Privacy Policy 2018
  • Introduction

    Our customers are extremely important to Headrow Gallery, and we want to ensure you receive the right balance of information from us at all time, and which most importantly suits you.

    The new General Data Protection Regulation (GDPR) comes into force in May 2018 and this privacy statement explains how we will collect, store, manage and protect your data. It also outlines the types of data that we hold and how we use it to provide services to our customers. We want to ensure we are using your data sensibly and appropriately so that all of our activities, whether it’s an exhibition, a promotion, or a newsletter, are done as effectively as possible with your best interests at heart, and this privacy statement outlines our commitment to you.

  • Who We Are and What We Do

    Headrow Gallery
    588 Harrogate Road, Leeds LS17 8DP, United Kingdom
    +44 (0)113 2694244

    We are a privately owned commercial art gallery and picture framer. In order to trade and to market our services we maintain a database and archived paper and digital files that contain personal data collected by us from customers. As part of our work we process and store personal information in accordance with the Data Protection Act 1998.

  • The Data We Collect

    We maintain a record of all current customers and past customers who have had a financial transaction with us during the past seven years, or who have given us permission to contact them about services and products they are interested in. We obtain information from you when you register on our website, subscribe to our newsletter, or leave us details in person when visiting our trading premises.

    The data we store and process may include :

    • name, title

    • contact details - postal address, email address, phone number and links to social media accounts

    • records of purchases made

    • records of communications sent to you by us or received from you

    • details of website use, such as time, date, IP address and preferences

    Please note : We do not store any credit/debit card details - if you purchase from us, your card information is not held by us, it is collected by our third party payment processors who specialise in the secure online capture and processing of credit/debit card transaction, as explained below.

  • How We Use Your Data

    Unless you have requested otherwise, we will use your data for the following communication and marketing activities, which may be sent by mail, email, telephone and social media :

    • processing orders that you have submitted

    • sending Headrow Gallery publications

    • notification of Headrow Gallery exhibitions and events

    • promotion of products and services

    The customers’ section of the Headrow Gallery website, which is password protected, stores your login details in a secure database, to enable you to purchase products online. The website is hosted by a third party on a secure server. You are responsible for keeping this password confidential, and we ask you not to share your password with anyone.

    Headrow Gallery may use third-party partners to support the activities described above. If you interact with us through a third party (for example, subscribing to the Headrow Gallery newsletter through MailChimp) then we may obtain information from them, but only if you have given them your explicit consent. The receipt of data by Headrow Gallery in this manner is subject to the third party’s own privacy policy and the data obtained is bound by the terms of this privacy statement as soon as it is received by us.

    We may use tools to help us monitor and improve the effectiveness of Headrow Gallery’s communications with you, including tracking whether the emails we send are opened and which links are clicked within a message. We may also monitor visits to our website and use tools such as Google Analytics to improve our website and services.

  • Protecting Your Data

    We are committed to holding your data securely and treating it with sensitivity. All data is held securely in accordance with the Data Protection Act 1998. Your data is held on a database hosted on secure private PCs, under the control of the Proprietor of Headrow Gallery, and company secure servers under the control of the Webmaster. The website is hosted on a secure commercial server. Third party facilities are also used to assist with newsletter distribution (MailChimp). Access to each of the databases is limited to the holder of that database. We will not disclose your data to individuals, organisations or other entities outside of Headrow Gallery, unless we are required to do so by law or order of a court.

    We never sell or rent your personal information to any third parties, or share with third parties for marketing purposes.

    Although most of the information we store and process stays within the UK, some information may be transferred to other countries in an encrypted form as a secure backup facility. We may also hold data for individuals who are outside of the European Economic Area (EEA) and where these countries do not have similar data protection laws to the UK, we will ensure we provide an adequate level of protection in accordance with UK data protection law.

  • Your Choices

    You have a choice about whether or not you wish to receive information from us. If you do not wish to receive communications from us, you can Unsubscribe using the link on emails you receive from us, or select your preferences using the Update Profile link.

    If you change email address, or if any other information we hold is inaccurate or out of date, please contact us with the details provided above.

  • Your Rights

    We consider our relationship with customers to be long term and we will use your details until you tell us you no longer wish to hear from us. We will always try to ensure that the data we hold for you is up to date, reasonable and not excessive.

    You will always have the right to :

    • request access to a copy of the data we hold about you

    • update or amend the information we hold about you

    • ask us to remove your personal information from our records (excluding information that Headrow Gallery is legally obliged to retain)

    • object to the processing of your information for any of the purposes outlined above, including opting-out of all communications from us (excluding communications Headrow Gallery would be legally obliged to send)

    • change your communication preferences at any time

    If you wish to review, verify, correct or request removal of your personal information, object to the processing of your personal data, or request that we transfer a copy of your details to another party, please contact Headrow Gallery in writing. You can email us about this at

    From time to time we may use your information for new purposes not currently described in this statement. If our information practices change some time in the future, we will always publish our policy changes on the Headrow Gallery website.

  • Use of Cookies

    A cookie is a small information file that is sent to your computer and is stored on your hard drive. If you are a registered user of the Headrow Gallery website then your computer will store an identifying cookie file which will save you time whenever you re-visit this website, by remembering your details for you (this happens after selecting ‘Remember me in future’ when you sign-in).

    You can change the settings on your browser to disable and prevent cookies from being stored on your computer at any time. Turning off cookies may result in a loss of functionality when using our website. You can also delete old cookies saved in your browser at any time.

  • Links to Other Websites

    Our website may contain links to other websites run by other organisations. This privacy policy applies only to our website, so we encourage you to read the privacy statements on the other websites you visit.

  • Transferring Your Information Outside Europe

    Some of the software tools that we use have data centres or staff outside of the European Union. Where this is the case, we have chosen to work with companies who have demonstrated that they operate in compliance with UK law. For example, the US based companies whose software we use all comply with the US-EU Privacy Shield regulations. If you are not are not happy for us to share your date with those partners, please do not use our services.

  • We keep this policy under regular review. This policy was last revised in May 2018.

For new releases and special offers, subscribe to our newsletter here...

Powered by nopCommerce