Privacy policy.

“Adrian Joy Trading as ‘Joy Farms’” takes your data privacy seriously and as such we have clearly described how we use, store, retain and share your data as detailed in our Data Privacy notice.

Adrian Joy Trading as ‘Joy Farms’ respects and values the privacy of everyone who visits this website, www.joyfarms.co.uk (“Site”) and will only collect and use personal data in ways that are described here, and in a manner that is consistent with our obligations and your rights under the law.

This privacy policy describes the practices we maintain regarding any personal or corporate information that we receive about you. Please take a moment to review our privacy policy and do not hesitate to contact us with any questions or concerns you may have info@joyfarms.co.uk. If you do not accept and agree with this Privacy Policy, you must stop using the Site immediately.

Our website is owned and operated by Adrian Joy Trading as ‘Joy Farms’. Our main trading address is at Openview Farm, Epsom Road, West Horsley, Surrey, KT24 6AP. Our VAT number is 136 9659 69 (“Us”, “We”, “Our”).

From time to time "Joy Farms’ may need to make enhancements to our privacy practices. This may happen as the result of government regulation, new technologies, or other developments in the area of privacy protection. Any updates to our privacy policy will be clearly posted on the Site and can be found at www.joyfarms.co.uk/privacy-policy you will be deemed to have accepted the terms of the Privacy Policy on your first use of the Site following any update.

Please check back periodically to learn more about how Joy Farms is adhering to best practices in safeguarding your privacy.

This privacy policy was last updated in February 2022.

Your rights

As a data subject, you have the following rights under EU Regulation 2016/679 – the General Data Protection Regulation (“GDPR”), which this Policy and Our use of personal data have been designed to uphold:

• The right to be informed about Our collection and use of personal data;

• The right of access to the personal data We hold about you;

• The right to rectification if any personal data We hold about you is inaccurate or incomplete;

• The right to be forgotten – i.e. the right to ask Us to delete any personal data We hold about you (We only hold your personal data for a limited time, but if you would like Us to delete it sooner, please contact Us);

• The right to restrict (i.e. prevent) the processing of your personal data;

• The right to data portability;

• The right to object to Us using your personal data for particular purposes; and

• Rights with respect to automated decision making and profiling.

For the purposes of this Privacy Policy, “personal data” means any and all data that relates to an identifiable person who can be directly or indirectly identified from that data. In this case, it means personal data that you give to Us via the Site.

Information we may collect about you

Depending upon your use of the Site, We may collect some or all of the following personal and non-personal data (please also see below on Our use of Cookies and similar technologies):

• name / address;

• business/company name (where applicable);

• Type of course booked (where applicable);

• How you heard about us e.g. Google search, met at a show

• contact information such as email addresses and telephone numbers;

• IP address;

• web browser type and version;

• a list of URLs starting with a referring site, your activity on Our Site, and the site you exit to;

How we colllect your personal information.

These are the main ways we collect your information:

• If you contact us directly via our websites, visit to our farm or via an email enquiry for information about our products and services.

• If you buy a product or service directly from us.

• If you reply to our direct marketing campaigns, signup to our e-newsletter or at a show.

• If we acquired your personal data from other sources with your permission.

• If you are under 16, please do not provide us with any of your information unless you have the permission of your parent or guardian to do so.

Please help us to keep your information up to date by informing us of any changes to your contact details or preferences. You may change or review your preferences by emailing our Data Compliance Executive on info@joyfarms.co.uk or by writing to us at:

Adrian Joy, Joy Farms,

Openview Farm, Epsom Road,

West Horsley, Surrey, KT24 6AP

How we use your information

All personal data is processed and stored securely, for no longer than is necessary in light of the reason(s) for which it was first collected. We will comply with Our obligations and safeguard your rights under the GDPR at all times.

