top of page

Privacy Policy

At Rammed Roots, we respect your privacy and are committed to protecting your personal data in compliance with the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018. This Privacy Policy explains how we collect, use, and store your personal data when you visit our website and purchase our products.

Section Title

1. Who We Are

[Your Business Name] is a business registered in the UK, offering [brief description of your products]. Our registered office is located at [insert address].

For the purposes of data protection law, we are the data controller for your personal data.

2. Personal Data We Collect

We collect personal data to process orders, provide customer support, and improve our services. The data we collect may include:

  • Contact Information: Name, address, phone number, email address.

  • Order Information: Products purchased, purchase history, payment details (processed securely via third-party payment gateways).

  • Technical Data: IP address, browser type, device type, operating system.

  • Marketing Preferences: Information about how you interact with our communications and marketing content.

3. How We Use Your Data

We use your personal data for the following purposes:

  • Order Processing: To fulfill orders, manage payments, and deliver products to you.

  • Customer Support: To assist with any queries, complaints, or returns.

  • Marketing: To send promotional communications, newsletters, or product updates (if you've opted in).

  • Legal Obligations: To comply with legal requirements such as tax and accounting obligations.

4. Legal Basis for Processing Your Data

Under the GDPR, we must have a legal basis to process your personal data. We process your data under the following lawful bases:

  • Contractual Necessity: We process your personal data to complete purchases and provide services you’ve requested.

  • Legitimate Interests: We may use your data for marketing and customer service purposes (e.g., improving our website and services).

  • Consent: If you subscribe to our newsletter or agree to receive marketing communications, we process your data based on your consent.

  • Legal Obligation: We may need to process your data to meet tax and accounting regulations.

5. Data Retention

We retain your personal data for no longer than necessary to fulfill the purposes for which it was collected, including for legal, accounting, or reporting purposes. In general:

  • Order Data: Retained for a minimum of 6 years in line with UK tax law.

  • Marketing Data: Retained until you withdraw consent or unsubscribe.

6. Your Rights Under GDPR

As a data subject, you have the following rights:

  • Access: You can request a copy of the personal data we hold about you.

  • Correction: You can request corrections to any inaccuracies in your data.

  • Deletion: You can ask us to delete your personal data, subject to certain exceptions (e.g., legal obligations).

  • Restriction: You can ask us to restrict the processing of your data in certain situations.

  • Portability: You can request a copy of your data in a structured, commonly used format to transfer to another provider.

  • Objection: You can object to processing based on legitimate interests or direct marketing.

  • Withdraw Consent: If you’ve given consent to receive marketing materials, you can withdraw it at any time.

If you wish to exercise any of these rights, please contact us at [contact email or phone].

7. Sharing Your Data

We do not share your personal data with third parties except in the following circumstances:

  • Third-Party Service Providers: We use trusted partners to help process your payments, ship products, and manage customer support. These third parties are contractually obliged to protect your data and use it only for the purposes specified.

  • Legal Requirements: We may need to share your data to comply with legal obligations, such as law enforcement or regulatory authorities.

8. International Transfers

We do not transfer your personal data outside of the UK or European Economic Area (EEA). If we ever need to transfer your data internationally, we will ensure adequate safeguards are in place to protect your information.

9. Security of Your Data

We implement appropriate technical and organizational measures to safeguard your personal data. We use secure servers, encryption technologies, and other security practices to protect your data from unauthorized access, loss, or alteration.

10. Cookies

Our website uses cookies to enhance your user experience. Cookies are small files stored on your device that help us analyze website traffic, improve site functionality, and remember your preferences. You can manage cookie preferences through your browser settings.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page, and we will notify you if significant changes are made. Please check this policy periodically for updates.

12. How to Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our use of your personal data, please contact us at:

[Your Business Name]
Email: [Your email address]
Phone: [Your phone number]
Address: [Your business address]

You can also lodge a complaint with the Information Commissioner’s Office (ICO) if you believe we have not complied with data protection laws:
Website: https://ico.org.uk
Helpline: 0303 123 1113

bottom of page