Privacy Policy

Who we are

We are BLP Consulting Ltd. trading as The Big Green Shed
Registered in England. Company No. 13632533.
Registered office: Tower House, Churchtown, St Hilary, CORNWALL TR20 9DQ, United Kingdom
VAT No. To be confirmed

Our website address is:

You can contact us by emailing info @ (remove the spaces either side of the @ symbol) or calling +44 07380 165858.

When we say ‘we’, ‘us’ or ‘The Big Green Shed’ it’s because that’s who we are and we own and run the Site.

If we say ‘policy’ we’re talking about this privacy policy. If we say ‘user terms’ we’re talking about the rules for using this website.

This policy sets out how we handle your personal information if you’re a visitor to our site. We are committed to protecting and respecting your privacy.

This Privacy and Cookie Policy sets out the basis on which any personal data we collect from you, or that you provide to us, as a result of your visiting our website at will be processed by us. It also provides you with information regarding our use of cookies.

Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it, and regarding cookies. By using the Site you are accepting and consenting to the practices set out in this Privacy and Cookie Policy and also agreeing to abide by our Terms and Conditions. If you have not already read our Terms of Use, please do so here.

We are the data controller of the personal data we collect through the Site.

What personal data we collect and why we collect it

When you visit this site the personal data we collect from you relates to information you supply when

  • purchasing wine from the site
  • using our contact form i.e. your name and email address so that we can reply to you
  • using regular email
  • *signing up for our Newsletter i.e. your name and email address. This data is processed by MailChimp to enable us to send you updates and other marketing information.

*See the section ‘Who we share your data with’ below. Personal but non-identifiable data is also generated from technical processes such as cookies. See the section below. We may also collect data from and about you through

  • direct interactions. You may give us your identity, contact, profile, marketing and communications data by filling in forms or by corresponding with us by post, phone, email, social media or otherwise. This includes personal data you provide when you purchase any of our products or services from our shop or at our events
  • making contact with us via telephone
  • meeting with one of our members of staff to discuss our products and services
  • request marketing and publications to be sent to you
  • enter a competition, promotion or survey
  • automated technologies or interactions. As you interact with our website or software we may automatically collect technical or usage data about your equipment, browsing actions and patterns. We collect this personal data by using cookies and other similar technologies. Please see the ‘Cookies’ policy below.

Our website is not intended for children and in this respect we do not knowingly collect data relating to children.

Contact forms

If you use a contact from on the website, we require your name and email address. Our contact form then sends this information as an ordinary email to us. The information you provide is not stored on the website. We will attempt to respond to you within 24 hours. Any email from us will come from our domain and have a name followed by

When you send us an email or use the contact form, your details are only used for customer service purposes. Your details will not be used for marketing purpose and you will not be added to our mailing list unless you specifically use the sign up form.

Credit and debit card details

We do not collect or process your credit or debit card details. However if you make payments through our website these details are collected and processed by our payment processing service provider Stripe Payments Europe, Ltd. The collection and processing by Stripe of your credit or debit card details and other personal data are governed by their terms and conditions. You may read those terms and conditions by visiting their website here for more information. Stripe may from time to time provide us with information regarding the credits and debits made to your card in order to enable us to reconcile our accounts.


To make this site work properly, we sometimes place small data files called cookies on your device. Most big websites do this too. We may collect information about your computer, including, where available, your IP address, operating system and browser type, for system administration and statistical analysis. This is statistical data about our users’ browsing actions and patterns, and does not identify any individual.

What are cookies?
A cookie is a small text file that a website saves on your computer or mobile device when you visit the site. It enables the website to remember your actions and preferences (e.g. login, language, font size and other display preferences) over a period of time, so you don’t have to keep re-entering them whenever you come back to the site or browse from one page to another.

We use the following cookies:

Strictly necessary cookies. These are cookies that are required for the operation of the website. They include, for example, cookies that enable you to use the shopping cart.

