Privacy Policy

1. Introduction

Diariolapalabra Ltd ("we", "us", "our") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose and safeguard your information when you visit our website, use our mobile application or make a purchase from us.

We are registered as a data controller with the Information Commissioner's Office (ICO) under reference number ZA123456. This policy complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Our registered address is: 47 Carnaby Street, Soho, London W1F 9PT, United Kingdom.

2. What Personal Data We Collect

We may collect and process the following categories of personal data:

• Identity Data: first name, last name, username or similar identifier
• Contact Data: billing address, delivery address, email address, telephone number
• Financial Data: payment card details (processed securely via PCI DSS-compliant third parties – we do not store full card numbers)
• Transaction Data: details about payments and purchases
• Technical Data: IP address, browser type and version, time zone setting, browser plug-in types, operating system, and other technology on the devices you use to access our website
• Usage Data: information about how you use our website and services
• Marketing and Communications Data: your preferences in receiving marketing from us

3. How We Collect Personal Data

We collect data through:

• Direct interactions (when you create an account, place an order, subscribe to our newsletter, or contact us)
• Automated technologies such as cookies, server logs and similar technologies
• Third parties including analytics providers (Google Analytics), payment processors (Stripe, PayPal), and delivery tracking services

4. Legal Basis for Processing

We rely on the following legal bases under UK GDPR:

• Contract performance: to fulfil your orders and manage your account
• Legitimate interests: for fraud prevention, network security, and improving our services
• Legal obligation: to comply with applicable UK law
• Consent: for marketing communications (which you can withdraw at any time)

5. How We Use Your Data

We use your personal data to:

• Process and deliver your orders
• Manage your account and loyalty points
• Send you order confirmations and updates
• Send marketing communications (with your consent)
• Improve our website and services
• Comply with legal and regulatory obligations
• Prevent fraud and ensure network security

6. Data Sharing

We do not sell your personal data. We may share your data with:

• Payment processors (Stripe, PayPal) to process transactions
• Delivery partners when required to fulfil your order
• IT and cloud storage providers who host our systems
• Analytics providers (Google Analytics) with anonymised data
• Law enforcement or regulatory bodies when legally required

7. Data Retention

We retain personal data for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting and reporting requirements. Order data is typically retained for 7 years for tax purposes. Marketing consent records are retained for 3 years after your last interaction.

8. Your Rights Under UK GDPR

You have the following rights:

• Right of Access: to receive a copy of your personal data
• Right to Rectification: to correct inaccurate data
• Right to Erasure: to request deletion of your data in certain circumstances
• Right to Restrict Processing
• Right to Data Portability: to receive your data in a structured, machine-readable format
• Right to Object: to processing based on legitimate interests or for direct marketing
• Rights related to automated decision-making and profiling

To exercise any of these rights, please contact our Data Protection Officer at [email protected] or write to us at 47 Carnaby Street, Soho, London W1F 9PT.

9. Cookies

We use cookies to improve your experience. Please see our full Cookie Policy for details on the cookies we use and how to manage your preferences.

10. Security

We implement appropriate technical and organisational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. All data is transmitted using SSL/TLS encryption.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this page periodically.

12. Contact Us & Complaints

If you have any questions about this Privacy Policy or our data practices, please contact us at [email protected] or call +44 20 7946 0823.

You have the right to lodge a complaint with the Information Commissioner's Office (ICO). Visit ico.org.uk or call 0303 123 1113.