PRIVACY POLICY

Last Updated: 10-01-2026 

This Privacy Policy describes how NattyX (“we”, “us”, “our”) collects, uses, and protects your personal information when you visit our website, make a purchase, contact us, or otherwise interact with us (collectively, the “Services”). 

By using our website and Services, you agree to the collection and use of information in accordance with this Privacy Policy. 

1. Changes to This Privacy Policy 

We may update this Privacy Policy from time to time to reflect changes in legal requirements, business practices, or service improvements. Any updates will be posted on this page with a revised “Last Updated” date. 

 2. Information We Collect 

We collect personal information in the following ways: 

A. Information You Provide Directly 

When you use our Services, you may provide: 

  • Full name 
  • Billing and shipping address 
  • Email address 
  • Phone number 
  • Payment details (processed securely by third-party providers) 
  • Account login details (if applicable) 
  • Customer service communications 
  • Product reviews or other user-generated content 

Providing certain information may be necessary to complete purchases or access certain features. 

B. Information Collected Automatically (Usage Data) 

We may automatically collect information when you visit our website, including: 

  • IP address 
  • Browser type and device information 
  • Pages visited and time spent on site 
  • Referral source 
  • Shopping behaviour (items viewed, cart activity, wishlist activity) 

This information is collected using cookies and similar technologies. 

C. Information from Third Parties 

We may receive information from: 

  • Payment processors 
  • Delivery and fulfilment partners 
  • Analytics providers 
  • Advertising partners 
  • E-commerce platform providers 

All third-party data is handled in accordance with this Privacy Policy. 

3. How We Use Your Information 

We use your personal information for the following purposes: 

A. Order Processing & Service Delivery 

  • Process payments 
  • Fulfil orders 
  • Provide shipping and delivery 
  • Manage returns and exchanges 
  • Maintain your account 

B. Customer Support 

  • Respond to enquiries 
  • Resolve complaints 
  • Provide after-sales support 

C. Marketing & Advertising 

  • Send promotional emails (with your consent where required) 
  • Show relevant advertisements 
  • Conduct market research 
  • Improve product offerings 

You may opt out of marketing communications at any time by clicking “unsubscribe” in emails or contacting us directly. 

D. Security & Fraud Prevention 

  • Prevent fraudulent transactions 
  • Detect misuse of our website 
  • Protect our legal rights 

E. Legal Compliance 

  • Comply with UK GDPR and other legal obligations 
  • Maintain financial records 
  • Respond to lawful requests from authorities 

4. Legal Basis for Processing (UK GDPR) 

Under UK GDPR, we process your personal data based on: 

  • Performance of a contract (processing orders) 
  • Legitimate interests (improving services, fraud prevention) 
  • Legal obligations 
  • Your consent (marketing communications, cookies) 

5. Cookies 

We use cookies to: 

  • Enable website functionality 
  • Remember user preferences 
  • Analyse website traffic 
  • Improve customer experience 
  • Deliver personalised advertisements 

You can control or disable cookies via your browser settings. Please note that disabling cookies may affect website functionality. 

6. How We Share Your Information 

We may share your information with: 

  • Payment processors 
  • Delivery partners 
  • IT and hosting providers 
  • Analytics and advertising partners 
  • Professional advisers (legal, accounting) 
  • Government authorities where legally required 

We do not sell your personal information. 

We only share information necessary to provide services or comply with legal obligations. 

7. International Data Transfers 

Your information may be stored or processed outside the UK. Where this occurs, we ensure appropriate safeguards are in place, such as: 

  • UK-approved Standard Contractual Clauses 
  • Transfers to countries deemed to have adequate data protection standards 

8. Data Retention 

We retain personal information only as long as necessary to: 

  • Provide our Services 
  • Comply with legal obligations 
  • Resolve disputes 
  • Enforce agreements 

When no longer required, data is securely deleted or anonymised. 

 9. Data Security 

We implement appropriate technical and organisational measures to protect your personal information against: 

  • Unauthorised access 
  • Loss or theft 
  • Misuse 
  • Alteration 

However, no internet transmission is 100% secure. 

 10. Your Rights (UK GDPR) 

You have the right to: 

  • Access your personal data 
  • Request correction of inaccurate data 
  • Request deletion of your data 
  • Restrict processing 
  • Object to processing 
  • Data portability 
  • Withdraw consent at any time 

To exercise your rights, please contact us using the details below. 

We will respond within the timeframe required under UK law. 

 11. Children’s Privacy 

Our Services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children. 

If you believe a child has provided us with personal data, please contact us and we will delete the information. 

12. Third-Party Links 

Our website may contain links to external websites. We are not responsible for the privacy practices of third-party websites. Please review their privacy policies separately. 

13. Complaints 

If you are not satisfied with how we process your personal data, you have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO): 

https://www.ico.org.uk 

14. Contact Us 

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us: 

NattyX 
Email: info.nattyx.co.uk