Privacy Policy

Last updated date: 1 March 2025

At Eccobell ("we," "us," or "our"), we value your privacy and are committed to protecting your personal information in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This Privacy Policy explains how we collect, use, share, and safeguard your personal data when you interact with our website (www.eccobell.com) or use our services.

1. Information We Collect

We collect personal information that you voluntarily provide to us when you:

  • Register an account on our website
  • Make a purchase
  • Subscribe to our newsletter
  • Contact us via email or forms

The personal information we collect may include:

  • Name, email address, phone number, and postal address
  • Payment details (e.g., credit card information)
  • Account credentials (e.g., usernames and passwords)

Additionally, we automatically collect certain information when you visit our website, including:

  • IP address
  • Browser type and version
  • Operating system
  • Device type (e.g., mobile or desktop)
  • Usage data (e.g., pages viewed, time spent on site)

We may also collect information from third-party sources, such as analytics providers and payment processors.

2. Legal Basis for Processing

Under the UK GDPR, we process your personal data based on the following legal grounds:

  • Consent: For marketing communications or optional services (you can withdraw consent at any time).
  • Contractual necessity: To fulfill orders or provide services you have requested.
  • Legitimate interests: For fraud prevention, improving our services, or direct marketing (balanced against your rights).
  • Legal obligation: To comply with applicable laws and regulations (e.g., tax reporting).
3. How We Use Your Information

We use your personal data for the following purposes:

  • To process transactions and deliver products/services
  • To manage your account and provide customer support
  • To send administrative updates (e.g., order confirmations)
  • To send marketing communications (only with your consent)
  • To improve website functionality and user experience
  • To ensure security and prevent fraud
4. Sharing Your Information

We may share your personal data with:

  1. Service Providers: Third-party vendors who assist us in providing services, such as payment processors (e.g., Stripe), shipping companies, IT support providers, and analytics platforms (e.g., Google Analytics).
  2. Legal Authorities: When required by law or to comply with regulatory obligations.
  3. Business Partners: With your explicit consent for joint promotions or collaborations.

We ensure that any third parties handling your data adhere to strict confidentiality and security standards.

5. International Data Transfers

If we transfer your personal data outside the UK/EEA (e.g., to third-party service providers), we ensure appropriate safeguards are in place, such as:

  • Adequacy decisions approved by the UK government for specific countries.
  • Standard Contractual Clauses (SCCs) for transfers to non-approved countries.

You can request more details about these safeguards by contacting us at hello@eccobell.com.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy or to comply with legal obligations. Retention periods include:

  • Customer data: Retained for up to 3 years after your last interaction with us.
  • Marketing data: Retained until you withdraw consent or opt out of communications.
  • Financial records: Retained for up to 7 years to comply with tax regulations.

We regularly review stored data and delete it when it is no longer required.

7. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

  1. Right to be informed: Know how your data is being used.
  2. Right of access: Request a copy of the personal data we hold about you.
  3. Right to rectification: Correct inaccurate or incomplete data.
  4. Right to erasure ("right to be forgotten"): Request deletion of your data under certain conditions.
  5. Right to restrict processing: Limit how we use your data in specific circumstances.
  6. Right to data portability: Receive a copy of your data in a structured format for transfer elsewhere.
  7. Right to object: Object to processing based on legitimate interests or direct marketing purposes.
  8. Rights related to automated decision-making: Challenge decisions made solely by automated systems if applicable.

To exercise any of these rights, contact us at [Your Contact Email]. We will respond within one month unless an extension is required due to complexity.

8. Cookies and Tracking Technologies

Our website uses cookies to enhance user experience and analyze traffic patterns. Cookies may include:

  1. Essential cookies: Required for website functionality (no consent needed).
  2. Analytics cookies: Used for tracking usage patterns (consent required).
  3. Marketing cookies: Used for personalized ads (consent required).

You can manage cookie preferences via our Cookie Consent Banner or browser settings.

For more details about cookies used on our site, please refer to our Cookie Policy.

9. Automated Decision-Making and Profiling

We do not currently use automated decision-making processes that significantly affect users; however, if this changes, we will update this policy accordingly.

10. Security Measures

We take appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction, including:

  • Encryption of sensitive information during transmission (SSL/TLS protocols).
  • Regular security audits of our systems and processes.
  • Restricted access controls for sensitive information within our organization.

While we strive to protect all user data, no system can guarantee absolute security.

11. Updates to This Privacy Policy

We may update this Privacy Policy periodically in response to changes in legal requirements or our business practices. Any updates will be posted on this page with a revised "Last Updated" date.

If significant changes are made, we will notify you via email or through a prominent notice on our website.

12. Contact Us

If you have questions about this Privacy Policy or wish to exercise any of your rights under UK GDPR, please contact us at:

Data Protection Officer: Daniel Ojeme
Email: daniel@eccobell.com
Address: First Floor, 85 Great Portland Street, London, W1W 7LT

13. Complaints

If you are dissatisfied with how we handle your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO):

Website: https://ico.org.uk
Helpline Number: 0303 123 1113

Alternatively, please contact us on hello@eccobell.com first so we can resolve any issues promptly.