Privicy Policy
Privacy Policy – Your Supplement Store
Last updated: 1 January 2025
At Your Supplement Store, we are committed to protecting your privacy and handling your personal data with transparency, integrity, and compliance with UK data protection laws, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
This policy explains how we collect, use, store, and protect your personal information when you interact with us online or make a purchase through our website.
1. Who We Are (Data Controller)
Your Supplement Store (referred to as “we”, “us”, or “our”) is the data controller of your personal data. This means we are responsible for deciding how your personal information is used.
Contact:
Email: info@yoursupplementstore.co.uk
Business Address: Birmingham, UK
2. What Personal Data We Collect
We collect and process the following types of data when you use our website:
a. Personal Identification Information
Name, email address, phone number, shipping/billing address
b. Payment Information
Payment details are collected at checkout but are processed securely by our payment provider (e.g., Stripe, PayPal). We do not store your full card details.
c. Account & Purchase Information
Login credentials (if you register an account), purchase history, and preferences
d. Technical and Usage Information
IP address, browser type, device, pages visited, referring URLs, time zone
Cookies and tracking technologies (see Cookie section)
e. Customer Support Correspondence
Communications via email, phone, or web forms
3. Legal Basis for Processing Your Data
We process your data under the following lawful bases:
| Purpose | Legal Basis |
|---|---|
| Processing orders, payments, and deliveries | Contractual necessity |
| Sending service emails (order confirmation, dispatch) | Contractual necessity |
| Sending marketing emails | Consent (you must opt-in) |
| Improving services and analytics | Legitimate interests |
| Complying with legal obligations | Legal obligation |
4. How We Use Your Information
To process and fulfil orders
To provide customer service
To send service-related communications
To send marketing communications (only with your consent)
To maintain internal records and improve our products/services
To detect and prevent fraud
To analyse website usage and customer preferences (analytics)
5. Who We Share Your Data With
We only share your personal data with trusted third parties where necessary to operate our business:
Payment processors (e.g. Stripe, PayPal)
Delivery providers (e.g. DPD, FedEx)
Email marketing platforms (e.g. Mailchimp, if opted in)
IT and hosting providers
Legal or regulatory bodies, if required by law
We do not sell or rent your personal data.
6. Data Retention
We retain your personal data:
For as long as necessary to fulfil the purposes it was collected for
To comply with legal, accounting, or reporting requirements
Customer orders: retained for 6 years (HMRC compliance)
Marketing data: retained until you withdraw consent
7. Your Rights Under UK GDPR
You have the right to:
Access your personal data (Subject Access Request)
Request correction of inaccurate data
Request erasure of your data (right to be forgotten)
Restrict or object to processing
Withdraw consent at any time (e.g. for marketing)
Data portability (receive a copy in a structured format)
Lodge a complaint with the ICO (Information Commissioner’s Office)
Contact for rights requests:
Email: info@yoursupplementstore.co.uk
8. Cookies and Tracking
We use cookies to:
Recognise your preferences
Improve website functionality
Track usage and performance analytics
By continuing to use our site, you consent to our use of cookies. You can manage cookie preferences in your browser.
📄 Read our [Cookie Policy] for full details.
9. Email Marketing & Consent
We only send marketing emails if you have:
Actively opted in (e.g. by ticking a box)
Not unsubscribed
You can unsubscribe at any time via the unsubscribe link in our emails or by contacting us directly.
10. Third-Party Links
Our site may contain links to third-party websites. We are not responsible for their privacy practices. Please review their privacy policies separately.
11. Data Security
We implement appropriate technical and organisational measures to secure your personal data, including:
SSL encryption
Secure data storage
Access controls
Regular reviews and updates
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements.
Check this page for the latest version.
Last updated: 1 January 2025
Contact Us
For questions about this policy or to exercise your data rights, contact:
Email: info@yoursupplementstore.co.uk
Data Protection Authority: www.ico.org.uk