Privacy Policy
Effective Date: [01 JANUARY 2025]
Last Updated: [01 JUNE 2025]
SMART4LESS® (“we”, “our”, “us”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your personal information when you interact with our website or use our services.
1. Information We Collect
We may collect and process the following types of personal information:
Information You Provide Directly
When registering, ordering, subscribing, or interacting with our website, we may collect:
Full name
Email address
Postal address
Telephone number
Company name (if applicable)
VAT number (if applicable)
Payment method (type only; no payment details are stored)
Any information voluntarily submitted via contact forms, live chat, product reviews, or feedback
Information Collected Automatically
When you browse or interact with the website, we may collect:
IP address and host name
Device type and operating system
Browser type and version
Referring website
Geolocation data (approximate)
Time and date of site access
Session ID and browsing activity
Whether a user is new, returning, or a guest
Products viewed or added to cart
Loyalty points (if applicable)
2. How We Use Your Information
We use your personal data to:
Fulfil orders and deliver products/services
Communicate regarding your orders, returns, or support requests
Process payments via a secure third-party payment processor
Personalise user experience and respond to customer service requests
Send newsletters, promotions, and service-related communications (with consent)
Improve our website, services, and product offerings through analytical insights
Administer contests, surveys, or other promotional activities
Meet legal obligations and prevent fraudulent activity
3. Order Processing Specifics
When an order is placed, we store details relevant to order fulfilment and support, including:
Customer details (as listed above)
Payment method and amount (processed through third-party gateway)
Order contents and shipping method
Loyalty points earned (if applicable)
Staff activity logs on the order
Order history and behavioural tags (e.g. guest or returning user)
4. Legal Basis for Processing
We process your data under the following lawful bases:
Performance of a contract – to fulfil orders or provide services you have requested.
Legitimate interest – to improve our services, prevent fraud, or inform you about similar products.
Consent – for email marketing or when storing certain cookies.
Legal obligation – where required by UK law.
5. Data Retention
We retain personal data only for as long as necessary for the purposes for which it was collected, including satisfying legal, accounting, or reporting requirements. After such time, data is securely deleted or anonymised.
6. How We Protect Your Information
We implement the following security measures to safeguard your data:
Secure Socket Layer (SSL) encryption
Firewalled hosting environment with regular security audits
Role-based access controls to back-end systems
Encrypted passwords and session management
No credit/debit card information is stored on our servers
All transactions are securely processed through PCI-DSS compliant third-party payment gateways.
7. Use of Cookies
What Are Cookies?
Cookies are small text files placed on your device that enable us to recognise your browser and store certain information.
Cookies We Use
PHPSESSID – Enables session continuity for shopping functionality; expires when browser is closed.
Session Cookie – Stores encrypted login information and cart items for returning users; expires after one year.
Purpose of Cookies
We use cookies to:
Remember items in your shopping cart
Recognise returning users
Personalise your experience
Analyse site traffic and user behaviour
You can modify your cookie preferences via your browser settings. Disabling cookies may impair certain website functions.
8. Third-Party Disclosure
We do not sell or rent your personal information. However, we may share your data with trusted third parties who assist us in:
Operating the website
Processing transactions
Delivering goods or services
Providing IT and security services
All such parties are contractually obligated to keep your data confidential and secure.
We may also disclose your information:
To comply with applicable laws or legal processes
To enforce our site policies
To protect our rights, users, or others from harm
Non-personal, anonymised visitor data may be shared with third parties for analytical or marketing purposes.
9. Your Rights Under UK GDPR
As a data subject, you have the right to:
Access the personal data we hold about you
Request correction of inaccurate data
Request deletion of your personal data (“right to be forgotten”)
Object to processing or request restriction of use
Withdraw your consent at any time
Data portability
To exercise any of these rights, contact us at: [CONTACT]
10. Email Communications and CAN-SPAM Compliance
In compliance with the CAN-SPAM Act and applicable UK email marketing regulations, we:
Do not use false or misleading email headers or subjects
Clearly identify marketing emails as advertisements
Include our physical mailing address in every email
Honour all unsubscribe requests promptly
Monitor third-party email marketing partners for compliance
You can unsubscribe from marketing emails at any time by clicking the link at the bottom of our messages.
11. Children’s Privacy
We do not knowingly collect personal information from individuals under the age of 16. If you believe we have inadvertently collected such data, please contact us for immediate deletion.
12. Changes to This Privacy Policy
We reserve the right to modify this Privacy Policy at any time. Updates will be posted on this page and will take effect immediately unless otherwise stated. Your continued use of our services constitutes your acceptance of any changes.
13. Contacting Us
If you have any questions regarding this Privacy Policy or wish to exercise your data rights, please contact:
SMART4LESS®
[CONTACT]