Wolfson Brands

We are the data controller responsible for your personal data. If you have any questions about this policy or how we handle your data, please contact us at hello@wolfsonbrands.com 

• We use your data to:
• Provide the products and services you have ordered;
• Verify your identity and details of your payment method or credit card amount;
• Administer our website and provide customer services;
• Meet legal, regulatory and compliance requirements;
• Monitor and analyse the use of any account to prevent, investigate and/or report fraud, terrorism, misrepresentation, security incidents or crime;
• Gather management information to form statistical and trend analysis;
• Communicate with you;
• Investigate any complaints about this website;
• Personalise your experience of this website; and
• Contact you about our products and services which we think might be of interest to you (where we have the appropriate permissions to do so)
• We may share your personal information with our affiliate companies and their brands for the above purposes. Please see section 8. Data Sharing & Transfers for more information.

• We may collect the following categories of personal data:
• Identity Data – name, date of birth, gender.
• Contact Data – email address, phone number, billing/shipping address.
• Account Data – account login credentials.
• Transaction Data – details of products purchased, payment information. We process payment information securely in compliance with PCI DSS standards. All sensitive payment data is encrypted and processed by trusted third-party payment processors.
• Technical Data – IP address, browser type, operating system, referring URLs.
• Usage Data – information on how you use our website and services.
• Marketing & Communications Data – preferences in receiving marketing from us.
• You may also choose to provide additional voluntary information in the course of your use of our websites. We do not knowingly collect or process personal data from individuals under the age of 18. If we become aware that we have inadvertently collected such data, we will delete it as soon as possible.

• We use different methods to collect data from and about you, including:
• Direct interactions (e.g. placing an order, subscribing to our newsletter)
• Automated technologies (e.g. cookies, server logs)
• Third parties (e.g. payment processors, analytics providers)

• We process your personal data under the following lawful bases:
• Consent – for sending marketing emails or using non-essential cookies.
• Contract – to fulfil our obligations when you make a purchase.
• Legal Obligation – for tax, accounting, or regulatory requirements.
• Legitimate Interests – to manage our business, improve services, and prevent fraud.

• We use your data to:
• Provide the products and services you have ordered;
• Verify your identity and details of your payment method or credit card amount;
• Administer our website and provide customer services;
• Meet legal, regulatory and compliance requirements;
• Monitor and analyse the use of any account to prevent, investigate and/or report fraud, terrorism, misrepresentation, security incidents or crime;
• Gather management information to form statistical and trend analysis;
• Communicate with you;
• Investigate any complaints about this website;
• Personalise your experience of this website; and
• Contact you about our products and services which we think might be of interest to you (where we have the appropriate permissions to do so)
• We may share your personal information with our affiliate companies and their brands for the above purposes. Please see section 8. Data Sharing & Transfers for more information.

Where you have given us the appropriate permissions during the registration process to the website/website services (as applicable), we may from time to time contact you by email, SMS, telephone or post about our products, services (including from all our brands) that may be of interest to you, and to help with any issues with your order.

If at any point, you would like to opt-out of receiving such marketing communications from us, or would like to change the channels that we use to contact you, please click on the unsubscribe link at the bottom of any emails you receive. Alternatively you can email us, stating your preferences, at hello@wolfsonbrands.com. Pending your consent we will retain your data, unless you request for it to be deleted.

We utilise a text messaging platform which is subject to the following terms and conditions. By opting-in for our text marketing and notifications, you agree to these terms and conditions.

By entering your phone number in the checkout and initialising a purchase, subscribing via our subscription form or a keyword, you agree that we may send you text notifications (for your order, including abandoned cart reminders) and text marketing offers. You acknowledge that consent is not a condition for any purchase.

Your phone number, name and purchase information will be shared with our SMS platform SMSBump Inc, an European Union company with office in Sofia, Bulgaria, EU. This data will be used for sending you targeted marketing messages and notifications. Upon sending the text messages, your phone number will be passed to a text messages operator to fulfill their delivery.

If you wish to unsubscribe from receiving text marketing messages and notifications reply with STOP to any mobile message sent from us or use the unsubscribe link we provided you with in any of our messages. You understand and agree that alternative methods of opting out, such as using alternative words or requests will not be accounted as a reasonable means of opting out. Message and data rates may apply.

For any questions please text "HELP" to the number you received the messages from. You can also contact us for more information. If you wish to opt out please follow the procedures above.

We use cookies to collect information about and store your online preference. Cookies are small pieces of information sent by a web server to a web browser which allows the server to uniquely identify the browser on each page.

We use the following categories of cookies on our website:

STRICTLY NECESSARY COOKIES
These cookies are essential in order to enable you to move around the website and use its features. Without these cookies, services you have asked for such as remembering your login details or shopping basket items cannot be provided.

PERFORMANCE COOKIES
These cookies collect anonymous information on how people use our website. For example, we use Google Analytics cookies to help us understand how customers arrive at our site, browse or use our site and highlight areas where we can improve areas such as navigation, shopping experience and marketing campaigns. The data stored by these cookies never shows personal details from which your individual identity can be established.

FUNCTIONALITY COOKIES
These cookies remember choices you make such as the country you visit our website from, language and search parameters such as size, colour or product line. These can then be used to provide you with an experience more appropriate to your selections and to make the visits more tailored and pleasant. The information these cookies collect may be anonymised and they cannot track your browsing activity on other websites.

