Privacy policy

Personal Data We Collect

We may process the following categories of personal data:

• Contact Data: Information that enables us to communicate with you, such as a username (suplpied by you) and email address.
• Account Data: Information related to your website account, including your account ID, name, email address, IP address, liked content, purchase and transaction records, submitted comments, account creation/modification dates, website settings, and marketing preferences. Most of this data is provided by you, though some may be generated by our website.
• Customer Relationship Data: Information related to our interactions with you, including your name, contact details, classification within our CRM system, and communications between you and us.
• Service Data: Data generated during your use of our services, such as login dates, page visits, and site usage records.
• Transaction Data: Information about purchases made through our website, including transaction details. This data is sourced from you and/or our payment service providers.
• Communication Data: Content and metadata of communications between you and us, especially those made via our contact forms. Metadata is automatically generated by our website.
• Usage Data: Technical data about your interaction with our website, including IP address, geographic location, browser type/version, operating system, referral source, visit duration, page views, navigation paths, and usage patterns. This data is collected via our analytics system.

You must not submit personal data belonging to another individual. All data you provide is processed on the understanding that it has been voluntarily submitted by its lawful owner.

3. Purposes of Processing & Legal Bases

Operations: We may process your personal data to operate our website, fulfill orders, deliver services and goods, generate invoices and payment documentation, and manage credit control. The legal basis for this processing is our legitimate interests—namely, the efficient administration of our website, services, and business.

Publications: We may process account data, profile data, and service data to publish content on our website or through our services, in accordance with your instructions. The legal basis is our legitimate interests—namely, publishing content as part of our normal operations.

Relationships & Communications: We may process contact data, account data, customer relationship data, transaction data, and communication data to manage relationships, provide support, handle complaints, and communicate with you (excluding direct marketing). The legal basis is our legitimate interests—namely, maintaining relationships and ensuring proper service delivery.

Personalisation: We may process account data, service data, and usage data to personalise content shown to you. The legal basis for this processing is your consent.

Direct Marketing: We may process contact data, account data, profile data, customer relationship data, and transaction data to create, target, and send marketing communications via email. The legal basis is our legitimate interests—namely, promoting our business and communicating offers.

Research & Analysis: We may process usage data, service data, and transaction data to analyse how our website and services are used, and to evaluate other interactions with our business. The legal basis is our legitimate interests—namely, improving and securing our website, services, and operations.

Record Keeping: We may process personal data to maintain our databases, create backups, and preserve business records. The legal basis is our legitimate interests—namely, ensuring operational continuity and data integrity.

Security: We may process personal data to prevent fraud and protect our website, services, and users. The legal basis is our legitimate interests—namely, safeguarding our business and users.

Insurance & Risk Management: We may process personal data to obtain insurance, manage risks, and seek professional advice. The legal basis is our legitimate interests—namely, protecting our business against risks.

Legal Claims: We may process personal data to establish, exercise, or defend legal claims. The legal basis is our legitimate interests—namely, asserting and protecting legal rights.

Legal Compliance & Vital Interests: We may process personal data to comply with legal obligations or to protect your vital interests or those of another person. The legal basis is legal obligation or protection of vital interests.

Providing Your Personal Data to Others

We may disclose your personal data to our insurers and professional advisers where reasonably necessary for the purposes of obtaining or maintaining insurance coverage, managing risks, or obtaining professional advice.

Your personal data stored in our website database is hosted on servers provided by our hosting service provider, HostGator.

Financial transactions related to our website and services are handled by third-party payment providers, including PayPal, Stripe, and Coinbase. We share transaction data with these providers only to the extent necessary for processing payments, issuing refunds, and handling related queries or complaints.

All third-party service providers who process personal data on our behalf are contractually obligated to implement appropriate technical and organizational measures to ensure data protection and confidentiality.

Where personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, to protect your data in accordance with applicable data protection laws.

In the event of a personal data breach, we will notify affected individuals and relevant authorities as required by applicable data protection laws, and take all necessary steps to mitigate the impact.

We disclose only the minimum amount of personal data necessary for the intended purpose and retain such data only for as long as required by law or for the purpose for which it was collected.

We will not disclose your personal data to third parties for marketing purposes without your explicit consent.

In addition to the specific disclosures outlined above, we may disclose your personal data when required to comply with a legal obligation, to protect your vital interests or those of another person, or for the establishment, exercise, or defence of legal claims—whether in court proceedings or in an administrative or out-of-court context.

International Transfers of Your Personal Data

This section outlines the circumstances under which your personal data may be transferred to countries outside the United Kingdom and the European Economic Area (EEA).

We and our affiliated group companies maintain offices and facilities in the United Kingdom.

The hosting facilities for our website are located in the United States. As a result, personal data submitted to our website may be stored or processed in jurisdictions outside the UK and EEA.

You acknowledge that personal data you submit for publication through our website or services may be accessible globally via the internet. While we take reasonable steps to protect your data, we cannot prevent its use or misuse by others once it is publicly available.

Retaining and Deleting Personal Data

This section outlines our data retention policies and procedures, designed to ensure compliance with legal obligations regarding the storage and deletion of personal data.

