top of page

GDPR Privacy Policy


Last updated: February 2025

1. Introduction
Crown and Texture is committed to protecting your personal data and respecting your privacy. This GDPR Privacy Policy explains how we collect, use, store, and protect your data in compliance with the General Data Protection Regulation (GDPR). By using our website www.crownandtexture.com and services, you agree to this policy.

2. Data Controller
Crown and Texture is the data controller responsible for your personal data. If you have any questions about this policy, you can contact us at:
Email: dataprotection@crownandtexture.com 

3. Personal Data We Collect
We collect and process the following types of personal data:

  • Identity Data: Name, email address, phone number, billing and shipping addresses.

  • Transaction Data: Payment details, order history, purchase records, and refunds.

  • Technical Data: IP address, browser type, device information, operating system, and website usage data, including logs and analytics.

  • Marketing Preferences: Your choices regarding promotional emails, SMS marketing, and offers.

  • Customer Support Data: Communications and interactions with our customer service team, including emails, chat logs, and complaint records.

  • Account Data: If you register on our website, we collect login details, preferences, and account history.

4. How We Use Your Data
We use your personal data for the following purposes:

  • To process and fulfil your orders, including payment processing and delivery.

  • To provide customer service, respond to inquiries, and resolve issues.

  • To improve our website, user experience, and product offerings.

  • To send promotional offers, marketing emails, and personalised advertisements (if you opt-in).

  • To detect fraud, prevent unauthorised transactions, and enhance security measures.

  • To comply with legal and regulatory obligations, including tax and accounting requirements.

  • To analyse customer behaviour, improve product recommendations, and conduct market research.

  • To facilitate competitions, surveys, and loyalty programs.

 

5. Legal Basis for Processing Data
We process your personal data based on the following legal grounds:

  • Contractual Necessity: To fulfil our obligations when you place an order or request a service.

  • Legitimate Interests: To improve our services, prevent fraud, personalise interactions, and enhance security.

  • Consent: When you opt into marketing communications, cookies, and certain optional services.

  • Legal Compliance: When required by law to retain and process certain records.

6. Data Retention
We retain your data only for as long as necessary to fulfil the purposes outlined in this policy or to comply with legal obligations. The retention periods for different types of data are:

  • Order and Transaction Data: Retained for at least 6 years to comply with tax and accounting regulations.

  • Customer Support Records: Retained for up to 2 years after resolution.

  • Marketing Preferences: Retained until you withdraw your consent.

  • Inactive Accounts: Deleted after 24 months of inactivity.

  • Website Analytics Data: Retained for up to 12 months for performance improvements.
    When no longer needed, we securely delete or anonymise your data.

7. Your Rights Under GDPR
Under GDPR, you have the following rights regarding your personal data:

  • Right to Access: Request access to the data we hold about you.

  • Right to Rectification: Correct inaccurate, outdated, or incomplete data.

  • Right to Erasure (Right to be Forgotten): Request the deletion of your data when no longer necessary or if you withdraw consent.

  • Right to Restriction: Limit how we process your data in certain situations, such as pending dispute resolutions.

  • Right to Data Portability: Receive a copy of your data in a structured, commonly used format and transfer it to another service provider.

  • Right to Object: Object to processing your data for direct marketing, automated decision-making, or profiling.

  • Right to Withdraw Consent: Withdraw consent for marketing communications or optional services at any time.

  • Right to Lodge a Complaint: File a complaint with the Information Commissioner's Office (ICO) if you believe your rights have been violated.
    To exercise these rights, contact us at [insert contact email]. We will respond to all requests within one month.

 

8. Sharing and Transfer of Data
We do not sell your personal data. However, we may share data with:

  • Service Providers: Payment processors, delivery companies, IT service providers, and marketing agencies.

  • Legal Authorities: If required by law, court order, or government request.

  • Business Transfers: In the event of a merger, sale, or transfer of assets, your data may be transferred to the new entity.

  • Third-Party Analytics and Advertising Partners: For tracking and personalised marketing purposes, subject to your consent.

9. Data Security
We implement strict security measures to protect your personal data from loss, misuse, and unauthorised access, including:

  • Encryption: Secure encryption of sensitive data during transmission and storage.

  • Access Controls: Limiting access to personal data to authorised personnel only.

  • Secure Payment Processing: Transactions processed in compliance with PCI DSS standards.

  • Regular Security Audits: Periodic security assessments to detect vulnerabilities.
    Despite these efforts, no online transmission is completely secure, and we cannot guarantee absolute security.

10. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to enhance your browsing experience, personalise content, and analyse website traffic. You can manage your cookie preferences through your browser settings. For more details, please see our Cookie Policy.

11. Third-Party Links
Our website may contain links to third-party websites. We are not responsible for their privacy policies or practices. We encourage you to review their policies before providing any personal information.

12. Updates to This Policy
We may update this GDPR Privacy Policy periodically to reflect changes in our data practices or legal requirements. Any updates will be posted on this page with an updated date. We encourage you to review it regularly.

13. Contact Us
For any questions or requests related to your data and privacy rights, please contact us at:
Email: dataprotection@crownandtexture.com 

Thank you for trusting Crown and Texture with your personal data.

bottom of page