Privacy Policy
Effective Date: AUG 2025
Who We Are
This website is operated by Stone Hollow (“we”, “us”, “our”).
Site URL: www.stonehollow.co.uk
Registered address: The Granary, Whitland Abbey, Whitland, Carmarthenshire SA34 0LG
Contact email for privacy concerns: Orders@stonehollow.co.uk
What Personal Data We Collect and Why We Collect It
We collect and process personal data to operate our website, provide our services, fulfil orders, and comply with the law. This includes:
- Identity and Contact Data: name, email address, postal address, phone number
- Account Data: username, password, account preferences
- Transactional Data: purchases, orders, shipping and billing details, payment information
- Technical Data: IP address, browser type, device information, cookies
- Usage Data: products viewed, pages visited, time spent, actions taken
- Communications: correspondence via contact forms, emails, refunds, requests, complaints
- Comments/Reviews: if you leave feedback or public comments
- Media: any information disclosed if you upload images or media files; uploaded files may be publicly accessible
Why we collect your data:
- To fulfil contracts and process orders
- To provide customer service and respond to enquiries
- To comply with legal obligations (e.g., tax, recordkeeping)
- To analyze site use and improve offerings
- For marketing (only with your consent)
- For fraud detection, order security, and site protection
- To enable personalized shopping experiences
Legal bases: contract, legal obligation, consent, legitimate interest.
Comments
When visitors leave comments, we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
Contact Forms
If you use our contact form, we collect your name, email, and any message details you provide – solely to respond to your enquiry. We retain this information for customer service purposes but do not use it for marketing unless you consent.
Cookies
Our website uses cookies and similar technologies to:
- Enable essential functions (logins, checkout, cart memory)
- Store user preferences and settings
- Analyze site use via analytics tools (e.g., Google Analytics)
- Track site performance and protect against fraud
You control cookies:
You are presented with a cookie banner on your first visit. Essential cookies are required for site function; you can refuse analytics/marketing cookies and manage your preferences at any time. See our Cookie Policy for full details.
Analytics
We use Google Analytics to collect anonymous visitor statistics. To opt out, adjust your cookie preferences or use browser tools. See Google Analytics privacy policy.
Web hosting and some plugins may collect non-personal analytics data. Details available on request.
Who We Share Your Data With
- Service Providers: web hosting, analytics, payment processors (e.g., PayPal), email providers, plugins
- Third-Party Print on Demand Providers: to fulfil and ship your orders, we share your name, address, and order details only for order processing. These partners are GDPR-compliant and process data solely for this purpose.
- Payment Gateways: e.g., PayPal. Information required for payments (name, amount, billing info) is securely shared. Link to PayPal Privacy Policy.
- Legal/Authorities: when required for regulatory compliance.
We do NOT sell your personal data to anyone.
How Long We Retain Your Data
- Contact form entries: 6 months
- Analytics records: 1 year
- Order/customer data: 7 years for tax/accounting
- Comments/reviews: indefinitely (unless removal is requested)
- Account data: as long as the account remains active
We only retain data as required for our legitimate business needs or to comply with the law.
What Rights You Have Over Your Data
You have the right to:
- Access your personal data
- Have errors corrected
- Withdraw consent (where processing is based on consent)
- Request deletion of your data (“right to be forgotten”)
- Object to or restrict use of your data in certain circumstances
- Receive a copy of your data in a portable format
- Lodge complaints with the Information Commissioner’s Office (ICO)
Contact us at Orders@stonehollow.co.uk to exercise any of these rights.
Where Your Data Is Sent & International Transfers
If we transfer your data outside the UK/EU (e.g., for print on demand, website hosting, or payment processing), we ensure your data is protected with appropriate safeguards (such as Standard Contractual Clauses or equivalent mechanisms). Details available on request.
How We Protect Your Data
- Encrypted connections (SSL/TLS) across our website
- Secure payment processing via reputable gateways
- Access controls for staff and vendors
- Regular staff training and system updates
- Privacy Impact Assessments as appropriate
Data Breach Procedures
We have internal systems to detect and respond to potential data breaches. If a breach affecting your data occurs, we will notify you and the regulator as required by law.
Third Parties We Receive Data From
We may receive information about you from third-party platforms (such as payment processors or partners) as required for order fulfilment, verification, or customer service.
Automated Decision-Making and Profiling
No automated decision making or profiling is conducted on this website.
Industry Regulatory Disclosure Requirements
If subject to further regulations (sector-specific), these will be disclosed here.
Contact Information
For privacy-specific concerns or to exercise your rights, contact our Data Protection Officer at:
Orders@stonehollow.co.uk
Changes to This Policy
We may update this policy periodically. The latest version is always posted on this page. Significant changes will be communicated via the website or by email where appropriate.
Cookie Policy:
This website uses cookies to provide essential site functions, remember your preferences, analyze usage, and improve our services. For full details, including a list of all cookies used and their purpose, please visit our full Cookie Policy or contact us.