How we collect and use your personal data
Most of the personal information we process is provided to us directly by you when you:
- Complete the Contact Us form on our website
- Complete a New Client Account form
What we collect about you and how we do this depends on:
- What Beamish services you use
- How much personal data we need to provide these services
This includes but is not limited to the following:
- Beamish website
When you visit our website and complete the Contact Us form, we collect your: query, name, email address, company name, and location.
Beamish will use this information to contact you about your query and to offer products and services that may be of interest to you.
There are a number of different types of cookies and at Beamish International Ltd we use functional cookies so that we recognise you on our website and remember your previously selected preferences. These could include what language you prefer and location you are in. A mix of first-party and third-party cookies are used.
We also use performance cookies to collect data for statistical purposes on how you use our site.
No personally identifiable information is stored in cookies.
Please refer to the Terms & Conditions
We also collect the following data using Google Analytics:
- data about how you use our website, for example which pages you view, how much time you spend on them, which links you click on and what you search for
- information about your computer, including your device type, browser type and screen size
- geographic location
- the language used to display our website
- the website you came from, if you clicked on a link on a different website to get to our website
We collect this data to help:
- understand how people interact with our website
- improve our website and services
- make sure we're meeting the needs of our users
- Social media
To understand how your personal data is processed when using Beamish's social media channels, you can view privacy policies for:
- New Client Account form
When you complete a New Client Account form, we will use the details you provide to fulfil orders you have placed with us. We will also learn from your whisky preferences to enable us to offer you products and services that we feel may be of interest to you. You can opt out from these offers at any time, by selecting Unsubscribe at the bottom of the email or by updating your preferences.
In order to fulfil our contractual obligations to you, we will only share strictly necessary information with our trusted partners such as brand owners and logistics providers. Aside from order processing, we do not share your personal data with anyone else, and we never sell your personal data.
Confidentiality, storage and security of personal data
We're committed to the confidentiality and privacy of our users. Any personal information you give us will be held securely. It will not be sold or traded to another organisation or company.
We sometimes need to share personal information in order to fulfil our contractual obligations. If we share personal data with an external company or service we employ as part of our work, we make sure:
- it will be held securely
- they'll only use it to provide the services or information you've asked for
How we protect your data
The security and protection of your personal information are of utmost importance to us therefore we implement thorough measures to ensure the secure storage of your data. Your information is contained behind secured networks on web-based systems and is only accessible by a limited number of people with special access rights to such systems. They are contractually required to keep confidential any personal data they can access.
We refrain from storing paper records containing personal data.
How long we keep your data
We hold your data for as long as is necessary in order to fulfil our services to you and whilst we have a business relationship. You will have the opportunity to opt-out or update or delete personal data at any point should you need to do so and details are set out in this policy as to how to achieve this. Our need to use your personal information will be reassessed on a regular basis and we will dispose of personal data which we no longer require.
Legal basis for processing your personal data
Under data protection law, we must have a legal basis to collect, store and use your personal data. If we also use sensitive personal data, we need a second legal basis.
The legal basis for processing most of the personal data we use is that it's necessary:
- when you have given consent
- when we make a contract with you
- to protect your (or someone else's) interests
- to protect our legitimate corporate interests (to develop our products or services and grow our business)
Your rights under data protection law
You may have a right to request:
- a copy of the information that Beamish holds about you ('subject access request' (SAR) in the UK GDPR)
- that anything inaccurate in your personal data is corrected ('rectification' in the UK GDPR)
- that we remove your personal data ('right to erasure' in the UK GDPR)
- that we use your personal data only in specific circumstances ('restriction' in the UK GDPR)
- that we stop processing your personal data ('object' in the UK GDPR)
- to get your personal data so you can reuse it across different services ('data portability' in the UK GDPR)
You may also have rights in relation to automated decision-making and profiling.
Make a request under data protection law
You can send a personal data request to email@example.com.
Alternately, you can write to us at:
The Data Protection Officer,
Beamish International Ltd,
Unit 3 Bankhead Steading,
If you're not happy with how Beamish has dealt with your request
If you feel there's a problem with your request to Beamish, please let us know in the first instance and we will do our best to resolve your complaint.
If you are not satisfied, you have the right to complain to the Information Commissioner's Office (ICO), the UK's authority on data protection by calling them on 0303 123 1113 or you can make a complaint on the ICO website
If we process your personal information on servers or use third-party service providers outside the European Economic Area (EEA), we'll try to ensure your personal information gets the same level of protection as in the EEA.
This policy was last reviewed on 19th January 2024.