Privacy Policy

1. Introduction

At Mamiya UK, we respect your privacy and are committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018. This Privacy Policy outlines the types of personal information we collect, how we use it, and your rights concerning your personal data.

2. Information We Collect

We collect personal information to process orders and improve your experience on our website. This may include:

  • Personal Identifiable Information: Name, contact details, payment details, shipping and billing information.

  • Technical Data: IP addresses, browser type, device information, location data, and cookie data.

In addition to the information you provide when registering or placing an order, we may collect non-personal data using cookies to help improve our website and personalize your shopping experience.

3. How We Use Your Information

We use the information we collect for several purposes, including:

  • Processing and fulfilling your orders.

  • Communicating with you about your order or our services.

  • Enhancing and personalizing your shopping experience on our website.

  • Sending promotional emails (if you have opted in to receive them).

  • Conducting market research to improve our offerings.

We may also use your data for legal compliance, such as preventing fraud or complying with tax laws.

4. Sharing Your Information

We do not sell or share your personal information with third parties, except where necessary to process your order (e.g., payment processors, delivery services). All third-party service providers we use are contractually bound to maintain confidentiality and use your data solely for the purpose for which it was shared.

In some circumstances, we may disclose your data:

  • Legal Compliance: If required by law, to comply with a subpoena or similar legal process.

  • Business Transfers: In the event of a merger, acquisition, or asset sale, your data may be transferred as part of that transaction.

5. Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, alteration, or destruction. This includes the use of Secure Sockets Layer (SSL) encryption technology for transmitting sensitive data, such as payment information.

6. Your Rights

Under the GDPR and the UK Data Protection Act 2018, you have several rights regarding your personal data:

  • Right to Access: You can request a copy of the personal data we hold about you.

  • Right to Rectification: You can request to correct any inaccurate or incomplete data.

  • Right to Erasure: You may request that we delete your personal data under certain circumstances.

  • Right to Restriction: You can request a restriction on how we use your data.

  • Right to Data Portability: You can request a copy of your data in a commonly used electronic format.

  • Right to Object: You can object to the processing of your data, including for direct marketing purposes.

To exercise any of these rights, please contact us using the details provided below.

7. Cookies

We use cookies to enhance your experience on our website. Cookies are small files that are placed on your device to track activity and remember certain preferences. By continuing to use our site, you consent to our use of cookies.

You can manage cookie preferences via your browser settings. However, disabling cookies may limit certain functionalities of our website.

8. Marketing Communications

You can opt out of receiving marketing emails from us at any time by clicking the "Unsubscribe" link at the bottom of any email we send. Please allow up to 3 business days for the change to take effect.

Key Compliance Points for GDPR:

  1. Transparency: Make sure you clearly explain why you're collecting and processing data, as well as how it's used.

  2. Consent: Ensure that customers are given the option to opt into email marketing and cookies.

  3. Security: Emphasize that you use appropriate security measures, such as encryption, to protect personal data.

  4. Data Retention: Provide information about how long personal data will be kept.

  5. Right to Access and Deletion: Outline customers' rights to access and delete their data.