This policy explains how Ripperholics Ltd handles your personal data when you visit www.ripperholics.com (our “website”) or buy from us.
WHO WE ARE
We are Ripperholics Ltd, based at 1 Earls Court, Kings Head Yard, Broughton in Furness, LA206HF, United Kingdom (“Ripperholics”, “we”, “us”, “our”). We are responsible for your data. If you want to contact us or if you have any questions, you can reach us by email using info@ripperholics.com with “Data Protection” in the subject line.
WHAT IS PERSONAL DATA?
Personal data is any information that can identify a living individual. Different pieces of information, when collected together, can also constitute Personal Data if they lead to identifying a specific person.
WHY WE HAVE THIS POLICY AND WHY WE COLLECT DATA
We follow UK data protection laws, including the UK’s Data Protection Act (“DPA”) and the EU’s General Data Protection Regulation (“GDPR”). We collect your personal data only when one of the following reasons applies:
- You have given us your consent.
- The data is necessary to fulfil a contract with you or for pre-contractual steps.
- We have a legal obligation to collect the data.
- It is necessary for our company’s legitimate interests, provided your interests are not overridden.
WHAT DATA WE COLLECT AND HOW WE USE IT
- Website Visits: When you visit our website, your browser automatically sends us technical details. This includes your IP address, the date and time of your visit, the name and URL of the file accessed, the website you came from, your browser, and your device’s operating system. We collect this information because it’s technically necessary for our website to display correctly and to ensure its stability and security.
- Website Operations: Our website runs on Woocommerce, which hosts our online shop. Woocommerce processes various types of data, including inventory, contact, content, contract, usage, metadata, and communication data. This helps us provide an efficient and secure website and services, and manage content and orders.
- Cookies: We use cookies (small files on your device) and similar technologies on our website. You can find full details in our separate Cookie Policy. We use cookies based on our legitimate interest or your consent when you agree to the use of technically nonessential cookies, as further explained in our Cookie Policy. To manage your cookie choices, we use a cookie consent tool. This tool collects your consent choices, IP address, browser information, device details, and the time you visited our site.
- Analytics: For business reasons, we analyse website traffic and how users interact with our site (like Browse behaviour). We use Google Analytics for this. This analysis is based on our legitimate interest and your consent.
- Aggregated Data: We also collect and use “aggregated data,” which is like general statistics (e.g., how many visitors from a certain area). This data doesn’t identify you directly. However, if we ever combine it with your personal data in a way that could identify you, we’ll treat it as personal data under this policy.
- When You Contact Us: If you email or contact us, we collect the personal data you provide, such as your first name, last name, email address, topic, and message. We process this data only to respond to your inquiry and communicate with you.
- Shopping and Accounts: When you make a purchase, we collect your first name, last name, email address, and billing and shipping address to fulfil your order and manage our contract with you. If you provide a third party’s personal data, you represent and warrant that you have obtained their prior consent for our collection, use, and disclosure of their personal data for this purpose. You can also register for an account with your email address and a password. This makes future purchases easier and allows you to access your order history. We hold your data for further orders as long as you have your account.
- Payments: Your payment data will be processed securely through our payment service provider, Woocommerce Payments (Woocommerce) or PayPal. We have no access to any payment data you submit.
- Running Our Business: We process data in the context of administrative tasks, financial accounting, office organisation, and to meet legal obligations like archiving and accounting. This involves the same data that we process in the course of providing our contractual services.
- Marketing: If you have given us your consent, we may contact you for marketing and advertising purposes via the communication channels you agreed to. Our marketing is usually by email but may include other channels. Every directly addressed marketing message sent by us or on our behalf will include a way for you to unsubscribe or opt out. We may also use your first and last name as well as your postal address for our own advertising purposes, for example, to send you interesting offers and information about our products by post. This serves to protect our legitimate interests.
HOW WE SHARE AND STORE YOUR DATA
- Sharing Your Data: We will not disclose or otherwise distribute your Personal Data to third parties unless it is necessary to provide our services (including with Royal Mail as our forwarder and courier for delivery and order fulfilment ), you have given your consent , or if we are legally obliged to do so by a court order, or if this is necessary to support criminal or legal investigations or other legal proceedings at home or abroad, or to fulfil our legitimate interests.
- International Transfers: We may transfer your Personal Data to other companies if necessary for the purposes described in this Privacy Policy. We have contractual arrangements in place and take all reasonable technical and organisational measures to protect your Personal Data when it is transferred.
- How Long We Keep It: We will delete your Personal Data when we no longer need it. This happens when it’s no longer necessary for the purpose we collected it , if we believe your Personal Data is inaccurate , or in certain cases, if you tell us you no longer consent to our processing of your Personal Data. Sometimes, however, legal or regulatory requirements may require us to retain your Personal Data for a specified period. We may also need to retain your Personal Data for certain longer periods in relation to legal disputes.
DATA SECURITY
We take appropriate organisational, technical, and physical measures to help safeguard against accidental or unlawful destruction, loss, alteration, and unauthorised disclosure of, or access to, the Personal Data we collect and process. However, no method of collection, storage, or transmission is 100% secure. You are solely responsible for protecting your password, limiting access to your devices, and signing out of websites after your sessions.
SOCIAL MEDIA AND OTHER WEBSITES
We are present on social media platforms. If you contact or connect with us via social media, both we and the relevant social media website are jointly responsible for your data processing. Legal basis for this is our legitimate interest, your consent, or contract initiation. Your public profile data and interactions with us depend on your privacy settings on that platform. Please take care not to transmit or share sensitive data or confidential information via social media platforms; we recommend using a more secure method like email.
Our website may contain hyperlinks that link to other websites for your convenience. We are not responsible for their privacy practices, and this Privacy Policy does not apply to any linked websites or companies we do not own or control. We encourage you to read the privacy policy of any linked website you visit.
YOUR RIGHTS AND PRIVILEGES
You have several rights regarding your Personal Data:
- The right to access your data.
- The right to rectification (correcting inaccurate data).
- The right to erasure (having your data deleted).
- The right to restrict processing (limiting how your data is used).
- The right to object to processing.
- The right to data portability (receiving your data in a usable format).
To exercise these rights, or if you believe information we hold about you is inaccurate, or to withdraw your consent, please contact us. We aim to respond to requests about access and correction as soon as reasonably possible, and within thirty (30) days. If we cannot fulfil your request, we will tell you why.
The UK data protection authority is the Information Commissioner’s Office (ICO) (www.ico.org.uk). We would appreciate you contacting us first before reaching out to the ICO.
DATA BREACHES
If databases or records containing Personal Data are breached, accidentally or unlawfully, we will notify all affected individuals whose Personal Data may have been compromised. This notification will include a description of the measures taken to repair the damage. Notifications will be sent as soon as possible after we discover the breach.
WHAT WE DO NOT DO
- We do not ask for Personal Data from minors and children without specific and express consent.
- We do not process special category data without specific and express consent.
- We do not use automated decision-making, including profiling.
- We do not sell your Personal Data.
HELP AND POLICY CHANGES
If you have any questions about this policy or the information we hold about you, please contact us by email using info@ripperholics.com.
This policy was first issued on Monday, June 23, 2025, and is the current version. Any prior versions are invalid. If we make changes, we will revise the effective date.