Privacy Policy

Last updated:

1. Introduction

Goodstopunique ("we", "us", "our") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit our website at https://goodstopunique.world (the "Website") and when you use our services or purchase our products.

This policy is provided in compliance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, the Privacy and Electronic Communications Regulations 2003 (PECR), and all other applicable data protection legislation.

By using our Website, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with this policy, please do not use our Website.

2. Data Controller

The data controller responsible for your personal data is:

  • Company name: Goodstopunique
  • Registered address: 100 Bishopsgate, London EC2N 4AG, United Kingdom
  • Email: managers@goodstopunique.world
  • Website: https://goodstopunique.world

If you have any questions or concerns about this policy or our data practices, please contact us using the details provided above.

3. What Personal Data We Collect

We may collect and process the following categories of personal data:

3.1 Information You Provide Directly

  • Full name — provided when placing an order or contacting us.
  • Email address — provided for order confirmation, communication, and correspondence.
  • Phone number (optional) — provided voluntarily for order-related communication.
  • Message content — any information you include in the message field of our order or contact forms.
  • Consent records — your consent to our Privacy Policy and Terms of Use at the time of form submission.

3.2 Information Collected Automatically

  • IP address and approximate geolocation.
  • Browser type, version, and operating system.
  • Device type and screen resolution.
  • Pages viewed, referring URL, and time spent on each page.
  • Cookie data and similar tracking technologies (see our Cookie Policy for details).

4. Legal Basis for Processing

We process your personal data on the following legal grounds under the UK GDPR:

  • Consent (Article 6(1)(a)): Where you have given explicit consent for us to process your personal data for specific purposes, such as receiving marketing communications or accepting non-essential cookies.
  • Contractual necessity (Article 6(1)(b)): Where processing is necessary for the performance of a contract with you, such as processing your order.
  • Legitimate interests (Article 6(1)(f)): Where processing is necessary for our legitimate interests, such as improving our Website and services, provided these interests are not overridden by your rights and freedoms.
  • Legal obligation (Article 6(1)(c)): Where processing is necessary to comply with a legal obligation, such as tax and accounting requirements.

5. How We Use Your Personal Data

We use your personal data for the following purposes:

  • To process and fulfil your orders, including sending order confirmations and shipping notifications.
  • To respond to your enquiries and provide customer support.
  • To communicate with you about your orders and our services.
  • To improve our Website, products, and services based on aggregated and anonymised usage data.
  • To comply with legal and regulatory obligations.
  • To detect, prevent, and address fraud, security issues, or technical problems.
  • To manage and administer our business operations.

6. Data Sharing and Third Parties

We do not sell, rent, or trade your personal data to third parties. We may share your data with:

  • Service providers: Trusted third-party service providers who assist us in operating our Website, processing payments, fulfilling orders, and providing customer support. These providers are contractually bound to process data only on our instructions and in compliance with applicable data protection laws.
  • Legal authorities: Where we are required to disclose your data by law, regulation, or legal process, or where disclosure is necessary to protect our rights, property, or safety, or the rights, property, or safety of others.
  • Business transfers: In the event of a merger, acquisition, or sale of assets, your personal data may be transferred as part of that transaction. We will notify you of any such change.

7. International Data Transfers

Your personal data is primarily processed and stored within the United Kingdom and the European Economic Area (EEA). If we need to transfer your data outside the UK/EEA, we will ensure that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the UK Information Commissioner's Office (ICO) or the European Commission, or transfers to countries with an adequacy decision.

8. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including:

  • Order data: Retained for up to 6 years after the date of your last transaction, in compliance with UK tax and accounting obligations.
  • Enquiry and communication data: Retained for up to 2 years after your last communication with us, unless a longer retention period is required by law.
  • Cookie and analytics data: Retained as described in our Cookie Policy.
  • Consent records: Retained for the duration of the processing activity and for up to 3 years thereafter as evidence of lawful processing.

Once the retention period has expired, your data will be securely deleted or anonymised.

9. Your Rights Under UK GDPR

Under the UK GDPR, you have the following rights in relation to your personal data:

  • Right of access (Article 15): You have the right to request a copy of the personal data we hold about you.
  • Right to rectification (Article 16): You have the right to request correction of inaccurate or incomplete personal data.
  • Right to erasure (Article 17): You have the right to request deletion of your personal data, subject to certain exceptions.
  • Right to restriction of processing (Article 18): You have the right to request that we restrict the processing of your personal data in certain circumstances.
  • Right to data portability (Article 20): You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
  • Right to object (Article 21): You have the right to object to the processing of your personal data for direct marketing or processing based on legitimate interests.
  • Right to withdraw consent: Where processing is based on consent, you have the right to withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
  • Right to lodge a complaint: You have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) if you believe your data protection rights have been violated. The ICO can be contacted at: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF, United Kingdom. Website: https://ico.org.uk

To exercise any of these rights, please contact us at managers@goodstopunique.world. We will respond to your request within one month, as required by law. In certain circumstances, we may extend this period by a further two months, in which case we will inform you of the extension and the reasons for it.

10. Data Security

We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • Use of HTTPS encryption for all data transmitted between your browser and our Website.
  • Secure storage of personal data with access restricted to authorised personnel only.
  • Regular review and updating of our security practices and procedures.
  • Training of staff on data protection and handling of personal data.
  • Use of firewalls, intrusion detection systems, and other security technologies.

While we take all reasonable steps to protect your data, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but are committed to maintaining the highest standards reasonably achievable.

11. Cookies

Our Website uses cookies and similar technologies. For detailed information about the types of cookies we use, their purposes, and how you can manage your cookie preferences, please refer to our Cookie Policy.

12. Third-Party Links

Our Website may contain links to external websites. We are not responsible for the privacy practices or content of those websites. We encourage you to read the privacy policies of any external websites you visit.

13. Children's Privacy

Our Website and products are not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child without appropriate parental consent, we will take steps to delete such data promptly.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational, legal, or regulatory reasons. Any changes will be posted on this page with an updated "Last updated" date. We encourage you to review this policy periodically.

If we make material changes that significantly affect the way we process your personal data, we will make reasonable efforts to notify you, such as by posting a prominent notice on our Website.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, please contact us:

  • Email: managers@goodstopunique.world
  • Address: 100 Bishopsgate, London EC2N 4AG, United Kingdom