Our use of your personal data will always have a lawful basis, either because it is necessary for Our performance of a contract with you, because you have consented to Our use of your personal data (e.g. by subscribing to emails), or because it is in Our legitimate interests. Specifically, We may use your data for the following purposes:

· If you are a Joy Farms customer we will use your personal information to fulfill your order.

· Supplying Our services to you (please note that We require your personal data in order to confirm and fulfil your order);

· Personalising and tailoring Our products and services for you;

· Replying to emails from you;

· Supplying you with emails that you have opted into (you may unsubscribe or opt-out at any time by clicking on the link at the bottom of Our emails.

· Market research;

· Analysing your use of the Site and gathering feedback to enable Us to continually improve the Site and your user experience.

With your permission and/or where permitted by law, We may also use your data for marketing purposes which may include contacting you by email, telephone, text or post with information, news and offers on Our products and/or services. We will not, however, send you any unsolicited marketing or spam and will take all reasonable steps to ensure that We fully protect your rights and comply with Our obligations under the GDPR and the Privacy and Electronic Communications (EC Directive) Regulations 2003.

We restrict access to your information to only those persons who need to use it for the relevant purpose.

You have the right to withdraw your consent to Us using your personal data at any time, and to request that We delete it.

Our retention periods are based on business needs and your information that is no longer needed is either irreversibly anonymised or destroyed securely.

We do not keep your personal data for any longer than is necessary in light of the reason(s) for which it was first collected. Data will therefore be retained for the following periods (or its retention will be determined on the following bases):

· If you are a Joy Farms customer, data will be retained for a period of 6 years afterwards, to deal with future enquiries or complaints;

· If you are not a Joy Farms customer, you will be contacted at least once in every 12-month period to obtain your consent to the continued retention of your data. If we do not receive your consent within 30 days, we will attempt to contact you again within a further 30 days. Unless your consent is received within this period, your data will be deleted.

How and Where Do We Store Your Data?

We only keep your personal data for as long as We need to in order to use it as described above in “How we use your information”, and/or for as long as We have your permission to keep it.

Some or all of your data may be stored outside of the European Economic Area (“the EEA”) (The EEA consists of all EU member states, plus Norway, Iceland, and Liechtenstein). You are deemed to accept and agree to this by using the Site and submitting information to Us. If We do store data outside the EEA, We will take all reasonable steps to ensure that your data is treated as safely and securely as it would be within the UK and under the GDPR.

Data security is very important to Us, and to protect your data We have taken suitable measures to safeguard and secure data collected through the Site. Steps We take to secure and protect your data:

We have put in place appropriate security measures to prevent your personal information from being accidentally lost, used or accessed in an unauthorised way. We have put in place procedures to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach where we are legally required to do so. Further details are available on request.

Do We Share Your Data?

We may sometimes contract with third parties to supply services to you on Our behalf. These may include payment processing, delivery of goods, search engine facilities, our own advertising and marketing. In some cases, the third parties may require access to some or all of your data. Where any of your data is required for such a purpose, We will take all reasonable steps to ensure that your data will be handled safely, securely, and in accordance with your rights, Our obligations, and the obligations of the third party under the law.

We may compile statistics about the use of Our Site including data on traffic, usage patterns, user numbers, sales, and other information. All such data will be anonymised and will not include any personally identifying data, or any anonymised data that can be combined with other data and used to identify you.

We may sometimes use third party data processors that are located outside of the EEA. Where We transfer any personal data outside the EEA, We will take all reasonable steps to ensure that your data is treated as safely and securely as it would be within the UK and under the GDPR.

In certain circumstances, We may be legally required to share certain data held by Us, which may include your personal data, for example, where We are involved in legal proceedings, where We are complying with legal requirements, a court order, or a governmental authority.

What Happens If Our Business Changes Hands?

