Enjoy free delivery on orders over 114.
Log in

Cart

Your cart is currently empty.

Continue shopping
Total
£0.00

Data Protection and Privacy Compliance Statement

1. Overview

During the operation of the website and the provision of related services, certain activities may involve the processing of personal information.
This statement outlines the data protection framework applicable in the United Kingdom and Europe, summarises commonly applied processing principles, and explains the types of rights that may apply under relevant law.

The aim is to help users understand how personal information is handled within a regulated and compliant environment.

2. Legal Framework and Purpose

Within the UK and European context, personal data processing is primarily subject to the following legislation:

  • UK Data Protection Act 2018

  • UK GDPR

These frameworks are intended to increase transparency around the use of personal information, define appropriate boundaries for processing, and reduce risks associated with misuse, unauthorised access, or disclosure.

3. Scope of Application

This compliance statement applies to personal data processing activities carried out in situations such as:

  • Supplying goods or related services to users located in the United Kingdom

  • Operating website functions, online tools, or customer support channels

  • Processing information for order fulfilment, communication, or compliance-related purposes

Activities carried out solely for personal or household use are generally outside the scope of this statement.

4. Core Data Processing Principles

Personal information is typically handled in line with recognised data protection principles, which may include the following.

Lawfulness and transparency
Information is collected and used on an appropriate legal basis and explained in a clear manner.

Purpose limitation
Data is processed only for specific, legitimate purposes connected to the services provided.

Data minimisation
The information collected is limited to what is necessary to achieve the stated purpose.

Accuracy
Where appropriate, reasonable steps may be taken to keep information accurate and up to date.

Storage limitation
Personal data is not retained for longer than required for operational or legal reasons.

Security measures
Common technical and organisational safeguards are generally applied to reduce data-related risks.

5. Rights That May Apply to Users

Subject to applicable UK and European data protection law, users may have certain rights in relation to their personal information, including:

  • Requesting access to personal data relating to them

  • Seeking correction where information is inaccurate or incomplete

  • Requesting restriction or deletion of data where legal conditions are met

  • Raising questions or concerns about specific processing activities

Requests relating to these rights may be submitted using the contact details made available on the website.

6. Compliance Management and Processing Practices

When carrying out data processing activities, reference is typically made to practices such as:

  • Processing information in line with service needs and legal obligations

  • Applying access controls, encryption, or similar safeguards where appropriate

  • Assessing potential data security risks

  • Maintaining necessary records of processing activities where required

Whether additional measures are applied is assessed based on the specific context and applicable legal requirements.

7. International Data Processing

In certain technical or operational scenarios, personal information may be stored or processed outside the United Kingdom.
Where this occurs, recognised compliance mechanisms may be used to support appropriate levels of data protection in line with applicable standards.

8. Regulatory Oversight

In the United Kingdom, data protection matters are subject to oversight by relevant supervisory authorities.
Where applicable requirements are not met, outcomes may include review, corrective action, or other measures depending on the nature and impact of the issue.

9. Why Compliance Matters

For users
Clear information about how personal data is handled supports transparency and informed use of online services.

For website operation
A compliant approach helps reduce regulatory risk and supports stable operation within an appropriate legal framework.

10. Contact Details

If you have questions regarding personal data processing, privacy documentation, or data protection rights, you may contact us at:

Email: studio@roomglowz.com

Enquiries are reviewed based on their content and context and may be responded to where appropriate.