Privacy Policy for Silkthrob
Silkthrob (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website, make a purchase, or interact with our services. It is designed to comply with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
1. Data Controller
The data controller responsible for your personal data is Silkthrob. Our contact details are:
Customer Service Email: [email protected]
2. Information We Collect
We may collect and process the following categories of personal data:
- Identity & Contact Data: Name, billing/shipping address, email address, phone number.
- Financial & Transaction Data: Payment information (processed securely by our payment gateways), order history, and purchase details.
- Technical & Usage Data: IP address, browser type, device information, login data, pages viewed, and how you navigate our site.
- Marketing & Communications Data: Your preferences in receiving marketing from us and your communication preferences.
3. How We Use Your Personal Data (Lawful Basis)
We will only use your personal data when the law allows us to. Our primary lawful bases are:
- Contract: To process and fulfill your orders, manage your account, and provide customer support.
- Legal Obligation: To comply with tax, accounting, and other legal requirements.
- Legitimate Interests: To operate our business, improve our website and services, prevent fraud, and for administrative purposes.
- Consent: Where you have given clear consent, such as for direct marketing communications.
4. Data Sharing and Transfers
We may share your data with trusted third parties only for the purposes outlined in this policy, including:
- Payment processors to complete transactions.
- Shipping and logistics companies to deliver your orders.
- IT and system administration service providers.
- Professional advisors (e.g., lawyers, accountants).
- Government authorities where required by law.
We do not sell your personal data. If data is transferred outside the UK/EEA, we ensure appropriate safeguards are in place.
5. Data Security
We have implemented appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction.
6. Data Retention
We will retain your personal data only for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
7. Your GDPR Rights
Under GDPR, you have the right to:
- Access: Request a copy of the personal data we hold about you.
- Rectification: Request correction of inaccurate or incomplete data.
- Erasure (“Right to be Forgotten”): Request deletion of your personal data under certain conditions.
- Restrict Processing: Request we temporarily or permanently stop processing some or all of your data.
- Data Portability: Request a transfer of your data to another service provider.
- Object: Object to processing based on legitimate interests or for direct marketing.
- Withdraw Consent: Withdraw your consent at any time where processing is based on consent.
To exercise any of these rights, please contact us using the details in Section 1. We may need to verify your identity before responding.
8. Cookies and Tracking Technologies
Our website uses cookies to enhance user experience and analyze site traffic. You can control cookie settings through your browser. For more details, please see our separate Cookie Policy.
9. Changes to This Privacy Policy
We may update this policy periodically. The updated version will be posted on this page with a revised “Effective Date.” We encourage you to review this policy regularly.
10. How to Contact Us & Complaints
If you have any questions about this Privacy Policy or our data practices, or if you wish to lodge a complaint, please contact us using the information in Section 1. You also have the right to lodge a complaint directly with the UK Information Commissioner’s Office (ICO) or your local supervisory authority.