INTRODUCTION

Nothing Twice (“we” or “us”) takes the privacy of your information very seriously. This Privacy Policy is designed to tell you about our practices regarding the collection, use and disclosure of information that you provide us with when using the website www.nothingtwice.co.uk (“the website”) and the mobile application. It also describes your data protection rights, including the right to object to some of the data processing.

WHAT INFORMATION DO WE COLLECT?

When you purchase something from our store, as part of the buying and selling process, we collect the personal information you give us such as your name, address, email address, or phone number. We also collect Information provided in connection with your purchase orders you place through our website and keep a record of any correspondence between you and us. We also secure details of accounting or financial transactions including transactions carried out through our website or otherwise. We only collect such information when you choose to supply it to us.

When you browse our store, we also automatically receive your computer’s internet protocol (IP) address and cookies in order to provide us with information that helps us learn about your browser and operating system. These methods do not collect or store personal information.

Sometimes we receive personal data about you from third parties when you engage with our services through social media, or other non-Nothing Twice sites or applications.

HOW DO WE USE THIS INFORMATION?

We process your personal data for the following purposes:

To fulfil a contract, or take steps linked to a contract including fulfilling any orders your place. This includes:

  • processing your order, or registration for the services;
  • providing the services, to communicate with you about them or your account with us;
  • communicating with you and providing our customer services;
  • verifying your identity;
  • sending you information about changes to our terms or policies.

We may use this information to:

  • ensure that the content of our website is presented in the most effective manner for you;
  • assist in making general improvements to our website;
  • carry out and administer any obligations arising from any agreements entered into between you and us;
  • allow you to participate in features of our website and other services;
  • contact you and provide you with information about the products you are about to receive.

Where you give us your consent, we will use your personal data to send you newsletters and other promotional material about our services.

HOW DO WE OBTAIN CONSENT?

When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.

If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent or provide you with an opportunity to say no.

HOW CAN YOU WITHDRAW CONSENT?

If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at info@nothingtwice.co.uk.

DO WE DISCLOSE YOUR DATA TO THIRD PARTIES?

We do not disclose any information you provide via the website to any third parties except:

  • if we are under a duty to disclose or share your personal data in order to comply with any legal obligation (for example, if required to do so by a court order or for the purposes of prevention of fraud or other crime);
  • or to protect the rights, property, safety, and Terms and Conditions of Nothing Twice.

DATA SECURITY

Our website is hosted on PrestaShop. This website hosting company provides us with the online e-commerce platform that allows us to sell our products and services to you.

Your data is stored in PrestaShop’s data storage, databases and the general PrestaShop application. Our website hosting company stores your data on a secure server behind a firewall. They have put in place physical, electronic, and managerial procedures designed to help prevent unauthorised access and to maintain data security.

If you choose a direct payment gateway to complete your purchase, then PrestaShop stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted.

All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.

For more insight, you may also want to read PrestaShop’s Terms of Service: https://www.prestashop.com