← Back to home

Privacy Policy

Last updated: 14 April 2026

This privacy policy explains how [BUSINESS NAME] (“we”, “us”, “our”) collects, uses, and protects information about you when you visit [YOUR DOMAIN] or buy our products. We are committed to protecting your privacy in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who we are

The data controller is [BUSINESS NAME], registered at Unit 10, The Mall, Luton, LU1 2TE, United Kingdom. You can contact us at info@aurorahairnbeauty.co.uk for any data protection questions or to exercise your rights under UK GDPR.

2. What data we collect

When you place an order or contact us, we collect:

  • Your name
  • Email address
  • Billing and shipping address
  • Phone number (if provided)
  • Payment details (processed securely by Stripe — we never see or store your full card number)
  • Order history
  • Communications you send us via email, WhatsApp, or social media

When you visit our website, we may also collect technical data such as your IP address, browser type, device type, and pages viewed.

3. Why we collect it (lawful basis)

Under UK GDPR, we process your data on the following lawful bases:

  • Contract: to fulfil your order, take payment, ship your product, and provide customer support
  • Legal obligation: to keep tax and accounting records required by HMRC (typically 6 years)
  • Legitimate interest: to improve our website, prevent fraud, and respond to customer enquiries
  • Consent: to send marketing emails (only if you opt in — you can unsubscribe at any time)

4. Who we share it with

We never sell your data. We only share it with third parties who help us run our business:

  • Stripe — payment processing (stripe.com/gb/privacy)
  • Royal Mail / [YOUR COURIER] — to deliver your order
  • Vercel — website hosting
  • HMRC and other authorities — only when required by law

5. How long we keep it

We keep order and customer data for 6 years after your last purchase (HMRC requirement). Marketing data is kept until you unsubscribe. Website analytics data is kept for 26 months.

6. Your rights

Under UK GDPR you have the right to:

  • Access the personal data we hold about you
  • Have inaccurate data corrected
  • Have your data erased (subject to our legal obligations)
  • Restrict or object to how we process your data
  • Data portability (receive your data in a structured format)
  • Withdraw consent for marketing at any time
  • Lodge a complaint with the Information Commissioner's Office (ico.org.uk)

To exercise any of these rights, email us at info@aurorahairnbeauty.co.uk. We will respond within one calendar month.

7. Cookies

Our website uses essential cookies needed for the site to function (such as remembering your basket). We do not currently use tracking or advertising cookies. If we add analytics in future, we will update this policy and ask for your consent.

8. Changes to this policy

We may update this policy from time to time. The date at the top of this page shows when it was last updated. Material changes will be announced on our homepage.

9. Contact

Questions about this policy? info@aurorahairnbeauty.co.uk