and you should familiarise yourself with content of these polices before posting.
-
Use of your personal data
2.1 We may collect personal data about you so that we can:
- register you with our Website and to manage any account you hold with us;
- administer our Website services;
- fulfil our agreement with you in respect of any Products you purchase and to process your purchases and obtain payment;
- notify you about important changes and developments to the Website or our Products;
- analyse and profile your purchasing preferences e.g. (market, customer and product analysis) to enable us to:
- provide you with a personalised browsing experience when using the Website; and
- review, develop and improve the Products which we offer and to enable us to provide you and other customers with relevant information through our marketing programme(s);
- aggregate personal data in order conduct research, statistical analysis and behavioural analysis;
- respond to queries, refund requests or questions relating to your order;
- administer any competitions which you enter;
- tailor how we inform you about Products which we think will interest you. An example would be if when you buy one Product type from us, we offer you a related Product at a discounted price; and
- carry out security vetting and detect and prevent fraud.
2.2 We will only use your personal data in the circumstances set out in paragraph 2.1 where it is permitted by law and where:
- we need to use your personal data in order to perform a contract with you;
- we need to use your personal data in order to comply with our legal or regulatory obligations;
- you have given us your consent to use your personal data (if consent is needed, we will ask for this from you separately);
- it is reasonably necessary to use your personal data in order to comply with any legal obligations which we are subject to in the performance of our contract with you; and
- we need to use your personal data in pursuit of the legitimate interest of the improving the Website for the benefit of you and other customers to whom we provide Products.
Marketing
2.3 We would like to send you information by post, email, telephone (including automated calls), text message (SMS) or otherwise about our products and services, competitions and special offers which may be of interest to you.
If you provide us with consent, we will provide you with information about the following brands which belong to the Limitless Digital Group:
- BestHeating
- Big Bathroom Shop
2.4 We will only send you marketing messages when you tick the relevant consent box when you provide us with your personal data. If you have consented to receive such marketing from us, you can opt out at any time. For details on how to ask to be removed from our mailing list(s), please refer to section 4 of this Policy.
Payment Details
2.5 We do not hold or store any payment details which you provide to us when you order a Product. Any payment details you provide will be held by the relevant third party payment provider (e.g. PayPal, Braintree, Amazon Pay).
-
Disclosure of your personal data
3.1 We may share your personal data with the following third parties who may use it for the same purposes as set out in section 2 above:
- to other companies in the Limitless Digital Group group of companies (but only where they are located in the EEA);
- to employees and agents of Limitless Digital Group and other third parties, some of whom may be located outside the EEA, to administer any accounts and any Products provided to you by Limitless Digital Group now or in the future;
- to third parties who provide us with technological support that enables us to administer any accounts and any Products provided to you. Examples include our web hosting providers, our enterprise resource planning (ERP) providers, our ecommerce platform providers, our saas providers and our payment gateway and payment service providers;
- to our third party logistics and delivery providers who deliver Products to you on our behalf;
- to agents who (on our behalf) profile your data so that we may tailor the Products we offer to your specific needs;
- to anyone to whom we transfer our rights and duties under our agreement with you to supply Products; and
- if we have a duty pursuant to the law to do so or if the law allows us to do so.
3.2 We may also share your personal data with third parties in order to comply with our legal or regulatory obligations.
3.3 We will not and do not sell your personal data to any third party for marketing purposes.
-
How can I get my name removed from the BestHeating.com mailing list(s)?
4.1 If you have opted in to our mailing list, and no longer wish to receive our newsletter or other promotional communications, you may opt-out of receiving such communications by following the instructions that are included in each communication. You may also opt out by:
- writing to our Data Protection Officer quoting "security and privacy enquiry" at Limitless Digital Group Limited [Trading as BestHeating], Unit 1 & 2 Dawson Court, Billington Road Industrial Estate, Burnley, Lancashire, BB11 5UB;
- phoning our Customer Services Department on 0330 027 1490; or
- via email at dpo@bestheating.com.
