Privacy policy

1. Introduction

At [Your Company Name], we are committed to protecting your data and respecting your privacy rights by the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This Privacy Policy outlines how we collect, use, and safeguard your personal information when you interact with our website or services.

By using our website, you consent to the practices outlined in this Privacy Policy.

2. Information We Collect

We may collect and process the following categories of personal information:

  • Identity and Contact Information (e.g., name, email address, postal address, phone number)

  • Payment Information (e.g., billing details, credit/debit card information)

  • Technical Information (e.g., IP address, browser type, operating system)

  • Usage Data (e.g., your interactions with our website)

  • Marketing Preferences

We collect this information when you:

  • Register an account

  • Place an order

  • Subscribe to our newsletter

  • Contact us via email or online forms

  • Browse our website

3. How We Use Your Information

We use your personal data to:

  • Process and fulfil your orders

  • Communicate with you regarding your account or order

  • Improve our website and customer service

  • Send you marketing communications (if you have opted in)

  • Detect and prevent fraud or security issues

  • Comply with legal obligations

We do not sell or share your personal data for commercial purposes.

4. Legal Basis for Processing

Under the UK GDPR, we rely on the following lawful bases to process your personal data:

  • Your consent

  • Performance of a contract with you

  • Compliance with a legal obligation

  • Our legitimate interests (e.g., to improve our services)

You have the right to withdraw your consent at any time.

5. Disclosure of Your Information

We may disclose your information:

  • To service providers who perform functions on our behalf (e.g., payment processors, hosting providers)

  • If required by law or to enforce our legal rights

  • In the event of a business transfer or sale

We require all third-party service providers to respect the confidentiality and security of your data.

6. International Data Transfers

Some of our third-party providers may be based outside the United Kingdom. When this occurs, we ensure appropriate safeguards are in place (such as standard contractual clauses or adequacy decisions) to protect your data in accordance with UK GDPR.

7. Security of Your Data

We take reasonable technical and organisational measures to secure your personal data, including:

  • SSL encryption for data transmission

  • AES-256 encryption for stored payment data

  • Compliance with PCI-DSS standards

While we strive to protect your data, no method of electronic storage or transmission is entirely secure.

8. Cookies

Our website uses cookies to enhance your experience. You can choose to accept or reject cookies via your browser settings.

Examples of cookies we may use include:

  • Session cookies to maintain your login state

  • Shopping cart cookies to remember your basket contents

  • Analytics cookies for internal usage tracking

A full list of cookies we use can be found in our [Cookie Policy].

9. Children’s Privacy

Our website is not intended for use by children under the age of 13. We do not knowingly collect personal data from children under 13. If we become aware that we have inadvertently collected such data, we will delete it promptly.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

10. Your Rights

Under the UK GDPR, you have the following rights:

  • Right to access your personal data

  • Right to rectification of inaccurate or incomplete data

  • Right to erasure (in certain circumstances)

  • Right to restrict or object to processing

  • Right to data portability

  • Right to withdraw consent at any time

  • Right to lodge a complaint with the Information Commissioner’s Office (ICO)

To exercise your rights, please contact us at: [email protected]

11. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, or reporting requirements.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page and, where appropriate, notified to you via email. Please review it regularly to stay informed.

13. Contact Us

If you have any questions about this Privacy Policy or how we handle your personal data, please contact:

Email: [email protected]