0

Privacy Policy

Last updated: January 2025

1. Introduction

Pawfinity ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.

We are a UK-based company and comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the EU General Data Protection Regulation (EU GDPR) where applicable.

Data Controller: Pawfinity is the data controller responsible for your personal data. For any privacy-related queries, contact us at: privacy@pawfinity.net

2. Information We Collect

2.1 Personal Information You Provide

We collect information you voluntarily provide when you:

  • Create an account or place an order
  • Subscribe to our newsletter
  • Contact customer support
  • Leave reviews or participate in surveys
Data CategoryExamplesLegal Basis
Identity DataName, titleContract performance
Contact DataEmail, phone, delivery addressContract performance
Transaction DataOrder details, payment historyContract performance, Legal obligation
Technical DataIP address, browser type, device infoLegitimate interests
Marketing DataPreferences, newsletter subscriptionsConsent

2.2 Automatically Collected Information

When you visit our website, we automatically collect IP address, browser type, device information, pages visited, and referring website.

3. How We Use Your Information

3.1 Contract Performance

  • Processing and fulfilling your orders
  • Managing your account and providing customer support
  • Sending order confirmations and delivery updates

3.2 Legitimate Interests

  • Improving our website and services
  • Fraud prevention and security
  • Business analytics and research

3.3 With Your Consent

  • Marketing communications and newsletters
  • Personalised product recommendations
Dropshipping Operations: As a dropshipping business, we share necessary order information (name, address, product details) with our trusted suppliers solely for order fulfilment. Suppliers are contractually bound to protect your data.

4. Cookies and Tracking

We use cookies and similar technologies. Under UK GDPR and PECR:

  • Essential Cookies: Required for site functionality (no consent needed)
  • Analytics Cookies: Help us understand site usage (consent required)
  • Marketing Cookies: Enable personalised advertising (consent required)

Manage preferences through your browser settings or our cookie consent banner.

5. Data Sharing

We do not sell your personal data. We may share information with:

  • Fulfilment Partners: Suppliers who ship products directly to you
  • Payment Processors: Stripe, PayPal (PCI-DSS compliant)
  • Shipping Carriers: Royal Mail, courier services
  • Technology Services: Website hosting, email services

We may also disclose information to comply with legal obligations or protect our rights.

6. International Data Transfers

Your data may be transferred outside the UK/EEA to fulfil orders. We ensure protection through:

  • UK/EU adequacy decisions for approved countries
  • Standard Contractual Clauses (SCCs) with suppliers
  • Binding Corporate Rules where applicable

7. Your Rights Under UK/EU GDPR

You have the following rights regarding your personal data:

Right of Access

Request a copy of all personal data we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete data.

Right to Erasure

Request deletion of your data ("right to be forgotten").

Right to Restrict Processing

Request limitation of how we use your data.

Right to Data Portability

Receive your data in a machine-readable format.

Right to Object

Object to processing for marketing purposes.

To exercise these rights, email privacy@pawfinity.net. We respond within 30 days.

8. Data Security

We implement appropriate measures to protect your data:

  • SSL/TLS encryption for all data transmission
  • Secure payment processing (we do not store card details)
  • Regular security assessments and updates
  • Access controls and staff training

9. Data Retention

  • Order Data: 7 years (UK tax/accounting requirements)
  • Account Data: Until deletion requested or 3 years of inactivity
  • Marketing Data: Until you unsubscribe
  • Website Analytics: 26 months

10. Data Breach Notification

In the event of a personal data breach that poses a risk to your rights:

  • We will notify the Information Commissioner's Office (ICO) within 72 hours
  • We will inform affected individuals without undue delay if high risk

11. Children's Privacy

Our services are not intended for individuals under 16. We do not knowingly collect data from children. If you believe a child has provided us with personal data, please contact us immediately.

12. Complaints

If you are unhappy with how we handle your data, you can lodge a complaint with:

  • UK: Information Commissioner's Office (ICO) - ico.org.uk
  • EU: Your local Data Protection Authority

13. Policy Updates

We may update this Privacy Policy periodically. Material changes will be notified via email or website notice. Continued use constitutes acceptance.

Contact Us About Privacy

privacy@pawfinity.net

support@pawfinity.net

Menu