0 products in your cart

Total: £0.00

Shipping & taxes calculated at checkout
View Cart
Continue browsing

Privacy policy

Please read this privacy notice carefully as it contains important information on who we are and how and why we collect, store, use and share data. It also explains your rights in relation to your personal data and how to contact us or supervisory authorities in the event you have a complaint.

When we use personal data we are regulated by the Information Commissioner under the General Data Protection Regulation EU 2016/679 as it forms part of the laws of the United Kingdom by virtue of section 3 of the European Union (Withdrawal) Act 2018, including as further amended or modified by the laws of the United Kingdom or a part of the United Kingdom from time to time (UK GDPR) and the Data Protection Act 2018 (together, Data Protection Legislation).

PERSONAL DATA WE COLLECT 

In the course of your interaction with us and your use of our services as an online retailer, either as a consumer or as a supplier or merchant, we will collect from you the following personal data:

  • If you contact us via our website to order merchandise or join our mailing list, the email address which you provide when registering on our website, your name, your address, your credit or debit card details.
  • If you use our website as a supplier or vendor of merchandise, your name, your email address, certain company and bank information if you are a sole trader or freelance worker.

This personal data is required to enable us to provide our services or to perform our contract with you. If we are not provided with the personal data we ask for, it may delay or prevent us from providing the services which you are requesting or performing our contractual obligations towards you.

HOW PERSONAL DATA IS COLLECTED

We collect your personal data directly when you interact with us via our website, during the order process or mail sign-up, or during the sign-up process for brands and vendors.

USE OF PERSONAL DATA

Under Data Protection legislation, we can only use personal data if we have a legal basis for doing so. These are mandated by the legislation and include:

  • your consent
  • for the performance of our contract with you or to take steps before entering into a contract
  • to comply with our legal and regulatory obligations
  • for our legitimate interests or those of a third party.

A legitimate interest is when we have a business or commercial reason to use personal data, so long as this is not overridden by the data subject’s own rights and freedoms.

PROMOTIONAL COMMUNICATIONS

We will always treat your personal data with the utmost respect and never sell it to other organisations for marketing purposes.

SHARING PERSONAL DATA

We only share personal data with our retained external third party service providers, such as our accountants and relevant brands for order fulfilment.

We only allow our external third parties to handle personal data if we are satisfied that they take all appropriate measures to protect all personal data and only on our written instructions.

We may very occasionally disclose and exchange information with regulatory bodies to comply with our legal and regulatory obligations. 

WHERE PERSONAL DATA IS HELD

Personal data is kept in securely in a password protected environment. Where we engage cloud-based service providers, it is on the basis of a written Data Processing Agreement and we conduct due diligence on the location of the servers on which our data is stored.

KEEPING PERSONAL DATA SECURE

The privacy and the security of personal data is our utmost priority, and we recognise our obligation to keep it secure and private.

We have put in place industry-standard security practices to prevent personal data from being accidentally lost or used or accessed unlawfully including password protection, multi factor authentication of users and access restriction or control. We limit access to any personal data to our employees and contractors with a genuine business need to access it and subject them to strict obligations of confidence.

HOW TO COMPLAIN

We hope that we can resolve any query or concern raised about our use of personal information.

The General Data Protection Regulation also gives the right to lodge a complaint with a supervisory authority. The supervisory authority in the UK is the Information Commissioner who may be contacted at https://ico.org.uk/concerns or telephone: 0303 123 1113.

 

Please contact us with any questions

info@naumhouse.com