Privacy Policy

Last updated: November 9, 2024

This Privacy Policy explains how Divine Reflections ("we", "us", "our", or the "Site") collects, uses, and protects your personal information when you use our services or make a purchase through our website, gaps5i-pr.myshopify.com (the "Site"). It also outlines your rights under applicable privacy laws, including UK GDPR.

Please read this policy carefully to understand how your personal data is handled.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes to our practices, legal requirements, or other operational reasons. When changes are made, we will post the updated policy on our Site and revise the "Last updated" date. Please review this policy periodically for updates.

How We Collect and Use Your Personal Information

We collect personal information about you to provide our services and improve your experience. The types of personal information we collect and use depend on how you interact with us. The legal basis for processing this data is outlined under the UK General Data Protection Regulation (UK GDPR).

Information We Collect Directly from You

We collect the following personal information when you provide it to us:

  • Contact details: Name, address, phone number, and email.
  • Order information: Billing and shipping addresses, payment confirmation, and purchase details.
  • Account information: Username, password, and security questions.
  • Customer support information: Details included in your communications with us.

Information We Collect Automatically

We collect certain information automatically about your interactions with the Site, known as "Usage Data". This includes:

  • Technical information: Device type, browser details, network connection, and IP address.
  • Interaction data: Pages viewed, clicks, and navigation patterns.

We use cookies and similar technologies to collect Usage Data. For more details, see the "Cookies" section below.

Information from Third Parties

We may receive information about you from third parties, such as:

  • Service providers: Shopify (e-commerce platform), payment processors, and delivery partners.
  • Marketing partners: For analytics and tailored advertising.

All third-party data will be processed in compliance with this Privacy Policy.

How We Use Your Personal Information

We use your personal information to:

  1. Provide services: Process payments, fulfil orders, manage accounts, and deliver customer support (legal basis: contract performance).
  2. Marketing: Send promotional emails or display personalised advertisements (legal basis: consent or legitimate interests).
  3. Security and fraud prevention: Detect and address fraudulent or malicious activities (legal basis: legitimate interests).
  4. Improve services: Analyse and enhance user experience (legal basis: legitimate interests).

Cookies

Cookies are used to improve site functionality and personalise your experience. For details on the specific cookies used by Shopify, please refer to Shopify's cookie policy.

You can control cookie preferences through your browser settings. Please note that disabling cookies may impact your ability to use certain Site features.

How We Share Your Personal Information

We may share your personal data in the following circumstances:

  • With service providers: For payment processing, delivery, customer support, or analytics.
  • For legal obligations: To comply with legal requirements or enforce our terms.
  • In business transactions: In case of mergers, acquisitions, or insolvency.

We do not sell or share sensitive personal information without your explicit consent.

Retention of Your Information

We retain your personal information only as long as necessary to fulfil the purposes outlined in this policy or comply with legal obligations. For example, order details may be retained for tax purposes for up to six years.

Security Measures

We employ industry-standard security measures, including encryption and access controls, to protect your personal data. However, no system is entirely secure. We recommend safeguarding your account details and contacting us immediately if you suspect a breach.

Your Rights

Under UK GDPR, you have the following rights:

  • Access: Request a copy of your personal data.
  • Correction: Rectify inaccurate or incomplete data.
  • Deletion: Request erasure of your data, subject to legal retention requirements.
  • Portability: Receive a copy of your data in a structured format.
  • Object: Opt out of data processing for marketing purposes.
  • Restriction: Limit processing of your data in specific circumstances.
  • Withdraw consent: Revoke previously given consent.

You may exercise these rights by contacting us at: Email: enquiries@divinereflections.co.uk

We may verify your identity before processing your request. If you are unsatisfied with our response, you can file a complaint with the Information Commissioner’s Office (ICO) at ico.org.uk.

Cross-Border Data Transfers

Your data may be transferred and stored outside the UK or EU. Where applicable, we use standard contractual clauses or other legal mechanisms to ensure adequate data protection.

Children's Data

Our services are not intended for children under 16. We do not knowingly collect data from minors. If you believe a child has provided us with personal data, please contact us to delete the information.

Contact Us

For questions about this policy or to exercise your rights, contact us at:

  • Email: enquiries@divinereflections.co.uk

We aim to respond within 30 days.

Appeals

If you feel your rights have not been adequately addressed, you may escalate the issue by contacting us directly. You can also lodge a formal complaint with the ICO as outlined above.

This policy ensures compliance with UK GDPR and is designed to safeguard your personal data effectively. Thank you for trusting Divine Reflections.