Information we collect about you

We collect information about you when you:

• visit the Website
• register with Tesco Gemini Platform
• take part in promotions, competitions, surveys and questionnaires
• contact us by telephone, e-mail or otherwise

We may also receive information about you if you use any of the other supplier websites we operate or any of the other supplier services we provide.

Using your information

We use your information to:

• manage your access to the Tesco Gemini Platform, this includes the verification of membership credentials
• manage and improve our Website.
• personalise our services to you, for example for sending you notifications about new posts and private messages and to allow you to participate in interactive features of our service, when you choose to do so
• manage promotions, competitions, surveys and questionnaires
• tell you about important changes to the App and the Website and our services
• develop and improve our products and services
• manage internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes

Our above use of your personal data represents our “legitimate interests”.

Sharing personal data with other organisations

This section explains how and why we share personal data with other organisations. We may share personal data with other organisations in the following circumstances:

• if the law or a public authority says we must share the personal data;
• if we need to share personal data in order to establish, exercise or defend our legal rights (this includes providing personal data to others for the purposes of preventing fraud);
• to an organisation we sell or transfer (or enter into negotiations to sell or transfer) any of our businesses or any of our rights or obligations under any agreement we may have with you to. If the transfer or sale goes ahead, the organisation receiving your personal data can use your personal data in the same way as us;
• if they are providing services to us for example, companies that help us with technology services; or
• to any other successors in title to our business.

How we protect your personal data

We know how important it is to protect and manage your personal data. This section sets out some of the measures we have in place. We use computer safeguards such as firewalls and data encryption, and we enforce physical access controls to our buildings and files to keep this data safe. We only authorise access to employees who need it to carry out their job responsibilities.

• We protect the security of your information while it is being transmitted by encrypting it using Secure Sockets Layer (SSL).
• We enforce physical, electronic and procedural safeguards in connection with the collection, storage and disclosure of personal data. We may occasionally ask for proof of identity before we share your personal data with you.

However, whilst we take appropriate technical and organisational measures to safeguard your personal data, please note that we cannot guarantee the security of any personal data that you transfer over the internet to us. The personal data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area ("EEA"). It may also be processed by companies operating outside the EEA who work for us or for one of our service providers. If we do this, we ensure that your privacy rights are respected in line with this Notice. The most common way we do this is to put in place a specific type of contract, which will include contractual measures to ensure personal data transferred is sufficiently protected.

How long we use personal data for

We will not keep your personal data longer than we need to, how long this is will depend on several factors, including:

• Why we collected it in the first place;
• How old it is;
• Whether there is a legal/regulatory reason for us to keep it;
• Whether we need it to protect you or us.

Data Protection Rights

You have the right to see the personal data we hold about you. This is called a Subject Access Request. If you would like a copy of the personal data we hold about you, please write to:

Data Protection Officer, Group Legal Maldon Building, Falcon Way, Shire Park, Welwyn Garden City, AL7 1TW

You can also email us at subjectaccess.request@tesco.com If you believe we hold inaccurate or missing information, please let us know and we will correct it. In some situations, you have the right to: object to our use of your personal data, restrict our use of it or have us delete it. Please see the “contacting us” section to enquire further about these rights. We’d like the chance to resolve any complaints you have; however, you also have the right to complain to a data protection regulator about how we have used your personal data. Please contact the data protection regulator in the country where the Tesco entity you supply is based.

The Information Commissioner Office (the ICO) at https://www.ico.org.uk where you can find useful information in respect of your data protection rights.

Cookies

We use a system of classifying the different types of cookies which we use on the Website, or which may be dropped by third parties through our websites. The classification was developed by the International Chamber of Commerce UK and explains more about which cookies we use, why we use them, and the functionality you will lose if you decide you don't want to have them on your device. Please be reassured that we are working on other privacy and cookie-related improvements to the Website.

What is a cookie?