We may, from time to time, expand or reduce Our business and this may involve the sale and/or the transfer of control of all or part of Our business. Any personal data that you have provided will, where it is relevant to any part of Our business that is being transferred, be transferred along with that part and the new owner or newly controlling party will, under the terms of this Privacy Policy, be permitted to use that data only for the same purposes for which it was originally collected by Us. In the event that any of your data is to be transferred in such a manner, you will not be contacted in advance and informed of the changes.

How Can You Control Your Data?

In addition to your rights under the GDPR (see above), when you submit personal data via the Site, you may be given options to restrict Our use of your data. In particular, We aim to give you strong controls on Our use of your data for direct marketing purposes (including the ability to opt-out of receiving emails from Us which you may do by unsubscribing using the links provided in Our emails and at the point of providing your details and by managing your REG Account).

Your Right to Withhold Information

You may access certain areas of the Site without providing any data at all. However, to use all features and functions available on the Site you may be required to submit or allow for the collection of certain data.

How Can You Access Your Data?

You have the right to ask for a copy of any of your personal data held by Us (where such data is held). Under the GDPR, no fee is payable and We will provide any and all information in response to your request free of charge.

Please contact Us for more details info@joyfarms.co.uk.

Our Use of Cookies

“Cookies” are small text files placed on your computer or device by a website when you visit certain parts of it and/or when you use certain features of a website.

Our Site may place and access certain first party Cookies on your computer or device. First party Cookies are those placed directly by Us and are used only by Us. We use Cookies to facilitate and improve your experience of the Site and to provide and improve Our services. Details of the Cookies used by the Site are set out below. We have carefully chosen these Cookies and have taken steps to ensure that your privacy and personal data is protected and respected at all times.

All Cookies used by and on the Site are used in accordance with the relevant parts of the Privacy and Electronic Communications (EC Directive) Regulations 2003 (“Cookie Law”).

Before Cookies are placed on your computer or device, you will be shown a pop up requesting your consent to set those Cookies. By giving your consent to the placing of Cookies you are enabling Us to provide the best possible experience and service to you. You may, if you wish, deny consent to the placing of Cookies; however certain features of Our Site may not function fully or as intended.

Certain features of the Site depend on Cookies to function. Cookie Law deems these Cookies to be “strictly necessary”. These Cookies are identified in the table below as being ‘strictly necessary’. Your consent will not be sought to place these Cookies, but it is still important that you are aware of them. You may still block these Cookies by changing your internet browser’s settings, but please be aware that the Site may not work properly if you do so. We have taken great care to ensure that your privacy is not at risk by allowing them.

The following first party Cookies may be placed on your computer or device:

The Site also uses analytics services provided by Google Analytics & Squarespace & Mailchimp. Website analytics refers to a set of tools used to collect and analyse anonymous usage information, enabling Us to better understand how the Site is used. This, in turn, enables Us to improve the Site and the products and services offered through it. You do not have to allow Us to use these Cookies, however whilst Our use of them does not pose any risk to your privacy or your safe use of Our Site, it does enable Us to continually improve the Site, making it a better and more useful experience for you.

The analytics services used by the Site use the following Cookies to gather the required information:

Name of Cookie - First / Third Party - Provider - Purpose

_ga - Third party - Google Analytics -Various general standard Google Analytics cookies to determine general website usage trends, to distinguish the number of new users from returning, exit points, country from which they are visiting. See overview - https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage

_ga - Third -Google analytics - Used to distinguish users. (2 years)

_gid - Third - Google analytics - Used to distinguish users. (24 hrs)

_gat - Third - Google analytics- Used to throttle request rate. If Google Analytics is deployed via Google Tag Manager, this cookie will be named _dc_gtm_<property-id>.(1 min)

AMP_TOKEN - Third - Google analytics - Contains a token that can be used to retrieve a Client ID from AMP Client ID service. Other possible values indicate opt-out, inflight request or an error retrieving a Client ID from AMP Client ID service. (30 seconds to 1 yr)

