Privacy Policy (UK GDPR) – Grafton Bell

1. Introduction

Grafton Bell respects your privacy and is committed to protecting your personal data. This policy explains how we collect, use, and safeguard your information.

2. Information We Collect

We may collect and process the following personal data:

• Identity and contact details (name, email, phone number).

• Transaction details (orders, payments).

• Technical data (IP address, browser type, cookies).

• Marketing preferences.
  

3. How We Use Your Data

We use your data to:

• Process and fulfil orders.

• Respond to enquiries.

• Improve our services and website.

• Send marketing communications (if you have opted in).
  

4. Legal Bases for Processing

We process your personal data under UK GDPR where:

• It is necessary for a contract with you.

• It is required to comply with legal obligations.

• You have given consent.

• It is in our legitimate business interests.
  

5. Sharing Your Data

• We do not sell your personal data.

• We may share it with trusted service providers (e.g., payment processors, delivery couriers, IT support).

• Data may be disclosed if required by law.
  

6. Cookies

Our Site uses cookies to enhance user experience and gather analytics. You can control cookies through your browser settings.

7. Your Rights

Under UK GDPR, you have rights to:

• Access your data.

• Rectify inaccurate data.

• Erase your data.

• Restrict or object to processing.

• Data portability.
  
  To exercise these rights, contact us
  

8. Data Security & Retention

• We implement technical and organisational measures to secure your data.

• We retain your personal data only as long as necessary for the purposes collected.\

9. Contact Us

For any privacy concerns, contact us.
You also have the right to complain to the UK Information Commissioner’s Office (ICO).