top of page

Coeliac Safe Ltd Privacy Policy

Last updated: 18/03/2024

This Privacy Policy describes how Coeliac Safe Ltd (the "Site", "we", "us", or "our") collects, uses, and discloses your personal information when you visit, use our services, or make a purchase from www.coeliacsafe.co.uk (the "Site") or otherwise communicate with us (collectively, the "Services"). For purposes of this Privacy Policy, "you" and "your" means you as the user of the Services, whether you are a customer, website visitor, or another individual whose information we have collected pursuant to this Privacy Policy.

Coeliac Safe Ltd is committed to protecting our customers' privacy. We are entirely open about our information gathering practices. Please read this Privacy Policy carefully. By using and accessing any of the Services, you agree to the collection, use, and disclosure of your information as described in this Privacy Policy. If you do not agree to this Privacy Policy, please do not use or access any of the Services. 

By visiting www.coeliacsafe.co.uk you are accepting and consenting to the practices described in this policy.

This privacy policy should be read alongside, and, in addition to, our Terms and Conditions, which can be found at: www.coeliacsafe.co.uk/terms-conditions.

1. PRIVACY & COOKIES POLICY

This User Privacy Policy was last updated on 19 March 2024. This Privacy Policy may vary from time to time so please check it regularly.

This Privacy Policy explains our privacy and information practices for our website and related services. This Policy describes the types of information collected, how that information is used and disclosed, and how you can access, modify, or delete your information.

2. HOW WE COLLECT YOUR PERSONAL INFORMATION

To provide the Services, we collect personal information about you from a variety of sources, as set out below. The information that we collect and use varies depending on how you interact with us.

In addition to the specific uses set out below, we may use information we collect about you to communicate with you, provide the Services, comply with any applicable legal obligations, enforce any applicable terms of service, and to protect or defend the Services, our rights, and the rights of our users or others.

What Personal Information We Collect

The types of personal information we obtain about you depends on how you interact with our Site and use our Services. When we use the term "personal information", we are referring to information that identifies, relates to, describes or can be associated with you. The following sections describe the categories and specific types of personal information we collect.

Information We Collect Directly from You

Through our online services we collect information about our customers via account registration, email newsletter requests, order forms, correspondence with you via emails, telephone calls or otherwise, forms you fill in on our site, other social media functions on our site, competitions and via cookies. The information you give us may include:

- Basic contact details including your name, address, phone number, email.
- Order information including your name, billing address, shipping address, payment confirmation, email address, phone number. 
- Account information including your username, password, security questions.
- Shopping information including the items you view, put in your cart or add to your wish list.
- Customer support information including the information you choose to include in communications with us, for example, when sending a message through the Services.

- Social media handles, content and other data posted on our official social media pages.

- Other personal information contained in content you submit to us, such as through our “Contact Us" feature or customer support tools on our websites.​​

Some features of the Services may require you to directly provide us with certain information about yourself. You may elect not to provide this information, but doing so may prevent you from using or accessing these features.

Information We Collect By Automatic Means

We also automatically collect certain information about your interaction with the Services ("Usage Data"). To do this, we may use cookies, pixels and similar technologies ("Cookies"). A “cookie" is a text file that websites send to a visitor's computer or other Internet-connected device to uniquely identify the visitor's browser or to store information or settings in the browser. A “web beacon," also known as an Internet tag, pixel tag or clear GIF, links web pages to web servers and their cookies and may be used to transmit information collected through cookies back to a web server. These technologies help us (1) remember your information so you will not have to re-enter it; (2) track and understand how you use and interact with our products and services; (3) tailor the services around your preferences; (4) measure the usability of our products and services and the effectiveness of our communications; and (5) otherwise manage and enhance our products and services, and help ensure they are working properly. Usage Data may include information about how you access and use our Site and your account, including device information, browser information, information about your network connection, your IP address and other information regarding your interaction with the Services. 

