We are fully compliant with the GDPR (General Data Protection Regulation) rules 25th May 2018 - regulations which apply to all companies processing and holding the personal data of visitors residing in the EU. This ensures your privacy and information security. If you would like more information on your right under the GDPR, please visit https://www.eugdpr.org
All data processed through our online cart platform is done so through highly secure servers located within RapidSwitch's highly acclaimed and industry-leading data centre in Berkshire, UK.
Customer information is disclosed to third parties for dispatch purposes (couriers etc) or when orders are processed via third parties as part of the order fulfillment. Third parties are not permitted to disclose any of our customer's details to any other third party or use customer details in a way that is not related to order fulfillment.
Google Analytics data is collected which tracks site usage and traffic information but your personal information is not provided to them.
The "PHPSESSID" cookie is required so that the site can recognise the same user clicking from page to page. Without it, every page would be treated as the first visit to the site, and anything added to the shopping basket would be instantly forgotten. Online shopping would, therefore, be impossible.
The "session" cookie is for retaining information so that returning customers can access the contents of their shopping basket. If the user signs in with an email address and password, these login details are are also saved so that they can remain logged in when returning (the password is encrypted). If the user signs out, their login details are removed from the cookie.
Information such as your address, phone number, email and so on are strictly used only to process your order, collect product feedback, notify you about the status of your order, or send you our newsletter if you have chosen to subscribe to that. We do not send unsolicited marketing material. Only subscribers to our newsletter will receive emails from us about site news and promotions. Subscribers can of course unsubscribe at any time. After a purchase has been made we reserve the right to send emails to customers under the banner of "legitimate interests" namely abandoned basket, feedback request and follow-up request emails.
Data collected by this site is used to:
a. Take and fulfil customer orders
b. Administer and enhance the site and service to customers and potential customers
If you created an account you can easily access and amend the personal data we hold by logging into your account. Information such as IP address and most recent log-in is not visible but can be requested. If you checked out as a guest you will not be able to access your personal data via an online account as you do not have one but you can request to see the personal data stored against your order or amend it.
Your customer account can be deleted, if you wish. Please email us if you would like to have your account deleted. However, please note that for any orders you have placed your details will still remain on our system and be associated with that order. This is due to VAT regulations, which request that we keep all records of VAT transactions for a minimum of six years.
The social media share buttons only transmit data once they have been clicked. The only data the social media's servers receive from our site is referral information from the page, such a product title and image. No personal data is transmitted. Should you choose to use it, the Facebook login feature works in a similar way, and no personal information is transmitted to Facebook. However, once you have clicked on the button, any data that is gathered from your Facebook account, such as name and Facebook ID, will be stored for you. This can be deleted if requested.
Social proof pop-ups are GDPR compliant. Only general information is shown to visitors such as number of users online, purchases, reviews etc... User data ceases to be shown automatically after a few days, as newer data takes its place, but if you would like your user data removed from the database, please do let us know.
All debit or credit card information is entered via our payment processor's secure PCI DSS compliant servers (SagePay or PayPal). We do not store or collect any complete debit or credit card information. We are notified and can see the results of your payment however we cannot see, modify or copy your payment details.