✦ FREE UK DELIVERY OVER £40 ✦ 30-DAY RETURNS ✦ DISPATCHED FROM ORKNEY ✦ 12-MONTH WARRANTY
0

Privacy Policy

Privacy Policy

Last updated: 25 May 2026

J & S Allan, trading as RetailsSupp (“we”, “our”, “us”), is the data controller responsible for your personal data when you use retailssupp.com. We are committed to protecting your privacy under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who we are

J & S Allan
33 N End Rd, Stromness, Orkney Islands KW16 3AG, United Kingdom
Email: privacy@retailssupp.com
Phone: 01856 850177

2. Personal data we collect

  • Account & identity data: name, email address, billing and delivery address, telephone number.
  • Transaction data: products ordered, order value, payment confirmation (we do not store full card numbers — these are handled by Stripe).
  • Technical data: IP address, browser type, device identifiers, timezone, the pages you view on our site.
  • Marketing data: your preferences for receiving emails from us and your communication preferences.
  • Customer service data: correspondence you send us via email, web form, live chat or telephone.

3. Why we use your data (legal basis)

Purpose Legal basis under UK GDPR
Process your order, take payment, deliver your goods Performance of a contract (Art. 6(1)(b))
Send service emails (order confirmation, dispatch, refunds) Performance of a contract
Send marketing emails about similar products Legitimate interest (existing customer soft opt-in under PECR Reg 22(3))
Send marketing to non-customers Consent (Art. 6(1)(a))
Tax and accounting records Legal obligation (Companies Act 2006, HMRC requirements)
Fraud prevention & site security Legitimate interest

4. Who we share your data with

We only share your personal data with the processors below, and only for the purpose stated:

  • Stripe Payments UK Ltd — to take card payments. Stripe is PCI-DSS Level 1 certified.
  • Royal Mail / DPD / Evri — to deliver your order (name, address, telephone for delivery updates).
  • Google Analytics 4 & Google Ads (Google Ireland Ltd) — anonymised website usage and conversion measurement.
  • Our email provider — to send transactional and marketing emails.
  • HMRC, Companies House, fraud-prevention agencies — where we are legally required.

We do not sell your personal data to third parties.

5. International transfers

Some of our processors (Google, Stripe) may transfer data outside the UK. Where this happens, transfers are protected by UK adequacy regulations, the UK International Data Transfer Agreement, or Standard Contractual Clauses with the UK Addendum.

6. How long we keep your data

  • Order records: 7 years (HMRC requirement)
  • Customer account: until you ask us to delete it
  • Marketing data: until you unsubscribe
  • Support correspondence: 3 years from last contact
  • Website analytics: 14 months (Google Analytics default)

7. Your rights under UK GDPR

  • Right to be informed
  • Right of access (Subject Access Request)
  • Right to rectification
  • Right to erasure (“right to be forgotten”)
  • Right to restrict processing
  • Right to data portability
  • Right to object
  • Rights related to automated decision-making and profiling

To exercise any of these, email privacy@retailssupp.com. We respond within one calendar month, as required by UK GDPR.

8. Complaints

If you believe we have not handled your data correctly, you can complain to the Information Commissioner’s Office (ICO) at ico.org.uk or call 0303 123 1113.

9. Changes to this policy

We may update this policy from time to time. The current version always shows the last-updated date at the top.