Privacy Policy

1. Introduction

We are committed to safeguarding and preserving the privacy of our visitors and customers. This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you use our website and services. We comply with the Data Protection Act 2018 and the General Data Protection Regulation (GDPR).

By using our services or visiting our website, you consent to the practices described in this policy.

2. Information We Collect

We may collect and process the following types of personal data:

2.1 Information You Provide

  • Personal Details: Your name, email address, phone number, and postal address when you place an order or contact us.
  • Payment Information: Payment details such as credit or debit card numbers, billing address, and transaction data, which are processed securely via third-party payment providers.
  • Card Information: Details of your bank card are used only for the customisation process. We do not retain sensitive card details beyond the scope of the services provided.

2.2 Automatically Collected Information

  • Technical Data: We collect information about your use of our website, including IP addresses, browser type, operating system, referring URLs, and browsing actions.
  • Cookies: Our website uses cookies to track browsing behavior and preferences. You can adjust your cookie settings in your browser. For more information, refer to our Cookie Policy.

3. How We Use Your Data

We use the personal data we collect for the following purposes:

  • Order Fulfillment: To process and deliver your orders, including managing payments, shipping, and communications related to your order.
  • Customer Support: To provide customer service, respond to inquiries, and handle any issues that arise during the provision of our services.
  • Marketing and Communications: If you have opted in, we may send you promotional materials about our products and services. You can opt-out of marketing communications at any time by contacting us or clicking the “unsubscribe” link in our emails.
  • Improving Our Services: To analyze usage trends, monitor website performance, and improve our website and service offerings.

4. Legal Basis for Processing Data

Under GDPR, the legal bases for our processing of personal data are as follows:

  • Contractual Obligation: We process your data to fulfill the contractual obligations arising from your orders with us.
  • Consent: Where applicable, we rely on your consent for specific uses of your data, such as marketing communications.
  • Legitimate Interest: We may process your data where it is in our legitimate interest to do so, such as improving our services or preventing fraud.

5. Data Sharing and Disclosure

Swipemetal does not sell, trade, or rent your personal data to third parties. However, we may share your data with:

  • Service Providers: Third-party companies that assist us in providing services such as payment processing, shipping, or IT support.
  • Legal Obligations: We may disclose your data to comply with legal requirements, protect our rights, or enforce our Terms and Conditions.

6. Data Retention

We will only retain your personal data for as long as is necessary to fulfill the purposes for which it was collected, including for legal or accounting purposes. For example:

  • Order Information: Retained for 5 years to comply with tax and accounting obligations.
  • Payment Information: We do not store your full payment details; they are processed securely via our payment provider.

7. Data Security

Swipemetal takes data security seriously and employs appropriate technical and organizational measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These include:

  • Encryption: We use secure encryption technologies to protect data transfers and storage.
  • Access Control: Personal data is only accessible to authorized personnel and third parties who require access to perform their services.

8. Your Rights

Under GDPR, you have the following rights in relation to your personal data:

  • Access: The right to request access to the personal data we hold about you.
  • Rectification: The right to request correction of inaccurate or incomplete data.
  • Erasure: The right to request the deletion of your data where it is no longer necessary for the purposes it was collected.
  • Restriction: The right to request that we limit the processing of your data in certain circumstances.
  • Portability: The right to request your personal data be provided to you or another service provider in a structured, commonly used, and machine-readable format.
  • Objection: The right to object to the processing of your data for direct marketing or where we are relying on legitimate interests.

To exercise any of these rights, please contact us using the details provided in the “Contact Us” section.

9. International Transfers

We may transfer your personal data to third parties located outside the UK or the European Economic Area (EEA). Where such transfers occur, we ensure they are protected by appropriate safeguards, such as relying on adequacy decisions by the European Commission or entering into data transfer agreements based on standard contractual clauses.

10. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance user experience, analyze website performance, and deliver targeted advertising. For more details, please refer to our Cookie Policy.

11. Changes to this Policy

Swipemetal reserves the right to update this Privacy Policy at any time. Any changes will be posted on our website, and where appropriate, notified to you by email. Continued use of our services after such changes constitutes your acceptance of the new policy.

12. Contact Us

If you have any questions about this Privacy Policy or your personal data, please contact us at:

  • Email: hello@swipemetal.co.uk
  • Address:

    SwipeMetal,

    PO Box 18767
    Birmingham
    B2 2AX.