Analytical/performance cookies. These allow us to recognise and count the number of visitors and to see how visitors move around the website when they are using it. This helps us to improve the way the website works.

Functionality cookies. These are used to recognise you when you return to the Site. This enables us to remember your preferences and, for example, will fill in your details at the check out page if you have visited previously.

ePR (e-Privacy Regulation) law will be ratified in the near future and at that time we will list the cookies used on our site.

How do we use cookies? Our site uses cookies to remember:

  • if you have already replied to a pop-up or sign up form that asks you if you want to sign up to our newsletter (so you won’t be asked again)
  • if you have agreed (or not) to our use of cookies on this site
  • if you have visited the site before

Also, it is possible that if we embed a video in our pages, the video site (YouTube, Vimeo etc) will use a cookie to anonymously gather statistics on how you got there and what videos you visited.

Enabling these cookies is not strictly necessary for the website to work but it will provide you with a better browsing experience. You can delete or block these cookies, but if you do that some features of this site may not work as intended.

The cookie-related information is not used to identify you personally and the pattern data is fully under our control. These cookies are not used for any purpose other than those described here.

How to control cookies
You can control and/or delete cookies as you wish – Click this link to find out how to delete cookies.. You can delete all cookies that are already on your computer and you can set most browsers to prevent them from being placed. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some services and functionalities may not work.

We use analytic cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.

Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us.

If we have a section where you can leave a comment on our site you may opt in to saving your name, email address, and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if you have visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

We use Google Analytics on our site to help us determine which pages are used the most and where the visitor has come from. It also helps us track usage after we have sent a newsletter out. We do not use this information for advertising. You can see Google’s Privacy Policy here which conforms to the GDPR. You can opt out of analytics by clicking this link to find out how to delete cookies.

Who we share your data with
We do not share your data directly with any third parties.

If you sign up to our mailing list, this data is handled directly by MailChimp. You can read their privacy policy here. You can unsubscribe from our mailing list at any time by clicking the ‘Unsubscribe’ link in any newsletter email you have received from us.

How long we retain your data
We keep contact form entries for six months, analytics records for a year, and customer purchase records for ten years (for accounting purposes).

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

What rights you have over your data

Controlling your personal information
You may choose to restrict the collection or use of your personal information in the following ways:

  • if you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by writing to or emailing us at

We will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so.

If you have left comments on this website, you can request to receive an export file of the personal data we hold about you, including any data you have provided to us. You can also request that we delete any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data
As mentioned previously, MailChimp process our sign up forms and newsletters. The data they process may be processed within the EU and in the US. European data protection law requires that data about European residents which is transferred outside the European Union to be safeguarded to the same standards as if the data was in Europe.

MailChimp has annually certified their agreement to EU/US and Swiss Safe Harbor Frameworks since 2007. Since the Safe Harbor Frameworks have been replaced by the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework, they have certified their agreement with these Privacy Shield Frameworks. See their Privacy Policy for more details. We have a data processing agreement with Mailchimp for this reason that you can read here. This safeguards any data processed by them.

Visitor comments may be checked through an automated spam detection service. This may be located abroad.

Your contact information
If you have any privacy-specific concerns, please email us, write to us or telephone us.

How we protect your data
Our website is a secure site and you will notice the small green padlock and the word Secure next to it in the address bar. This means that any data transferred from our site to any of our partners mentioned above is encrypted. Access to our system and website control panel is restricted to authorised staff only who have had staff training in data protection issues. We use complicated passwords on devices that have access to our systems.

What data breach procedures we have in place
Your data is massively important to you – and us. At the back end of our website we use a system called Wordfence which provides a firewall between our site and the internet. You can read about it here. If we were to suspect there were to be a breach in our data processing, we would immediately suspend our website to investigate and change all relevant passwords on all devices that have access to our ‘backend’ systems. Only when we were sure that the data breach had been dealt with would we take our site back online. If the data breach took place through one of our data processing partners, we would send an email to you explaining the situation and their recommendations.