Cookies are text files containing small amounts of information which are downloaded to your personal computer, mobile or other device when you visit a website. Cookies are then sent back to the originating website on each subsequent visit, or to another website that recognises that cookie. Cookies are useful because they allow a website to recognise a user's device.

Persistent cookies - these cookies remain on a user's device for the period of time specified in the cookie. They are activated each time that the user visits the website that created that particular cookie.

Session cookies - these cookies allow website operators to link the actions of a user during a browser session. A browser session starts when a user opens the browser window and finishes when they close the browser window. Session cookies are created temporarily. Once you close the browser, all session cookies are deleted.

Cookies do lots of different jobs, like letting you navigate between pages efficiently, remembering your preferences, and generally improve the user experience. They can also help to ensure that adverts you see online are more relevant to you and your interests.

You can find more information about cookies at www.allaboutcookies.org andwww.youronlinechoices.eu.

Cookies used on the Website

A list of all the cookies used on the Website by category is set out below.

Strictly necessary cookies

These cookies enable services you have specifically asked for. For those types of cookies that are strictly necessary, no consent is required.

These cookies are essential in order to enable you to move around the Website and use its features, such as accessing secure areas of the Website. Without these cookies services you have asked for, like shopping baskets or e-billing, cannot be provided.

Performance cookies

These cookies collect anonymous information on the pages visited. By using the Website, you agree that we can place these types of cookies on your device.

These cookies collect information about how visitors use the Website, for instance which pages visitors go to most often, and if they get error messages from web pages. These cookies don't collect information that identifies a visitor. All information these cookies collect is aggregated and therefore anonymous. It is only used to improve how the Website works.

Functionality cookies

These cookies remember choices you make to improve your experience. By using the Website, you agree that we can place these types of cookies on your device.

These cookies allow the Website to remember choices you make (such as your user name, language or the region you are in) and provide enhanced, more personal features. These cookies can also be used to remember changes you have made to text size, fonts and other parts of web pages that you can customise. They may also be used to provide services you have asked for such as watching a video or commenting on a blog. The information these cookies collect may be anonymised and they cannot track your browsing activity on other websites.

Targeting or advertising cookies

These cookies collect information about your browsing habits in order to make advertising relevant to you and your interests.

These cookies are used to deliver adverts more relevant to you and your interests. They are also used to limit the number of times you see an advertisement as well as help measure the effectiveness of the advertising campaign. They are usually placed by advertising networks with our permission. They remember that you have visited a website and this information is shared with other organisations such as advertisers. Quite often targeting or advertising cookies will be linked to site functionality provided by the other organisation.

Behavioural advertising and online privacy

A guide to behavioural advertising and online privacy has been produced by the internet advertising industry which can be found at www.youronlinechoices.eu. The guide contains an explanation of the IAB’s self-regulatory scheme to allow you greater control of the advertising you see.

Using browser settings to manage cookies:

The Help menu on the menu bar of most browsers will tell you how to prevent your browser from accepting new cookies, how to have the browser notify you when you receive a new cookie and how to disable cookies altogether. You can also disable or delete similar data used by browser add-ons, such as Flash cookies, by changing the add-on's settings or visiting the website of its manufacturer.

However, because cookies allow you to take advantage of some of the Website’s essential features, we recommend you leave them turned on. For example, if you block or otherwise reject cookies you will not be able to use any of our products and services that require you to sign-in. If you leave cookies turned on, remember to sign-out when you finish using a shared computer.

Disclosing your information

We will never disclose your information to anyone outside the Tesco Group except where we have your consent; where we are required or permitted to do so by law; to other companies who provide a service to us; to charities who work with us, or any successors in title to our business.

Whenever we transfer personal information to countries outside the European Economic Area we will ensure that appropriate security measures are taken.

Changes to this Notice

This Notice replaces all previous versions and is correct as of August 2019. We reserve the right to change the policy at any time.

Contacting us

If you have any queries, please contact by raising a zendesk ticket with the following information.

• Assignee: 142_Loyalty_Gemini
• Type of issue: UK/ROI::Office::Clubcard::Gemini::Other