We appreciate that you care about how your personal information is utilised. Consequently, we are wholly committed to protecting your privacy. Personal information is private and will be treated with the highest confidentiality.
Personal information, such as name, address and email is required to process orders and to ensure that customers receive the best possible service. Such information that is needed for the purpose of accepting secure payments through Sage Pay will be rigorously protected. We will only contact you regarding orders or to send updated information.
With your permission, from time to time we may also send details of products and promotions and inform you of new developments. If you do not wish to receive such information, you may contact us and request removal of your details from our mailing list.
Information will never be shared with any third parties other than Sage Pay, our Payment Service Provider.
Twinklepeeps utilises cookies to gather information. Cookies are text files containing small amounts of information which are placed on your computer, mobile or handheld device (e.g. smart phone or tablet computer) as you browse our Website. Cookies enable us to ‘remember’ when your computer or device accesses this Website. The cookies are essential to the effective operation of our Website and to enable you to shop with us online.
There are two types of cookie (detailed below) you may encounter when using Twinklepeeps.com.
First party cookies
These are our own cookies, controlled by us and used to provide information about usage of our site. Twinklepeeps.com utilises first party cookies for the following purposes:
2. Ensuring our Online Shop functions correctly - e.g. cookies are used to store the shopping cart value and item count for the shopping cart summary and to make sure that the customer is returned to the last page visited after completion of the checkout process. Neither of these two cookies stores personal data. The first of these expires within 3 hours of use and the second expires on closing the browser.
Third party cookies:
These are cookies found in other companies’ internet tools which we are using to enhance our site, for example Facebook or Twitter have their own cookies, which are controlled by them. Twinklepeeps.com utilises the following third party cookies:
3. Survey Monkey - We occasionally utilise the services of Survey Monkey who host surveys enabling us to carry out market research. You can find out further information about the cookies they use here.
Cookies can be switched off by doing the following:
For Microsoft Internet Explorer:
1. Choose the menu 'Tools' then 'Internet Options'
2. Click on the 'Privacy' tab
3. Select the appropriate setting
For Mozilla Firefox:
1. Choose 'Options' from the main menu
2. Click on the 'Privacy icon'
3. Untick the box next to 'Accept cookies from sites'
Alternatively, you may wish to vist www.aboutcookies.org which contains detailed information on how to do this on a wide variety of browsers. You will also find details on how to delete cookies from your computer (including those from this visit) as well as more general information about cookies.
Please note that if you opt to block cookies then you will be unable to place orders on our Website. We will also be unable to use Google Analytics to count your site usage in the statistics that we gather about the use of our Website.
Our Website contains links to other third party websites. Twinklepeeps cannot be held responsible for any content you may find whilst browsing these sites. We encourage you to view the Privacy Policies on these sites.
To summarise, data collected by this site is used to:
a. Receive and fulfill customer orders.
b. Administer and enhance the site and service.
c. Only disclose information to third party for the purpose of goods delivery.
Access to Information
You have a right under the Data Protection Act 1998 to access certain personal data which we hold about you. Please send your request in writing to Customer Service, Twinklepeeps, Moreton Street, Prees, Whitchurch, Shropshire. SY13 2EF. United Kingdom enclosing a cheque for £10 using the heading “Subject Access Request”. We will deal with your request as soon as possible but in any event within the statutory time limit (usually 40 days).
If you have any queries or concerns about this Website or this policy please email us.
Twinklepeeps is PCI DSS Compliant. We have taken the necessary steps to ensure your credit card information is secure.
Our Payment Service Provider is Sage Pay who is the largest independent payment service provider in the UK. Sage Pay provides a secure payment gateway (Level 1 PCI DSS), processing payments for over 24,000 online businesses, including ours. Thousands of businesses outsource their transaction security to Sage Pay. It is their top priority to ensure that transaction data is kept secure at all times.
All transaction information passed between our site and the Sage Pay Systems is encrypted using 128-bit SSL certificates. No cardholder information is ever passed unencrypted and any messages sent to our servers from Sage Payare signed using MD5 hashing to prevent tampering. You can be completely secure in the knowledge that nothing passed to the Sage Pay servers can be examined, used or modified by any third parties attempting to gain access to sensitive information.
Encryption and Data Storage
Once on the Sage Pay systems, all sensitive data is secured using the same internationally recognised 256-bit encryption standards used by, among others, the US Government. The encryption keys are held on state-of-the-art, tamper proof systems in the same family as those used to secure VeriSign's Global Root certificate, making them all but impossible to extract. The data held by Sage Pay is extremely secure and Sage Pay are regularly audited by the banks and banking authorities to ensure it remains so.
Links to banks
Sage Pay has multiple private links into the banking network that are completely separate from the internet, which do not cross any publicly accessible networks. Any cardholder information sent to the banks and any authorisation message coming back is secure and cannot be tampered with.
No individuals within Sage Pay are able to decrypt transaction information or cardholder data. Their systems only allow access to their most senior staff and only in extenuating circumstances (such as investigations of Card Fraud by the Police). Your transaction information and customer card information is secure even from their own employees because their systems never display the full card numbers, even on administration screens. For further information on Sage Pay's security, please click here.