_gac_<property-id> - Third - Google analytics - Contains campaign related information for the user. If you have linked your Google Analytics and AdWords accounts, AdWords website conversion tags will read this cookie unless you opt-out. (90 days)

Crumb - Third - Squarespace -Prevents cross-site request forgery (CSRF). CSRF is an attack vector that tricks a browser into taking unwanted action in an application when someone’s logged in. (session)

RecentRedirect - Third - Squarespace - Prevents redirect loops if a site has custom URL redirects. Redirect loops are bad for SEO. (30 minutes)

CART - Third - Squarespace - Shows when a visitor adds a product to their cart (2 weeks)

hasCart - Third - Squarespace - Tells Squarespace that the visitor has a cart

SiteUserInfo - Third - Squarespace - Identifies a visitor who logs into a customer account (3 years)

SiteUserSecureAuthToken - Third - Squarespace - Authenticates a visitor who logs into a customer account (3 years)

Commerce-checkout-state - Third - Squarespace - Stores state of checkout while the visitor is completing their order in PayPal (session)

squarespace-popup-overlay - Third - Squarespace - Prevents the Promotional Pop-Up from displaying if a visitor dismisses it (persistent)

squarespace-announcement-bar - Third - Squarespace - Prevents the Announcement Bar from displaying if a visitor dismisses it (persistent)

ss_cid - Third - Squarespace - (Analytics) Identifies unique visitors and tracks a visitor’s sessions on a site (2 yrs)

ss_cvr - Third - Squarespace - (Analytics) Identifies unique visitors and tracks a visitor’s sessions on a site (2yrs)

ss_cvisit - Third - Squarespace - (Analytics) Identifies unique visitors and tracks a visitor’s sessions on a site(2 yrs)

ss_cvt - Third - Squarespace - (Analytics) Identifies unique visitors and tracks a visitor’s sessions on a site (30 mins)

ss_cpvisit - Third - Squarespace - (Analytics) Identifies unique visitors and tracks a visitor’s sessions on a site (2 years)

ss_cookieAllowed - Third -Squarespace - (Analytics) Remembers if a visitor agreed to placing Analytics cookies on their browser if a site is restricting the placement of cookies (30 days

n/a - Third - Mailchimp - Mailchimp place a single pixel gifs on our website, also known as web beacons, in every email sent by our users. These are tiny graphic files that contain unique identifiers that enable Mailchimp and us to recognize when a subscribers has opened an email or clicked certain links. These technologies record each subscribers email address, IP address, date, and time associated with each open and click for a campaign. We use this data to create reports for us to know about how an email campaign performed and what actions subscribers took.

In addition to the controls that We provide, you can choose to enable or disable Cookies in your internet browser. Most internet browsers also enable you to choose whether you wish to disable all cookies or only third-party cookies. By default, most internet browsers accept Cookies, but this can be changed. For further details, please consult the help menu in your internet browser or the documentation that came with your device.

You can choose to delete Cookies on your computer or device at any time, however you may lose any information that enables you to access the Site more quickly and efficiently including, but not limited to, login and personalisation settings.

It is recommended that you keep your internet browser and operating system up-to-date and that you consult the help and guidance provided by the developer of your internet browser and manufacturer of your computer or device if you are unsure about adjusting your privacy settings.

Pixel Tags

Mailchimp our email provider uses Pixel tags (also called web beacons, clear gifs or web bugs) to track who is reading a web page or e-mail, when, and from what computer. They provide us with information about your interaction with our email messages (if you receive messages in html format) and to record some of the pages you consequently visit on the Site. We use this information so we can provide you with information tailored to your needs and interests, better plan our future services and upgrading visitor information used in reporting statistics. Pixel tag technology is used to analyse the reading habits of our membership in order to review and improve services to members and on occasion may use this for marketing purposes.

Other Websites

The Site may contain links to other websites. This privacy policy only applies to the Site so when you link to other websites you should read their own privacy policies.

Terms and Conditions
Our Terms and Conditions can be found here