Information We Obtain from Third Parties

Finally, we may obtain information about you from third parties, including from vendors and service providers who may collect information on our behalf, such as:

- Companies who support our Site and Services, such as Wix.
- Our payment processors, who collect payment information (e.g., bank account, credit or debit card information, billing address) to process your payment in order to fulfil your orders and provide you with products or services you have requested, in order to perform our contract with you.
- When you visit our Site, open or click on emails we send you, or interact with our Services or advertisements, we, or third parties we work with, may automatically collect certain information using online tracking technologies such as pixels, web beacons, software developer kits, third-party libraries, and cookies.

- Information we obtain from third-party social media services (e.g., Facebook) or payment services (e.g., PayPal) if you choose to link to, create or log into your Coeliac Safe account through these services (including when you share Coeliac Safe videos or content via your social media account).

Any information we obtain from third parties will be treated in accordance with this Privacy Policy. We are not responsible or liable for the accuracy of the information provided to us by third parties and are not responsible for any third party's policies or practices. For more information, see the section below, Third Party Websites and Links.

3. HOW WE USE YOUR PERSONAL INFORMATION

Our company is hosted on the Wix.com platform. Wix.com provides us with the online platform that allows us to sell our products and services to you. Your data may be stored through Wix.com’s data storage, databases and the general Wix.com applications. They store your data on secure servers behind a firewall.  

 

All direct payment gateways offered by Wix.com and used by our company adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.

- Providing Products and Services. We use your personal information to provide you with the Services in order to perform our contract with you, including to process your payments, fulfil your orders, to send notifications to you related to you account, purchases, returns, exchanges or other transactions, to create, maintain and otherwise manage your account, to arrange for shipping, facilitate any returns and exchanges and to enable you to post reviews.


- Marketing and Advertising. We use your personal information for marketing and promotional purposes, such as to send marketing, advertising and promotional communications by email, text message or postal mail, and to show you advertisements for products or services. This may include using your personal information to better tailor the Services and advertising on our Site and other websites.


- Security and Fraud Prevention. We use your personal information to detect, investigate or take action regarding possible fraudulent, illegal or malicious activity. If you choose to use the Services and register an account, you are responsible for keeping your account credentials safe. We highly recommend that you do not share your username, password, or other access details with anyone else. If you believe your account has been compromised, please contact us immediately at customercare@coeliacsafe.co.uk.


- Communicating with you. We use your personal information to provide you with customer support and improve our Services. This is in our legitimate interests in order to be responsive to you, to provide effective services to you, and to maintain our business relationship with you.

4. COOKIES

Like many websites, we use Cookies on our Site. For specific information about the Cookies that we use related to powering our store with Wix, see https://support.wix.com/en/article/cookies-and-your-wix-site. We use Cookies to power and improve our Site and our Services (including to remember your actions and preferences), to run analytics and better understand user interaction with the Services (in our legitimate interests to administer, improve and optimize the Services). We may also permit third parties and services providers to use Cookies on our Site to better tailor the services, products and advertising on our Site and other websites.

Most browsers automatically accept Cookies by default, but you can choose to set your browser to remove or reject Cookies through your browser controls. Please keep in mind that removing or blocking Cookies can negatively impact your user experience and may cause some of the Services, including certain features and general functionality, to work incorrectly or no longer be available. Additionally, blocking Cookies may not completely prevent how we share information with third parties such as our advertising partners.

5. HOW WE DISCLOSE PERSONAL INFORMATION

In certain circumstances, we may disclose your personal information to third parties for legitimate purposes subject to this Privacy Policy. Such circumstances may include:

- With vendors or other third parties who perform services on our behalf (e.g., IT management, payment processing, data analytics, customer support, cloud storage, fulfilment and shipping).
- With business and marketing partners to provide services and advertise to you. We use Wix to support personalized advertising with third-party services. Our business and marketing partners will use your information in accordance with their own privacy notices.
- When you direct, request us or otherwise consent to our disclosure of certain information to third parties, such as to ship you products or through your use of social media widgets or login integrations, with your consent.
- With our affiliates or otherwise within our corporate group, in our legitimate interests to run a successful business.
- In connection with a business transaction such as a merger or bankruptcy, to comply with any applicable legal obligations (including to respond to subpoenas, search warrants and similar requests), to enforce any applicable terms of service, and to protect or defend the Services, our rights, and the rights of our users or others.