4.2 Please be aware that you may still receive communications from us until we have had a reasonable opportunity to process your request.
-
Consent
5.1 In those cases where we need your consent to hold and process your personal data, we will ask you to check a box on the relevant form or webpage requiring consent. By checking these boxes you are stating that you have been informed as to why we are collecting your personal data, how it will be used, for how long it will be kept, who else will have access to it and what your rights are as a data subject (all of which is set out in this Policy).
-
How we keep your personal data secure
6.1 To protect your personal data we have policies and procedures in place to make sure that only authorised personnel can access your personal data, that personal data is handled and stored in a secure and sensible manner, and that all systems that can access the personal data have the necessary security measures in place.
6.2 Please note that the internet is not a secure medium and we cannot guarantee the security of any data you disclose online. You accept the inherent security risks of providing information and dealing online over the internet and will not hold us responsible for any breaches of your data protection rights attributable to the transmission of your personal data over the internet.
-
How long do we keep your personal data
We shall retain your personal data for as long as is reasonably necessary for the purposes listed in paragraph 2.1 unless we are required by law to retain your personal data for a longer period.
-
Your rights
8.1 You may exercise your rights below by contacting us using the contact details in section 16 of this Policy or by calling 0330 027 1490.
The right to access personal data we hold on you
8.2 At any point you can contact us to request the personal data we hold on you as well as why we have that personal data, who has access to the personal data and where we got the personal data. Once we have received your request we will respond within a reasonable time period (and in any event no longer than 30 days from the date of your request). Please contact our Data Protection Officer or email dpo@bestheating.com to request to see your personal data.
The right to correct and update the personal data we hold on you
8.3 If the data we hold on you is out of date, incomplete or incorrect, you can inform us and we will ensure that it is updated. If you are concerned that any of the personal data we hold on you may be incorrect, and you are unable to change it yourself as described below, please contact our Data Protection Officer or email dpo@bestheating.com.
The right to have your personal data erased
8.4 If you feel that we should no longer be using your personal data or that we are not entitled to be using your personal data, you can request that we erase the personal data we hold. When we receive your request, we will confirm whether the data has been deleted or tell you the reason why it cannot be deleted. Please contact our Data Protection Officer or email dpo@bestheating.com to request that we delete your personal data.
The right to object to processing of your personal data
8.5 You have the right to request that we stop processing your personal data. Upon receiving the request, we will contact you to tell you if we are able to comply or if we have legitimate grounds to continue to process your personal data. If we no longer process your personal data, we may continue to hold your personal data to comply with your other rights or our legal regulatory obligations. Please contact our Data Protection Officer or email dpo@bestheating.com to request that we stop processing your personal data.
The right to ask us to stop contacting you with direct marketing
8.6 You have the right to request that we stop contacting you with direct marketing. Further details on this can be found at section 4 of this Policy.
The right to data portability
8.7 You have the right to request that we transfer your personal data to another controller. Once we have received your request, we will comply where it is feasible to do so. Please contact our Data Protection Officer or email dpo@bestheating.com if you want us to transfer your personal data to another controller.
-
Cookies
Use of Cookies
9.1 New technologies are emerging on the internet that help us to deliver customised user experiences. In particular, there is a technology called "cookies" which may be used by us to provide you with, for example, customised information from our Website. In most cases we will need your consent in order to use cookies on the Website. The exception is where the cookie is essential in order for us to provide you with Products you have requested.
9.2 More information on the specific types of cookies we collect and how to manage them can be found on our Cookies page.
-
Google Signals
This Google Analytics feature records data about how users use our site across multiple devices and sessions. This data includes, among other things, your location, your search and YouTube history as well as demographic data (site visitor data). We may use this data for customized advertising with the assistance of Google Signals. If you have a Google account, your site visitor information will be linked to your Google account by Google Signals and used to send you customized promotional messages. The data is also used to compile anonymized statistics of our users’ online patterns.
-
IP address
Your browser also generates other information, including which language the Website is displayed in, and your Internet Protocol address (IP address). An IP address is a set of numbers which is assigned to your computer (or other electronic device) during a browsing session whenever you log on to the internet via your internet service provider or your network (if you access the internet from, for example, a computer at work). Your IP address is automatically logged by our servers and used to collect traffic data about visitors to our Website. We also use your IP address to help diagnose problems with our server, and to administer our Website. We do not use your IP address to identify you personally.
-
Other websites
Please be aware that our Website may contain links to other websites which may be accessed through our Website. These websites are outside of our control and are not covered by this Policy. If you access other websites using links on our Website, we are not responsible for the data policies or procedures or the content of these linked websites.
-
Anti-spam policy
What is spam?
12.1 Spam, also known as junk mail, is an unsolicited commercial email message, commonly sent in bulk email messages. Unsolicited means that the recipient has not granted verifiable permission for the message to be sent. Bulk means that the message is sent as part of a larger collection of messages, all having substantively identical content. The term 'spamming' refers to transmitting, distributing or delivering any unwanted commercial e-mail correspondence, especially in mass quantities, through the electronic means of communication.
Measures to prevent spam
12.2 We take the following measures to prevent spam:
- mailing list subscribers must specifically opt-in to Limitless Digital Group emails to receive them. The nature of the emails people will be sent is fully disclosed, both on the page the subscription is made from and with a prominent link to this Policy;
- we do not use bought-in lists, rented lists or lists that use appended email addresses;
- we do not use email addresses that are scraped or copied and pasted from the web, or harvested in any way;
- we do not have a subscription form that subscribes users to an unrelated list;
- we do not send out unrelated offers or unrelated content to our recipients on our newsletter list; and
- we do not email people who have requested to be removed from our mailing lists.
-
Mailing practices
14.1 We do not modify the headers of any message in such a way that purposefully makes the origin of the message unclear.
14.2 All undeliverable addresses are removed from all future mailings after no more than 3 bounces.
14.3 All mailings provide clear and simple to follow instructions for opting-out of future mailings, and all reasonable attempts are made to facilitate the removal of a mailing list subscriber at their request.
14.4 Personal data submitted to us is only available to employees managing this personal data for the purposes of contacting members of our lists. We have security policies in place to ensure that our mailing list data is secure from theft and misuse.
14.5 If you receive an email message that you think is spam which is sent from or sent on behalf of Limitless Digital Group, please let us know the details of the email using the email address detailed below and we will then investigate the matter.
14.6 If you have questions regarding our anti-spam policy, please contact us by sending an email to the following email address: dpo@bestheating.com.
-
Contact us
15.1 If you have any questions/comments about this Policy in general, you can email us at: dpo@bestheating.com.
15.2 You can also write to our Data Protection Officer quoting "security and privacy enquiry" via email at dpo@bestheating.com or via post at Limitless Digital Group Limited Trading as BestHeating, Unit 1 & 2 Dawson Court, Billington Road Industrial Estate, Burnley, Lancashire, BB11 5UB.
-
Changes to Policy
16.1 We keep our Policy under regular review. We may amend and update this Policy from time to time. You should check this Policy regularly to ensure that you are aware of the most recent version that will apply each time you access the Website.
16.2 Where we have made any changes to this Policy which affects the manner in which we use your personal data, such changes will be posted on the Website and where appropriate, through email.
-
Data Protection Officer
17.1 All comments, queries and requests relating to our use of your personal data are welcomed and should be addressed to:
Data Protection Officer
Limitless Digital Group Limited
Dawson Court
Billington Road Industrial Estate
Burnley
Lancashire
BB11 5UBOr via email at dpo@bestheating.com
17.2 This Policy was last updated on 4th May 2023.