Personal data that we process for any purpose shall not be retained longer than necessary for that purpose.

We retain personal data on unused, old and abandoned accounts as follows:

• Contact data: Retained for a minimum of 1 year and a maximum of 2 years for uncredited accounts, or 5 years for credited accounts following the most recent contact.
• Account data: Retained for a minimum of 1 year and a maximum of 2 years for uncredited accounts, or 5 years for credited accounts following account closure.
• Profile data: Retained for a minimum of 1 year and a maximum of 2 years for uncredited accounts, or 5 years for credited accounts following profile deletion.
• Customer relationship data: Retained for a minimum of 1 year and a maximum of 2 years for uncredited accounts, or 5 years for credited accounts following relationship termination.
• Service data: Retained for a minimum of 1 year and a maximum of 2 years for uncredited accounts, or 5 years for credited accounts following contract termination.
• Transaction data: Retained for a minimum of 1 year and a maximum of 2 years for uncredited accounts, or 5 years for credited accounts following the transaction date.
• Communication data: Retained for a minimum of 1 year and a maximum of 2 years for uncredited accounts, or 5 years for credited accounts following the communication date.

If you grant us a licence to publish any of your personal data such as comments, we may continue to retain and publish that data beyond the retention period, in accordance with the applicable licence terms and subject to your data subject rights.

Notwithstanding the above, we may retain personal data where necessary to comply with a legal obligation, protect your vital interests or those of another person, or for the establishment, exercise, or defence of legal claims.

We periodically review the data we hold and securely delete or anonymize personal data that is no longer required for the stated purposes.

Retention periods may be adjusted to comply with applicable laws, industry standards, or contractual obligations, including tax, financial, and regulatory requirements.

Security of Personal Data

We take the security of your personal data seriously and implement appropriate technical and organizational measures to prevent loss, misuse, unauthorized access, disclosure, alteration, or destruction.

Your personal data is stored on secure servers, personal computers, mobile devices, and within secure manual record-keeping systems. We use firewalls, intrusion detection systems, and access controls to safeguard our infrastructure.

Sensitive data is stored in encrypted format, and all data transmitted between your browser and our servers—including inquiries and financial transactions—is protected using industry-standard encryption technologies such as TLS (Transport Layer Security).

We conduct regular security audits and vulnerability assessments to evaluate and improve our security posture. Our systems are monitored for suspicious activity and unauthorized access attempts.

Users acknowledge that the transmission of unencrypted or inadequately encrypted data over the internet is inherently insecure, and we cannot guarantee the security of data sent via such channels.

Users are responsible for maintaining the confidentiality of their passwords and ensuring that passwords are not easily guessable. We will never request your password outside of the login process. Please notify us immediately if you suspect unauthorized access to your account.

Access to personal data is restricted to authorized personnel who require it for legitimate business purposes. All employees and contractors with access to personal data are bound by confidentiality agreements and undergo regular security training.

Our security practices are reviewed and updated regularly to reflect changes in technology, legal requirements, and industry standards.

In the event of a data breach that affects your personal data, we will notify you in accordance with applicable laws and regulations.

Your Rights

This section summarizes your rights under applicable data protection laws. Some rights are complex and subject to conditions, so we encourage you to consult official guidance or your local supervisory authority for full details.

Your principal rights include:

• Right of access – You may request confirmation of whether we process your personal data and obtain a copy of that data, along with information about its use, categories, and recipients.
• Right to rectification – You may request correction of inaccurate data and completion of incomplete data.
• Right to erasure – You may request deletion of your personal data under certain conditions, such as when it is no longer needed or has been unlawfully processed.
• Right to restrict processing – You may request that we limit the processing of your data in specific circumstances, such as when you contest its accuracy or object to its use.
• Right to object – You may object to our processing of your personal data based on legitimate interests or for direct marketing purposes.
• Right to data portability – You may request that we transfer your personal data to another organization or to you in a structured, commonly used, machine-readable format.
• Right to withdraw consent – Where processing is based on your consent, you may withdraw it at any time. This will not affect the lawfulness of processing carried out before withdrawal.
• Right to lodge a complaint – You may file a complaint with a supervisory authority in your country of residence, workplace, or where the alleged infringement occurred.

Additional details:

We will provide the first copy of your personal data free of charge. Additional copies may be subject to a reasonable fee. Requests must not adversely affect the rights and freedoms of others.

We may refuse to act on manifestly unfounded or excessive requests, especially if repetitive. In such cases, we may charge a fee or decline the request, as permitted by law.

Where processing is based on contract or consent and carried out by automated means, you may exercise your right to data portability. This does not apply where it would negatively impact the rights of others.

To exercise any of your rights, please contact us in writing or via the contact methods provided on our website. We may need to verify your identity before responding to your request.

We aim to respond to all valid requests within one month. If your request is complex or numerous, we may extend this period by up to two additional months and will inform you of the delay.

Security of Personal Data

We take the security of your personal data seriously and implement appropriate technical and organizational measures to prevent loss, misuse, unauthorized access, disclosure, alteration, or destruction.

Your personal data is stored on secure servers, personal computers, mobile devices, and within secure manual record-keeping systems. We use firewalls, intrusion detection systems, and access controls to safeguard our infrastructure.

Sensitive data is stored in encrypted format, and data transmitted between your browser and our servers—especially relating to inquiries and financial transactions—is protected using industry-standard encryption technologies such as TLS (Transport Layer Security).

We conduct regular security audits and vulnerability assessments to evaluate and improve our security posture. Our systems are monitored for suspicious activity and unauthorized access attempts.

You acknowledge that the transmission of unencrypted or inadequately encrypted data over the internet is inherently insecure, and we cannot guarantee the security of data sent via such channels.

You are responsible for maintaining the confidentiality of your password and ensuring it is not easily guessable. We will never request your password outside of the login process. Please notify us immediately if you suspect unauthorized access to your account.

Access to personal data is restricted to authorized personnel who require it for legitimate business purposes. All employees and contractors with access to personal data are bound by confidentiality agreements and undergo regular security training.

Our security practices are reviewed and updated regularly to reflect changes in technology, legal requirements, and industry standards.

In the event of a data breach that affects your personal data, we will notify you in accordance with applicable laws and regulations.

Third Party Websites

Our website may contain links or content in iframes to external websites operated by third parties. These links are provided for your convenience and informational purposes only.

We do not control and are not responsible for the content, privacy policies, or practices of any third-party websites. When you follow a link to another site, we recommend reviewing its privacy policy to understand how your personal data may be collected and used.

Inclusion of a link does not imply endorsement or affiliation. We disclaim any liability for the actions, content, or data handling practices of third-party sites.

Personal Data of Children

Our website and services are intended for individuals aged 13 and over. We do not knowingly collect or process personal data from children under the age of 13.

If we become aware that we have inadvertently collected personal data from a child under 13, we will take steps to delete that information promptly and securely.

We encourage parents or guardians to contact us if they believe their child has provided personal data without appropriate consent. We will respond quickly to any such request.

We are committed to protecting children’s privacy and complying with applicable laws, including the UK GDPR and relevant international standards. Where services may be accessed by children, we apply high privacy settings by default and avoid profiling or marketing to minors.

Updating Your Information

It is important that the personal data we hold about you is accurate and current. Please inform us if your personal information changes or needs to be corrected.

You may request updates or corrections to your personal data at any time by contacting us through the methods provided on our website. We may need to verify your identity before making changes.

We appreciate your help in keeping your information up to date, as it ensures we can continue to provide you with accurate services and comply with our legal obligations.

About Cookies

A cookie is a small file containing an identifier (a string of letters and numbers) that is sent by a web server to your browser and stored on your device. This identifier is returned to the server each time your browser requests a page, allowing the website to recognize you across sessions.

Cookies may be:

• Persistent cookies – These remain on your device until their set expiry date or until you delete them manually.
• Session cookies – These expire automatically when you close your browser.

Cookies typically do not contain information that directly identifies you. However, personal data that we store about you may be linked to the information stored in and obtained from cookies.

We use cookies to enhance your browsing experience, analyze traffic, and personalize content. Some cookies are essential for the operation of our website, while others are optional and used for analytics or marketing purposes.

You can manage your cookie preferences through your browser settings or via our cookie consent banner. For non-essential cookies, we will seek your explicit consent before placing them on your device, in accordance with applicable laws such as the GDPR and ePrivacy Directive.

For more details about the types of cookies we use and how you can control them, please refer to our Cookie Policy.

Cookies That We Use

We use cookies for the following purposes:

• Authentication and status – To identify you when you visit our website, navigate between pages, and determine whether you are logged in.
  Cookies used: session_id ,auth_token.

We do not use cookies to collect personally identifiable information.

Our website may include embedded content from third-party providers such as YouTube, PayPal and Stripe. These third parties may use cookies or similar tracking technologies to collect information about your interactions with their embedded content. We do not control these cookies and their use is governed by the privacy policies of the respective providers. We recommend reviewing the privacy policies of these providers to understand how your data may be used.

local storage

In addition to cookies, our website may use browser-based storage technologies such as localStorage, sessionStorage, and IndexedDB to store information locally on your device. These technologies help enhance your experience by remembering your preferences, storing favourited and downloaded content, or retaining content you create, modify, or explicitly choose to store. This data remains on your device and is not shared with third parties and is not used for tracking purposes.

Managing Cookies

Most web browsers allow you to refuse, accept, or delete cookies. The steps for managing cookies vary depending on the browser and its version. For the most accurate and up-to-date instructions, please refer to the official support pages below:

• Google Chrome
• Mozilla Firefox
• Opera
• Internet Explorer
• Safari
• Microsoft Edge

Please note that blocking all cookies may negatively affect your browsing experience. Some features of our website may not function properly if cookies are disabled.

Amendments

We may update this policy periodically by publishing a revised version on our website. Any changes will take effect immediately upon posting.

We encourage you to review this page occasionally to stay informed about how we use cookies and how any updates may affect you.