We have disclosed the following categories of personal information and sensitive personal information (denoted by *) about users for the purposes set out above in "How we Collect and Use your Personal Information" and "How we Disclose Personal Information":

Category:

- Identifiers such as basic contact details and certain order and account information
- Commercial information such as order information, shopping information and customer support information
- Internet or other similar network activity, such as Usage Data

Categories of Recipients:

- Vendors and third parties who perform services on our behalf (such as Internet service providers, payment processors, fulfilment partners, customer support partners and data analytics providers)
- Business and marketing partners
- Affiliates

We do not use or disclose sensitive personal information for the purposes of inferring characteristics about you.

6. USER GENERATED CONTENT

The Services may enable you to post product reviews and other user-generated content. If you choose to submit user generated content to any public area of the Services, this content will be public and accessible by anyone.

We do not control who will have access to the information that you choose to make available to others, and cannot ensure that parties who have access to such information will respect your privacy or keep it secure. We are not responsible for the privacy or security of any information that you make publicly available, or for the accuracy, use or misuse of any information that you disclose or receive from third parties.

7. THIRD PARTY WEBSITES AND LINKS

Our Site may provide links to websites or other online platforms operated by third parties. If you follow links to sites not affiliated or controlled by us, you should review their privacy and security policies and other terms and conditions. We do not guarantee and are not responsible for the privacy or security of such sites, including the accuracy, completeness, or reliability of information found on these sites. Information you provide on public or semi-public venues, including information you share on third-party social networking platforms may also be viewable by other users of the Services and/or users of those third-party platforms without limitation as to its use by us or by a third party. Our inclusion of such links does not, by itself, imply any endorsement of the content on such platforms or of their owners or operators, except as disclosed on the Services.

8. CHILDREN'S DATA

The Services are not intended to be used by individuals under 18 years of age, and we do not knowingly collect any personal information about children. If you are the parent or guardian of a child who has provided us with their personal information, you may contact us to request that it be deleted at customercare@coeliacsafe.co.uk.

As of the Effective Date of this Privacy Policy, we do not have actual knowledge that we "share" or "sell" (as those terms are defined in applicable law) personal information of individuals under 18 years of age.

9. SECURITY AND RETENTION OF YOUR INFORMATION

We will use technical and organisational measures to safeguard your data, for example:

 

a) Access to your account is controlled by a password and a username that is unique to you. 

b) Payment details are encrypted and protected by an industry standard SSL/TLS encrypted connection; and we regularly maintain a PCI DSS (Payment Card Industry Data Security Standards) certification. 

 

technical and organisational measures include measures to deal with a suspected data breach. If you suspect any misuse or loss or unauthorised access to your data, please let us know immediately by contacting: customercare@coeliacsafe.co.uk

 

Please be aware that no security measures are perfect or impenetrable, and we cannot guarantee "perfect security." In addition, any information you send to us may not be secure while in transit. We recommend that you do not use unsecure channels to communicate sensitive or confidential information to us.

When you place an order through the Site, we will retain your Personal Information for our records unless and until you ask us to erase this information. For more information on your right of erasure, please see the ‘Your rights’ section below.

How long we retain your personal information depends on different factors, such as whether we need the information to maintain your account, to provide the Services, comply with legal obligations, resolve disputes or enforce other applicable contracts and policies.

 

 

10.YOUR RIGHTS AND CHOICES

Depending on where you live, you may have some or all of the rights listed below in relation to your personal information. However, these rights are not absolute, may apply only in certain circumstances and, in certain cases, we may decline your request as permitted by law.

