Privacy & Cookies

Privacy Policy
  1. D Stewart & Son Limited (“Stewarts”) is committed to compliance with all relevant UK and EU laws in respect of personal data, and to protecting the “rights and freedoms” of individuals whose information Stewarts collects in accordance with the General Data Protection Regulation (GDPR). Throughout this document D Stewart & Son Limited will be referred to as “we”, “our”, or the “company”.
  2. During the course of our activities, we will collect, store and process personal information and we recognise the need to treat it in an appropriate and lawful manner. The types of information that we may be required to handle include details of current, past and prospective employees, suppliers, customers, and others that we communicate with. This policy will help you understand how and why we collect information from you, to whom the information is disclosed and to inform you of your rights regarding your personal data that we hold or process.
Data Protection Principles

Anyone processing personal data must comply with the enforceable principles of good practice specified in the Data Protection Law. These provide that personal data must be:

  1. Processed lawfully, fairly and in a transparent manner.
  2. Collected for specified, explicit and legitimate purposes and not further processed in a way that is incompatible with those purposes.
  3. Adequate, relevant and limited to what is necessary in relation to the purposes for which it is processed.
Types of Information we collect and how it is used

Personal data may be collected about you if you:

  1. Processed lawfully, fairly and in a transparent manner.
  2. choose to sign up to our Early Gardener email newsletter
  3. use our online shop or order products from us
  4. contact us with an enquiry or complaint
  5. provide feedback or participate in any research
  6. enter prize promotions or participate in any research
  7. use our nursery or landscaping services
  8. apply to work or are employed by Stewarts

    9. We only gather personal information, such as name, address and email address, when voluntarily submitted by you. We shall not ask you to supply any personal data as a condition of your use of our website.

    This information is collected to help us:

  1. fulfil your order/contract/application
  2. answer your queries
  3. provide our membership and services, including sending you our 1742 magazine and early gardener mailshot

    With your consent, we may also:

  1. tell you about additional products and services
  2. send marketing information and news to you
  3. tell you about other promotional activities and events
  4. invite you to participate in market research

    5. We have CCTV installed on our premises in public areas for the purposes of prevention and detection of crime.

Data Sharing

We will only share your data with contracted and trusted third parties in order to facilitate our provision of services and offers. This includes the processing and delivery of marketing communications to you and any other third party services engaged to perform payment or business support functions.


We may transfer data that we collect from you to a destination outside the European Economic Area (EEA). By submitting your personal data to us, you agree to this transfer, storing or processing.


We may also disclose personal data as permitted or required by law.


We do not share your data with any third parties outside of the above processing arrangements.

Fair and Lawful Processing

The Data Protection Law is intended not to prevent the processing of personal data, but to ensure that it is done fairly and without adversely affecting the rights of the data subject.


Employees personal data will be processed in accordance with their employment contract or where the processing is necessary to comply with our legal obligations. Personal data received from customers will be processed in accordance with the legitimate interests of the company.

Data Security and Retention of Information

We understand the importance of the secure storage of data provided. Although we take appropriate steps to protect it, we cannot guarantee the security of your data transmitted to our website. Once we have received your data we will use strict security procedures and measures to prevent unauthorised access.


Employees personal data will be processed in accordance with their employment contract or where the processing is necessary to comply with our legal obligations. Personal data received from customers will be processed in accordance with the legitimate interests of the company.


We will retain your personal information for as long as is necessary for the purpose for which it was collected, or as in accordance with applicable laws. In order to assist in ensuring that we are only holding up to date and relevant personal data, we will delete any Privilege Card holder, including any accrued loyalty points, after an account has been inactive for 3 years. This time limit will also apply to our Early Gardener email database, with details being deleted if emails are unopened for 3 years.

Should you wish to unsubscribe from future communications, you can opt out by emailing [email protected]. Please note that you may continue to receive communications for a short period while our systems are updated.

Cookie Policy

What are Cookies?

Cookies are small files which are stored on your computer. They are designed to hold a modest amount of data specific to your website visit on our site. Cookies help to improve your visit to our website by measuring how you use the website so we can make sure it meets your needs.
Please note that cookies can’t harm your computer and we do not store personally identifiable information in cookies we use on this website. We’re giving you this information as part of our initiative to comply with UK legislation, and to make sure we’re honest and clear about your privacy when using our website.


The Cookies we use:


Measuring website usage – Google Analytics

Google Analytics uses cookies to define user sessions, as well as to provide a number of key features in the Google Analytics reports. Google Analytics sets or updates cookies only to collect data required for the reports. Additionally, Google Analytics uses only first-party cookies. This means that all cookies set by Google Analytics for your domain send data only to the servers for your domain. This effectively makes Google Analytics cookies the personal property of this website domain, and the data cannot be altered or retrieved by any service on another domain.


The following table lists the type of information that is obtained via Google Analytics cookies and used in Analytics reports.

