kitleys' privacy notice
Privacy Notice
Last Update: November 2021
​
-
WHO ARE WE?
-
This website is brought to you by Kitleys Kits Limited. When we say 'we', 'us' or 'our' in this privacy notice we mean Kitleys Kits Limited. We will also refer to this privacy notice as the 'Notice'.
-
We respect your privacy and are committed to protecting your personal data. This privacy notice will inform you how we collect and look after your personal data when you visit our website and purchase products from us, and tell you about your privacy rights and how the law protects you.
-
We have tried to make this Notice as short and clear as possible but if there is anything you would like some further information on or if you have any questions about the personal data we use, please get in touch with us at hello@kitleys.co.uk.
-
-
CHANGES
-
We keep our privacy policy under regular review. You can view which version of the policy this is and the date that it was last updated at the start of the policy. We'll try and let you know if there are any major changes.
-
It is important that the personal data we hold about you is accurate and current. Please just drop us an email if your personal data changes during your relationship with us.
-
-
THIRD-PARTY LINKS
-
This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy policy of every website you visit.
-
-
WHAT PERSONAL DATA DO WE COLLECT ABOUT YOU?
-
Personal data means any information about an individual from which that person can be identified. People typically think of personal data as solely relating to things like your name and email address, but it can actually be much broader than that.
-
We may collect and use different kinds of personal data about you including:
-
Identity Data: this includes your first name and last name;
-
Contact Data: this includes your home address, contact number and email address; and
-
Technical and Usage Data: this includes information about your visit to our website, which we obtain through use of cookies on our website.
-
-
-
HOW DO WE COLLECT YOUR PERSONAL DATA?
-
Generally we will collect your personal data directly from you when you conduct a transaction with us or when you visit and interact with our website.
-
We also receive some limited personal data (name and email address) from one of our third party partners, Hurst Media Company (https://www.hurstmediacompany.co.uk/). We occasionally use Hurst Media Company's services to run a competition on our behalf and, as part of the competition entry, there is a separate marketing sign up for competition entrants. We have worked with Hurst Media Company to ensure that this marketing sign up clearly identifies us, sets out what you are consenting to and includes a link to this privacy notice. If you consent to this marketing sign up, Hurst Media Company then provides us with your personal data after the competition has closed.
-
-
WHAT DO WE USE YOUR PERSONAL DATA FOR?
-
We will only use your personal data where the law allows us to. Most commonly, we will use your personal data to:
-
manage our relationship with you including arranging payment for, and delivery of, any products that you have purchased from us, and asking you to leave a review after you have received your product or take a survey;
-
notify you about changes to our website terms, privacy notice and cookies notice;
-
communicate with you to answer any questions you may have on our products or to discuss all things Kitleys with you;
-
deliver relevant website content and email marketing to you and measure or understand the effectiveness of the email marketing we serve to you; and
-
to comply with any applicable laws and regulations.
-
-
-
HOW DO WE USE YOUR PERSONAL DATA FOR EMAIL MARKETING?
-
We mentioned email marketing above but there are a number of specific rules under applicable data protection laws relating to email marketing and it is important that you understand your rights here.
-
On our website there is an option to sign up to email marketing with your name and email address (in addition, please see section 5(2) above on the marketing sign up provided on Hurst Media Company's website). Through email marketing, we really want to be able to keep you in the loop with exciting company developments and new product releases. However, we know that these emails can sometimes be annoying. You can opt out of receiving these email communications at any time by clicking on the "unsubscribe" link in the relevant email or by emailing us at hello@kitleys.co.uk.
-
-
OUR USE OF THE WIX.COM PLATFORM
-
Our company is hosted on the Wix.com platform. Wix.com provides us with the online platform that allows us to sell our products to you. Your data may be stored through Wix.com’s data storage, databases and the general Wix.com applications. They store your data on secure servers behind a firewall. We have set out a list of the third parties Wix.com uses to process your personal data in section 10 below.
-
All direct payment gateways offered by Wix.com, and used by our company, adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our website and Wix.com's service providers.
-
-
WHAT IS OUR LAWFUL BASIS FOR USING YOUR PERSONAL DATA?
-
We are required to have a "lawful basis" for any processing of your personal data, in particular:
-
where the processing is necessary to deliver our services to you under a contract we have in place with you for the purchase of our products.
-
where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests;
-
where we have obtained your explicit consent (for example, when accepting non-essential cookies on our website to use your personal data for analytical and advertising purposes and to send your email marketing); and
-
where we need to comply with a legal obligation.
-
-
-
WHO DO WE SHARE YOUR PERSONAL DATA WITH?
-
The list below shows who we share your personal data with and why. We only share your personal data when it helps us to provide the services you have requested, where we have a legal or regulatory obligation or where it is in our legitimate business interest.
-
Third party service providers such as organisations that collect reviews;
-
Regulatory and law enforcement authorities, whether they are outside or inside of the United Kingdom, where the law allows or requires us to do so;
-
Wix.com, our website platform provider. Wix.com has also partnered with a number of selected service providers, whose services and solutions complement, facilitate and enhance Wix.com's platform. These include:
-
hosting and server co-location services;
-
communications and content delivery networks (CDNs);
-
data and cyber security services;
-
billing and payment processing services;
-
domain name registrars, fraud detection and prevention services, web analytics;
-
email distribution and monitoring services;
-
session recording and remote access services; and
-
performance measurement and data optimization services, content providers, and our legal and financial advisors.
-
-
-
-
DO WE TRANSFER ANY OF YOUR PERSONAL DATA INTERNATIONALLY?
-
We generally do not transfer any of your personal data outside the UK. The only exception to this is that our website platform provider, Wix.com, may transfer some personal data internationally. For such transfers, there are recognised safeguards in place – such as approved standard contractual clauses. For further information about the measures applied please contact hello@kitleys.co.uk.
-
-
HOW LONG WE KEEP YOUR PERSONAL DATA?
-
We keep your personal data for only as long as we need to for legal and business purposes - taking into account applicable laws, contractual obligations, and the needs of our customers. When we no longer need personal data, we securely delete or destroy it.
-
-
WHAT SECURITY MEASURES DO WE HAVE IN PLACE?
-
Keeping your personal data safe and secure is essential to us. We protect your personal data with both technology and through our own internal practices. We are a small company but we ensure that we have strong password protection for any areas where we may store your personal data.
-
In addition, Wix.com has implemented security measures designed to protect personal data that you share with us, including physical, electronic and procedural measures. Among other things, Wix.com offers HTTPS secure access to most areas on Wix.com's services; the transmission of sensitive payment information (such as a credit card number) through Wix.com's designated purchase forms is protected by an industry standard SSL/TLS encrypted connection; and Wix.com regularly maintains a PCI DSS (Payment Card Industry Data Security Standards) certification. Wix.com also regularly monitors its systems for possible vulnerabilities and attacks, and regularly seeks new ways and third party services for further enhancing the security of its services.
-
-
COOKIES
-
We use cookies on our website. Cookies are small text files that are downloaded onto your device when you visit a website. The cookies on our website records minimal personal data for the purposes of analysis, to help us understand how people use our website. Please refer to our cookies policy for further information about our use of cookies.
-
-
YOUR RIGHTS IN RELATION TO YOUR PERSONAL DATA
-
Under applicable data protection laws, you may have certain legal rights in respect of your personal data. These rights include:
-
to request access to your personal data;
-
to request correction of your personal data;
-
to request erasure of your personal data;
-
to object to processing of your personal data;
-
to request restriction of processing of your personal data;
-
to request the transfer of your personal data to you or to a third party; and
-
to withdraw consent at any time where we are relying on consent to process your personal data.
-
-
You can request further information about the rights detailed in section 15.1 above, or request to enforce such rights, by sending an email to hello@kitleys.co.uk. We will consider all such requests or complaints and provide a response within a reasonable period (and in any event, within one month of your request unless we notify you that we are entitled to a longer period in accordance with applicable law). We may request that you provide information necessary to verify your identity before responding to any request you make.
-
-
HOW TO CONTACT US ABOUT THIS NOTICE OR MAKE A COMPLAINT
-
If you’d like to contact us for more information or make a complaint about how we’ve handled your personal data, please contact us at: hello@kitleys.co.uk.
-
If you are unhappy about the way in which we collect or use your personal data or the way in which a complaint has been handled, you have a right to complain to the data protection authority in the UK, the Information Commissioner's Office. For more information you should contact the Information Commissioner's Office.
-
​