TARGETING COOKIES OR ADVERTISING COOKIES
These cookies collect information about your browsing habits in order to make advertising more relevant to you and your interests. They are also used to limit the number of times you see an advert as well as help measure the effectiveness of an advertising campaign. The cookies are usually placed by third party advertising networks. They remember the websites you visit and that information is shared with other parties such as advertisers.

SOCIAL MEDIA COOKIES
These cookies allow you to share what you’ve been doing on the website on social media such as Facebook and Twitter. These cookies are not within our control. Please refer to the respective privacy policies for how their cookies work.

If you want to delete any cookies that are already on your computer, please refer to the help and support area on your internet browser for instructions on how to locate the file or directory that stores cookies.
Please note that by deleting our cookies or disabling future cookies you may not be able to access certain areas or features of our site. To find out more about cookies please visit: www.allaboutcookies.org or see www.youronlinechoices.eu which contains further information about behavioural advertising and online privacy.

Some of our Web pages may contain electronic images known as Web beacons (sometimes known as clear gifs) that allow us to count users who have visited these pages. Web beacons collect only limited information which includes a cookie number, time and date of a page view, and a description of the page on which the Web beacon resides. We may also carry web beacons placed by third party advertisers. These beacons do not carry any personally identifiable information and are only used to track the effectiveness of a particular campaign.

We may employ the services of third party service providers to help us in certain areas, such as website hosting, payment processing, maintenance, call centre operation, shipping couriers, cart-abandonment, marketing. In some cases the third party may receive your information. However, at all times, we will control and be responsible for the use of your information and ensure its safety. We have signed addendums with all our partners to ensure that they comply with the UK GDPR & Data Protection Act 2018.

We may use aggregated information so we can administer and improve our website, analyse trends, gather broad demographic information and detect suspicious or fraudulent transactions. We may pass this information to third parties to help us with those activities.
If you provide a credit or debit card, we may also use third parties to check the validity of the sort code, account number and card number you submit in order to prevent fraud as well as to process any transaction you attempt via the website.

Some of our partners may be based outside the UK. When this occurs, we ensure appropriate safeguards are in place. We may transfer some of your personal information to the United States of America as we have affiliates in these jurisdictions, but only to companies that are registered with the EU-US Privacy Shield, therefore ensuring the safety of your data.

All Personally Identifiable Information obtained through Amazon Services API will be encrypted in transit using TLS 1.2 or higher, and encrypted at rest using AES-128 or RSA 2048-bit key or higher, in compliance with Amazon Data Protection Policy.

We retain your data only as long as necessary for the purpose it was collected, including to comply with legal, accounting, or reporting requirements. Data sent to third parties for marketing purposes, assuming we have your consent, will be held there until you ask us to delete it.

We will hold Personally Identifiable Information (PII) obtained through Amazon Services API only for the minimum necessary period to fulfill the order, and will permanently delete such PII no later than 30 days after order delivery unless required by law to retain it. All live (online or network accessible) instances of such data will be securely deleted within 90 days from Amazon's request.

• You are entitled to see the personal information held about you. If you wish to do this, please contact us at hello@wolfsonbrands.com. We may require you to provide verification of your identity to provide a copy of the personal information we hold. Please note that in certain circumstances we may withhold access to your personal information where we have the right to do so under current data protection legislation. Other rights that you have under the UK GDPR:
• Right to access – request a copy of your personal data.
• Right to rectification – correct inaccurate or incomplete data.
• Right to erasure – request deletion of your data (subject to legal obligations).
• Right to restrict processing – limit how your data is used.
• Right to object – to processing based on legitimate interests or direct marketing.
• Right to data portability – request transfer of your data to another service.
• Rights related to automated decision-making – including profiling.
• To exercise any of these rights, contact us at hello@wolfsonbrands.com

We have implemented reasonable technical and organisational measures designed to secure your personal information from accidental loss and from unauthorised access, use, alteration or disclosure. However, the Internet is an open system and we cannot guarantee that unauthorised third parties will never be able to defeat those measures or use your personal information for improper purposes.

We maintain logs of all access to systems processing Personally Identifiable Information (PII), including access attempts, system changes, and data requests. These logs are retained for a minimum of 90 days and are reviewed regularly to detect and investigate any suspicious activity. Personally Identifiable Information is never included in logs unless required for legal purposes.

Multi-Factor Authentication (MFA) is enforced for all personnel accounts with access to Amazon PII. User access follows the principle of least privilege and is reviewed quarterly. Shared or generic accounts are strictly prohibited. In the case of a data breach involving Amazon PII, we will notify Amazon within 24 hours and maintain full documentation of the incident, remediation actions, and audit logs, as required.

In the event that the business is sold or integrated with another business, your details will be disclosed to our advisers and any prospective purchaser’s adviser and will be passed to the new owners of the business.

For any Personally Identifiable Information received from Amazon Services API, we comply with Amazon’s Data Protection Policy. We maintain a detailed record of processing activities involving Amazon data, and ensure all such data is processed only for permitted purposes. Amazon customers retain the right to access, correct, delete or restrict the use of their data, and we assist Amazon in fulfilling such requests.

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated “Effective Date.” Please check regularly to stay informed. Regularly reviewing this page ensures that you are always aware of what personal information we collect, how we use it and under what circumstances, if any, we will share it with other parties.

If you have any questions about this policy or your personal information, please contact us at hello@wolfsonbrands.com. We will aim to respond to you within one month.