Functionality

Description of Cookie

Cookie Used

Setting the Scope of Your Site Content

Because any cookie read/write access is restricted by a combination of the cookie name and its domain, default visitor tracking via Google Analytics is confined to the domain of the page on which the tracking code is installed. For the most common scenario where the tracking code is installed on a single domain (and no other sub-domains), the generic setupis correct. In other situations where you wish to track content across domains or sub-domains, or restrict tracking to a smaller section of a single domain, you use additional methods in the ga.jstracking code to define content scope. See Domains & Directoriesin the Collection API document for details.
All Cookies

Determining Visitor Session

The Google Analytics tracking for ga.jsuses two cookies to establish a session. If either of these two cookies are absent, further activity by the user initiates the start of a new session. See theSessionarticle in the Help Center for a detailed definition and a list of scenarios that end a session. You can customize the length of the default session time using the_setSessionCookieTimeout()method.
This description is specific to the ga.js tracking code for web pages. If you use Analytics tracking for other environments—such as Flash or mobile—you should check the documentation for those environments to learn how sessions are calculated or established.
__utmb
__utmc

Identifying Unique Visitors

Each unique browser that visits a page on your site is provided with a unique ID via the__utmacookie. In this way, subsequent visits to your website via the same browser are recorded as belonging to the same (unique) visitor. Thus, if a person interacted with your website using both Firefox and Internet Explorer, the Analytics reports would track this activity under two unique visitors. Similarly if the same browser were used by two different visitors, but with a separate computer account for each, the activity would be recorded under two unique visitor IDs. On the other hand, if the browser happens to be used by two different people sharing the same computer account, one unique visitor ID is recorded, even though two unique individuals accessed the site.
__utma

Tracking Traffic Sources & Navigation

When visitors reach your site via a search engine result, a direct link, or an ad that links to your page, Google Analytics stores the type of referral information in a cookie. The parameters in the cookie value string are parsed and sent in the GIF Request (in the utmccvariable). The expiration date for the cookie is set as 6 months into the future. This cookie gets updated with each subsequent page view to your site; thus it is used to determine visitor navigation within your site.
__utmz

Custom Variables

You can define your own segments for reporting on your particular data. When you use the_setCustomVar()method in your tracking code to define custom variables, Google Analytics uses this cookie to track and report on that information. In a typical use case, you might use this method to segment your website visitors by a custom demographic that they select on your website (income, age range, product preferences).
___utmv

Website Optimizer

You can use Google Analytics with Google Website Optimizer (GWO), which is a tool that helps determine the most effective design for your site. When a website optimizer script executes on your page, a _utmx cookie is written to the browser and its value is sent to Google Analytics. See theWebsite Optimizer Help Centerfor more information.
___utmx

Once the cookies are set/updated on the web browser, the data they contain that is required for reporting purposes is sent to the Analytics servers in the GIF Request URL via the utmccparameter.


Cookies Set By Google Analytics


Google Analytics sets the following cookies as described in the table below. A default configuration and use of Google Analytics sets only the first 4 cookies in the table.

Name

Description

Expiration

__utma

This cookie is typically written to the browser upon the first visit to your site from that web browser. If the cookie has been deleted by the browser operator, and the browser subsequently visits your site, a new __utma cookie is written with a different unique ID. This cookie is used to determine unique visitors to your site and it is updated with each page view. Additionally, this cookie is provided with a unique ID that Google Analytics uses to ensure both the validity and accessibility of the cookie as an extra security measure.
2 years from set/update.

__utmb

This cookie is used to establish and continue a user session with your site. When a user views a page on your site, the Google Analytics code attempts to update this cookie. If it does not find the cookie, a new one is written and a new session is established. Each time a user visits a different page on your site, this cookie is updated to expire in 30 minutes, thus continuing a single session for as long as user activity continues within 30-minute intervals. This cookie expires when a user pauses on a page on your site for longer than 30 minutes. You can modify the default length of a user session with the_setSessionCookieTimeout()method.
30 minutes from set/update

__utmc

This cookie is no longer used by the ga.js tracking code to determine session status.
Historically, this cookie operated in conjunction with the __utmb cookie to determine whether or not to establish a new session for the user. For backwards compatibility purposes with sites still using the urchin.js tracking code, this cookie will continue to be written and will expire when the user exits the browser. However, if you are debugging your site tracking and you use the ga.js tracking code, you should not interpret the existence of this cookie in relation to a new or expired session.
Not set.

__utmz

This cookie stores the type of referral used by the visitor to reach your site, whether via a direct method, a referring link, a website search, or a campaign such as an ad or an email link. It is used to calculate search engine traffic, ad campaigns and page navigation within your own site. The cookie is updated with each page view to your site.
6 months from set/update.

__utmv

This cookie is not normally present in a default configuration of the tracking code. The __utmv cookie passes the information provided via the _setVar()method, which you use to create a custom user segment. This string is then passed to the Analytics servers in the GIF request URL via the utmcc parameter. This cookie is only written if you have added the _setVar() method for the tracking code on your website page.
2 years from set/update.

__utmx

This cookie is used by Website Optimizer and only set when the Website Optimizer tracking code is installed and correctly configured for your pages. When the optimizer script executes, this cookie stores the variation this visitor is assigned to for each experiment, so the visitor has a consistent experience on your site. See the Website Optimizer Help Centerfor more information.
2 years from set/update.

For further information about the Cookies Google uses please visit this Cookie Information page.