New Customer? Receive 15% off your order when you spend £15 or more. Use code NEW15 at checkout
0

Privacy Policy

Last Updated: 04 February 2025

Reevey Lou's Fudge Kitchen ("we," "our," or "us") is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information in compliance with the UK General Data Protection Regulation (UK GDPR) and the EU General Data Protection Regulation (EU GDPR).

1. Information We Collect

We collect the following types of personal data when you interact with our website:

  • Personal Information: Name, email address, phone number, shipping/billing address.
  • Payment Information: Payment details are processed securely via third-party payment providers (e.g., PayPal, Stripe) and are not stored by us.
  • Order Details: Items purchased, transaction history, and preferences.
  • Technical Data: IP address, browser type, and browsing behavior on our website (collected via cookies).

2. Legal Basis for Processing Data (GDPR Compliance)

We process your personal data based on the following legal grounds:

  • Contractual Necessity: To process and deliver your orders.
  • Legitimate Interests: To improve our website, provide customer support, and prevent fraud.
  • Legal Obligations: To comply with applicable laws and regulations.
  • Consent: For marketing communications (only if you opt-in).

3. How We Use Your Information

We use your personal data for the following purposes:

  • To process and fulfill orders.
  • To communicate with you about orders, promotions, or updates.
  • To improve our website, products, and customer experience.
  • To comply with legal and regulatory requirements.
  • To send marketing emails (only if you have opted in).

4. How We Protect Your Information

We take security seriously and implement the following measures:

  • Secure payment processing through trusted third-party providers.
  • SSL encryption to protect sensitive information.
  • Limited access to personal data, restricted to authorized personnel only.

5. Sharing Your Information

We do not sell or rent your personal data. However, we may share your information with:

  • Payment processors (e.g., PayPal, Stripe) to complete transactions.
  • Shipping carriers to deliver your order.
  • Legal authorities if required by law or to prevent fraud.

6. Your Rights Under GDPR

Under UK and EU GDPR, you have the following rights regarding your personal data:

  • Right to Access – Request a copy of the personal data we hold about you.
  • Right to Rectification – Request corrections to inaccurate or incomplete data.
  • Right to Erasure ("Right to Be Forgotten") – Request deletion of your personal data (unless required for legal reasons).
  • Right to Restrict Processing – Request to limit how we use your data.
  • Right to Data Portability – Request to transfer your data to another service provider.
  • Right to Object – Object to data processing for marketing purposes.
  • Right to Withdraw Consent – If you have given consent for marketing, you can withdraw it at any time.

To exercise any of these rights, please contact us at [email protected]

7. Cookies & Tracking Technologies

We use cookies to enhance your browsing experience and improve our services. You can manage cookie preferences through your browser settings.

8. Data Retention

  • We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy.
  • Order and transaction records are kept for 6 years to comply with tax and legal obligations.
  • If you request data deletion, we will securely erase your personal data unless required by law.

9. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy policies or practices.

10. Changes to This Privacy Policy

We may update this policy from time to time. Any changes will be posted on this page with the updated date.

11. Contact Information & Complaints

If you have any questions or concerns about how we handle your data, please contact us:

📧 Email: [email protected]

If you are unhappy with how we process your personal data, you have the right to file a complaint with your local data protection authority: