Enjoy free delivery on all orders over £110
Log in

Cart

Your cart is currently empty.

Continue shopping
Total
£0.00

Data Protection and Privacy Compliance Statement

1. Overview

When providing website and related services, certain personal information may be processed.
This statement explains the data protection framework applicable in the United Kingdom and Europe, the general principles applied to information handling, and the rights that may be available to users under relevant laws. Its purpose is to help you understand how personal information is used within a compliant context.

2. Legal Framework and Objectives

In the United Kingdom and Europe, the processing of personal information is primarily governed by:

  • The Data Protection Act 2018

  • The UK General Data Protection Regulation (UK GDPR)

These regulations aim to:

  • Improve transparency around how personal information is used

  • Establish clear and proportionate boundaries for data processing activities

  • Reduce the risk of misuse, improper handling, or unauthorised access

3. Scope of Application

This compliance statement applies to personal information processing activities related to:

  • Providing products or services to users located in the United Kingdom

  • Website operation, online features, or customer support interactions

  • Information use required for order fulfilment, communication, or regulatory compliance

Activities carried out purely for personal or household purposes generally fall outside the scope of this statement.

4. Core Principles for Personal Information Processing

When handling personal information, the following commonly recognised principles are applied:

Lawfulness and Transparency
Information is collected and used on a lawful basis and explained in a clear manner.

Purpose Limitation
Information is used only for specific, legitimate service-related purposes.

Data Minimisation
Collection is limited to what is necessary for providing the relevant services.

Accuracy and Updates
Reasonable steps are taken to keep information accurate and up to date.

Retention Limitation
Information is kept only for as long as required by operational or legal needs.

Security Measures
Appropriate technical and organisational safeguards are applied to reduce risk.

5. Rights Available to Users

Under applicable UK and European data protection laws, users may have the right to:

  • Request access to personal information held

  • Request correction of inaccurate or incomplete information

  • Request deletion or restriction of processing where legal conditions apply

  • Raise questions or concerns regarding specific data processing activities

Requests related to these rights may be submitted using the contact details provided.

6. Compliance Responsibilities and Internal Practices

When processing personal information, the following practices are generally applied:

  • Handling information based on service needs and legal requirements

  • Using commonly accepted security measures such as access controls or encryption

  • Assessing potential data security risks

  • Retaining necessary records related to data processing where appropriate

Whether additional actions are required is assessed based on the specific circumstances and applicable regulations.

7. Cross-Border Data Processing

In certain technical or operational situations, personal information may be stored or processed outside the United Kingdom.

Where this occurs, recognised compliance mechanisms are applied to ensure that data handling remains consistent with applicable data protection standards.

8. Regulatory Oversight and Compliance Consequences

In the United Kingdom, data protection matters are subject to oversight by relevant regulatory authorities.
Where processing does not comply with applicable data protection requirements, this may result in investigations, corrective measures, or other legal consequences, depending on the nature and impact of the situation.

9. Importance of Compliance

For users:

  • Supports better understanding of how personal information is used

  • Enhances awareness of transparency in online services

For the platform:

  • Helps reduce data protection and compliance-related risks

  • Supports stable and responsible service operation over time

10. Contact Details

If you have questions about personal information handling, privacy-related matters, or your rights under data protection laws, you may contact:

Email: studio@chicroomz.com

Enquiries are reviewed and responded to within a reasonable timeframe, based on the nature of the request.