- Right to Access / Know. You may have a right to request access to personal information that we hold about you, including details relating to the ways in which we use and share your information.
- Right to Delete. You may have a right to request that we delete personal information we maintain about you.
- Right to Correct. You may have a right to request that we correct inaccurate personal information we maintain about you.
- Right of Portability. You may have a right to receive a copy of the personal information we hold about you and to request that we transfer it to a third party, in certain circumstances and with certain exceptions.

- You have the right to request that we restrict our processing of your Personal Data in certain circumstances. There may be circumstances where you ask us to restrict our processing of your Personal Data but we are legally entitled to refuse that request.

- You have the right to obtain information regarding the processing of your Personal Data and access to the Personal Data which we hold about you. We will provide this within one month of the receipt of request.

- You have the right to lodge a complaint with your Data Protection Authority. In the U.K, this is the Information Commissioner's Office.

- If our processing of Personal Data is based on your consent, you have the right to withdraw consent for future processing at any time by contacting us. Please note, however, that we may still be entitled to process your Personal Data if we have another legitimate reason (other than consent) for doing so.

- You have the right to opt out of receiving any marketing information which we send you.

- If you wish to opt out of the marketing we sent you, please contact: customercare@coeliacsafe.co.uk

You may exercise any of these rights where indicated on our Site or by contacting us using the contact details provided below.

We will not discriminate against you for exercising any of these rights. We may need to collect information from you to verify your identity, such as your email address or account information, before providing a substantive response to the request. In accordance with applicable laws, You may designate an authorized agent to make requests on your behalf to exercise your rights. Before accepting such a request from an agent, we will require that the agent provide proof you have authorized them to act on your behalf, and we may need you to verify your identity directly with us. We will respond to your request in a timely manner as required under applicable law.

EU General Data Protection Regulation - Legal Basis

The EU GDPR and UK data protection laws require a legal basis for our use of personal information. Our basis varies depending on the specific purpose for which we use personal information. We use:

- Performance of a contract when we provide you with products or services, or communicate with you about them. This includes when we use your personal information to take and handle orders, deliver products and services, and process payments.

- Our legitimate business interests and the interests of our customers when we improve our products and services, when we detect and prevent fraud and abuse in order to protect the security of our customers, ourselves, or others, and when we provide you with interest-based advertising.

- Your consent when we ask for your consent to process your personal information for a specific purpose that we communicate to you. When you consent to our processing your personal information for a specified purpose, you may withdraw your consent at any time and we will stop processing of your data for that purpose.

- Compliance with a legal obligation when we use your personal information to comply with laws.

- These and other legal bases depending on the purpose for which we use personal information.

11.COMPLAINTS

If you have complaints about how we process your personal information, please contact us using the contact details provided below. If you are not satisfied with our response to your complaint, depending on where you live you may have the right to appeal our decision by contacting us using the contact details set out below, or lodge your complaint with your local data protection authority.

12. INTERNATIONAL USERS

Please note that we may transfer, store and process your personal information outside the country you live in. Your personal information is also processed by staff and third party service providers and partners in these countries.


If we transfer your personal information out of Europe, we will rely on recognized transfer mechanisms like the European Commission's Standard Contractual Clauses, or any equivalent contracts issued by the relevant competent authority of the UK, as relevant, unless the data transfer is to a country that has been determined to provide an adequate level of protection.

13. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time, including to reflect changes to our practices or for other operational, legal, or regulatory reasons. We will post the revised Privacy Policy on the Site, update the "Last updated" date and take any other steps required by applicable law.

14. CONTACT

Should you have any questions about our privacy practices or this Privacy Policy, or if you would like to exercise any of the rights available to you, please email us at customercare@coeliacsafe.co.uk or contact us at Lytchett House 13 Freeland Park, Wareham Road, Poole, ENG, BH16 6FA, United Kingdom.

 

For the purpose of applicable data protection laws, we are the data controller of your personal information. 

If you wish for further information, or wish to exercise any other right, please visit: www.gov.uk/data-protection

bottom of page