Last updated: 28 November 2025
At ASN Haven & Bloom Design (“we”, “us”, “our”), we take the protection of your personal data seriously. This Privacy Policy explains how we collect, use and protect your information when you visit our website, contact us, or use our services.
1. Controller
ASN Haven & Bloom Design
[Full legal name]
[Business address]
[Postal code, City, Germany]
Email: asnhavenbloomdesign@gmail.com
Phone: [phone number]
2. What data we collect
When you use this website, we may collect the following categories of personal data:
● Contact details, such as your name, email address, phone number and any details you include in an enquiry
● Event information you provide, such as venue, date, guest count and styling preferences
● Technical data, such as IP address, browser type, device type, date/time of access and pages visited
● Communication data, such as messages sent through our contact form or by email
● Marketing and analytics data, where applicable and only where permitted
3. How we collect your data
We collect data:when you submit a contact form:
● when you email or call us
● when you browse our website
● through cookies and similar technologies, where used
4. Why we process your data
We process your data for the following purposes:
●to respond to your enquiries
●to provide quotes and discuss bookings
●to plan and deliver decor and event design services
●to maintain the security and proper functioning of the website
●to comply with legal obligations
●to improve the website, where analytics tools are used lawfully
5. Legal bases for processing
Under the GDPR, we process personal data on one or more of the following legal bases:
● Article 6(1)(b) GDPR — processing necessary to take steps at your request before entering into a contract or to perform a contract
● Article 6(1)(c) GDPR — processing necessary to comply with a legal obligation
● Article 6(1)(f) GDPR — processing necessary for our legitimate interests, such as website security and business administration, except where your rights override those interests
● Article 6(1)(a) GDPR — your consent, where consent is required, for example for non-essential cookies or certain marketing tools
6. Contact form and enquiries
If you contact us through the website, by email or by phone, we will process the information you provide so that we can respond to your enquiry and, if relevant, prepare for a booking.
This may include:
● your name
● email address
● phone number
● event details
● any other information you choose to share
We retain this information only for as long as necessary to handle your enquiry and any resulting business relationship, unless longer retention is required by law.
7. Cookies and similar technologies
Our website may use cookies.
Some cookies are technically necessary for the website to function. Other cookies, such as analytics or marketing cookies, may only be set with your consent where required by law. EU guidance states that non-essential cookies generally need user consent before being set.
If your website uses a cookie banner, you can add:
You can accept or reject non-essential cookies via our cookie banner. You can also change your preferences at any time.
8. Third-party services
a) Embedded social media links
Our website may contain links to social media platforms such as Instagram, Facebook or Pinterest. Clicking those links may result in data being processed by those providers. Please review their privacy policies separately.
9. Sharing of personal data
We do not sell your personal data.
We may share your data only where necessary with:
● hosting providers
● website maintenance or IT service providers
● email providers
● payment or invoicing providers, if applicable
● public authorities where required by law
Where service providers process data on our behalf, this is done subject to appropriate contractual safeguards.
10. International data transfers
If any service providers are located outside the European Economic Area, we will ensure that appropriate safeguards are in place, such as an adequacy decision or other lawful transfer mechanism recognized under EU data protection law. The European Commission explains that such safeguards are required for transfers of EU personal data to third countries.
11. Retention period
We keep personal data only for as long as necessary for the purposes described in this Privacy Policy, including responding to enquiries, managing bookings, complying with legal obligations, and resolving disputes.
If you contact us but do not book a service, we may delete your enquiry data after [e.g. 12 months], unless there is a legitimate reason to keep it longer.
Business and invoice records may be retained for longer where required by applicable tax or commercial law.
12. Your rights
Under the GDPR, you may have the right to:
● request access to your personal data
● request correction of inaccurate data
● request deletion of your data
● request restriction of processing
● object to processing based on legitimate interests
● withdraw consent at any time, where processing is based on consent
● request data portability, where applicable
● lodge a complaint with a competent data protection supervisory authority
The right to complain to a supervisory authority is expressly recognized under Article 77 GDPR, and German authorities explain that such complaints must be investigated.
To exercise your rights, please contact us at: asnhavenbloomdesign@gmail.com
13. Data security
We use appropriate technical and organizational measures to help protect your personal data against unauthorized access, alteration, disclosure or destruction.
14. Requirement to provide data
You are not legally required to provide personal data simply to browse this website. However, if you want us to respond to an enquiry or provide a quote, we may need certain information from you.
15. Changes to this Privacy Policy
We may update this Privacy Policy from time to time. The latest version will always be published on this page.
