Terms

This website is operated by Fistins Limited. 6 Mulberry Vale, Northallerton, DL7 8US.

The ‘site’ refers to fishtins.co.uk.

Goods & Services

All products viewed online are sold subject to written and photographic description. We aim to make these as accurate as possible but please understand that human error may occur, or visuals may alter slightly based on screen settings. Any errors that occur will be rectified by contacting you first and agreeing on a solution. This may be a refund, a replacement or a cancellation of the order. Descriptions and prices are subject to change without notice. We may also remove products from sale without notice.

Occasionally the site may be offline due to technical error or for maintenance.

Refusal of Service

We reserve the right to refuse any order or refuse service to anyone, for any reason at any time. In using our site, you agree to provide current, complete and accurate billing and shipping information for all purchases made at our store. Your use of, or inability to use, the service is at your sole risk.

Links

If you click on a link to an external site we are not responsible for the privacy policy of that site. Please refer to their own code of practice and security measures.

Privacy Policy

When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address and email address. When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system. None of this information is divulged to another party. Furthermore, you can contact us at any time and ask us to remove this information from our system.

Security

Fishtins Limited will never disclose your personal information to another party not mentioned in this Privacy Policy. We employ sensible precaution and practices to ensure it is not inappropriately used, accessed or disclosed.

No internet transmission is 100% secure.

Credit card information is processed and encrypted by Stripe.com and Paypal.com.

In using our site you accept the inherent security risks of providing information over the internet and will not hold us responsible for any breach of security, unless this is due to our negligence.

Both Stripe & Paypal operate integral fraud detection system. Any orders flagged as potrntially fraudulent will be cancelled and the card refunded. The customer in question will be notified.

Privacy Notice

We collect or use the following information to provide services and goods, including delivery:

• Names and contact details

• Addresses

• Purchase or account history

• Account information

• Website user information (including user journeys and cookie tracking)

• Information relating to compliments or complaints

We collect or use the following information for the operation of customer accounts and guarantees:

• Names and contact details

• Addresses

• Purchase history

• Account information, including registration details

• Information used for security purposes

• Marketing preferences

We collect or use the following information to prevent, detect, investigate or prosecute crimes:

• Names and contact information

• Financial transaction information

We collect or use the following personal information for dealing with queries, complaints or claims:

• Names and contact details

• Address

• Account information

Lawful bases and data protection rights

Under UK data protection law, we must have a “lawful basis” for collecting and using your personal information. There is a list of possible lawful bases in the UK GDPR. You can find out more about lawful bases on the ICO’s website.

Which lawful basis we rely on may affect your data protection rights which are in brief set out below. You can find out more about your data protection rights and the exemptions which may apply on the ICO’s website:

• Your right of access - You have the right to ask us for copies of your personal information. You can request other information such as details about where we get personal information from and who we share personal information with. There are some exemptions which means you may not receive all the information you ask for. You can read more about this right here.

• Your right to withdraw consent – When we use consent as our lawful basis you have the right to withdraw your consent at any time. You can read more about this right here.

If you make a request, we must respond to you without undue delay and in any event within one month.

To make a data protection rights request, please contact us using the contact details at the top of this privacy notice.

Our lawful bases for the collection and use of your data

Our lawful bases for collecting or using personal information to provide services and goods are:

• Consent - we have permission from you after we gave you all the relevant information. All of your data protection rights may apply, except the right to object. To be clear, you do have the right to withdraw your consent at any time.

• Contract – we have to collect or use the information so we can enter into or carry out a contract with you. All of your data protection rights may apply except the right to object.

• Legal obligation – we have to collect or use your information so we can comply with the law. All of your data protection rights may apply, except the right to erasure, the right to object and the right to data portability.

Our lawful bases for collecting or using personal information for the operation of customer accounts and guarantees are:

• Consent - we have permission from you after we gave you all the relevant information. All of your data protection rights may apply, except the right to object. To be clear, you do have the right to withdraw your consent at any time.

• Contract – we have to collect or use the information so we can enter into or carry out a contract with you. All of your data protection rights may apply except the right to object.

Where we get personal information from

• Directly from you

• From fraud prevention partners

How long we keep information

We keep your information for as long as you hold an account on our website, or for 28 days after a purchase is made. You can withdraw your consent at any time by deleting your account. Details required to fulfil our obligation to provide goods and services will be retained for 28 days following your most recent purchase from us.

Who we share information with

squarespace.com

This data processor does the following activities for us: squarespace.com provide our store infrastructure, accounts and checkout system.

Squarespace Cookies

Cookies are small files downloaded to a computer when you visit a website. They are designed to improve your experience on that site and do not harm your computer. Cookies used are listed as follows.

Name

Purpose, type, and duration

_acloggedin

• Supports login by Acuity Scheduling client if the client has an account

• Cookie

• January 1, 2025

ACUITY_CART

• Stores details about a client's package, gift, or subscription purchase, including the item purchased and the quantity

• Only applies to the new scheduler

• localStorage

• No expiration

_client_acloggedin

• Supports login by Acuity Scheduling client if the client has an account

• Cookie

• January 1, 2025

_dd_cookie_test

• Tests if cookies are supported

• Cookie

• Expires instantly

_dd_s

• Tracks browser errors

• Cookie

• Four hours

_dd_site_test

• Tests if cookies are supported

• Cookie

• Expires instantly

_grecaptcha

• Helps reduce spam in Acuity Scheduling

• localStorage

• No expiry

_ssid

• Remembers devices for anti-fraud purposes

• Cookie

• Four years

CART

• Shows when a visitor adds a product to their cart

• Cookie

• Two weeks

CHECKOUT_WEBSITE

• Identifies the correct site for checkout when checkout on your domain is disabled

• Cookie

• Session

client_username

• Remembers a logged in Acuity Scheduling client's username between visits

• Cookie

• One year

clientUser

• Stores the Acuity Scheduling client's username, OAuth2 Access Token, and OAuth2 Refresh Token. This cookie is required for functionality of logged-in clients

• Cookie

• 30 days

Commerce-checkout-state

• Stores state of checkout while the visitor is completing their order in PayPal

• sessionstorage

• Session

Crumb

• Prevents cross-site request forgery (CSRF)

• Cookie

• Session

hasCart

• Tells Squarespace that the visitor has a cart

• Cookie

• Two weeks

Locked

• Prevents the password-protected screen from displaying if a visitor enters the correct site-wide password.

• Cookie

• Session

orderStatusSessionToken

• Authenticates a visitor who logs into an order status page.

• Cookie

• One year

PHPSESSID

• Securely authenticates a visitor during their checkout in Acuity Scheduling

• Cookie

• One month

RecentRedirect

• Prevents redirect loops if a site has custom URL redirects. Redirect loops are bad for SEO.

• Cookie

• 30 minutes

remember_client

• Remembers Acuity Scheduling client’s login details if they have an account

• Cookie

• 365 days

siteUserCrumb

• Prevents cross-site request forgery (CSRF)for logged in site users

• Cookie

• Three years

SiteUserInfo

• Identifies a visitor who logs into a customer account

• Cookie

• Three years

SiteUserSecureAuthToken

• Authenticates a visitor who logs into a customer account

• Cookie

• Three years

squarespace-announcement-bar

• Prevents the announcement bar from displaying if a visitor dismisses it

• localStorage

• Persistent

squarespace-likes

• Shows when you've already "liked" a blog post

• localStorage

• Persistent

squarespace-popup-overlay

• Prevents the promotional pop-up from displaying if a visitor dismisses it

• localStorage

• Persistent

squarespace-video-player-options

• Remembers video player selected preferences ( volume, playback speed, and quality) for videos uploaded directly to Squarespace

• localStorage

• Persistent

ss_cookieAllowed

• Remembers if a visitor agreed to placing analytics cookies on their browser if a site is restricting the placement of cookies

• Cookie

• 30 days

ss_sd

• Ensures that visitors on the Squarespace 5 platform remain authenticated during their sessions

• Cookie

• Session

Test

• Investigates if the browser supports cookies and prevents errors

• Cookie

• Session

TZ

• Enables a Acuity Scheduling client’s appointments to display correctly based on their time zone preferences.

• localStorage

• Persistent

stripe.com

This data processor does the following activities for us: stripe.com provide our payment gateway.

You can view Stripe’s privacy and cookie policies at https://stripe.com/gb/legal/privacy-center

paypal.com

This data processor does the following activities for us: paypal.com provide an alternative payment gateway.

You can view Paypal’s privacy and cookie policies at https://www.paypal.com/us/legalhub/paypal/privacy-full

Contact Us

If you have any questions about the above then please write to us at service@fishtins.co.uk or by mail to 6 Mulberry Vale, Northallerton, DL7 8US

Last updated

3 December 2024