Privacy Policy

We value your privacy and keeping it safe and secure is of utmost importance to us. We respect and understand your desire to keep your personal information safe and secure. For the same, we have a privacy policy. Please read on for the details of our privacy policy. If you have any doubts regarding the policy, please feel free to message us at the details given below.

Data Collection

1. Data that we may collect about you

We may collect and process personal data about you. Personal data, or personally identifiable data, is any piece of data that can be used to identify a natural person. It does not include any data where the identity has been removed (also called anonymous data or de-identified data). We collect, store and use various personal data that can be found in the following table. For your convenience, we have also added the purpose of such data.

PurposeType of data Lawful basis
For billing purposesName and addressTo perform contractual obligations we have with the customer
For billing purposes such as to send invoicesEmail To perform contractual obligations we have with the customer
For sending communications such as newsletters when the user signs up for the sameEmailTo perform contractual obligations we have with the user
For identifying location for taxation purpose and consent loggingIP addressTo perform contractual obligations we have with the customer
For authenticating with StripeName, Email Contact number, Billing and Shipping address, and Payment method information (linked with Stripe Account ID)To perform contractual obligations we have with the customer
For billing purposesVATTo perform contractual obligations we have with the customer

We may also collect data that is not mentioned here. However, before doing the same, we will be getting your consent. Only after getting your consent will we collect and process your personal data.

2. How do we collect the data?

We use different methods to collect the data, including the following ways:

  1. Direct interactions: To collect information for billing and shipping purposes such as name, address, email address, and VAT
  2. From third parties: IP address for consent logging (using a Consent Management Plugin), Stripe Account ID for authenticating with Stripe, and to determine the location for taxation purposes
  3. Special categories of data

We do not collect, store, or use any special categories of data about you. This means details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data are not collected, used, or stored.

Cookies

Cookies are small files that are stored in your browser by the websites you visit. They help the website to remember about your computer. For example, when you leave the website and return later, it helps the website to take you back to where you left off. Cookies are used to remember your cart data and other information. 

We use cookies and similar technologies to collect information about you. For more details about our cookie policy, please visit our cookie policy.

Third-party sites and services

We use the following third-party vendors to serve you better. As a result, they may have access to your information. For more details about the privacy, please visit their legal documents linked below:

Third PartyserviceLegal document(s)
SendgridTo send emails such as order confirmation, subscription renewal reminders, etcData Protection Addendum 
MailchampTo send Newsletters that the user signed up for Data Processing Addendum
TrustpilotTo send automatic review collection emailsData Processing Agreement
Cloudways by Digital OceanTo store data that have been collected from the usersData Processing Agreement
Google AnalyticsUser analyticsData Processing Terms

Sharing with third parties

We may share your information with third parties that are not mentioned above, for the purposes set out in this privacy policy. This may include the following:

  • Any member of our group, which means our subsidiaries, our ultimate holding company, and its subsidiaries.
  • Business partners, suppliers, and subcontractors for the performance of any contract we enter into with them or you to provide services such as hosting services.
  • Professional advisors acting as service providers to us in relation to the Site or Services – including lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance, and accounting services.
  • Tax authorities, regulators, and other authorities who require reporting of processing activities in certain circumstances.

International transfers

Our Services are global, and your personal data may be stored and processed in any country where we have operations, our staff is located, or where we engage service providers engaged in, among other things, the fulfillment of your order or the provision of support services. This will involve a transfer of your personal data to countries outside of your country of residence, where data protection rules are different from those of your country of residence.

Processing. or your personal data will involve a transfer of data to countries outside the European Economic Area (“EEA”), Switzerland, or the UK. 

We will take all steps reasonably necessary to ensure that your personal data is treated securely and in accordance with this Privacy Policy. In particular, this means that your personal data will only be transferred to a country that provides an adequate level of protection (for example, where the European Commission or the UK Data Protection Authority, (“ICO”) has determined that a country provides an adequate level of protection) or where the recipient is bound by standard contractual clauses according to conditions provided by the European Commission or ICO.

Data security

We have taken appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered, or disclosed. We limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know. 

Unfortunately, the transmission of information via the Internet is not completely secure. Although we will endeavour to protect your personal data, we cannot guarantee the security of your personal data transmitted to our Site or the Services. Any transmission is at your own risk. Once we have received your personal data, we will use strict procedures and security features to try to prevent unauthorised access.

We also engage with third parties to store the data that we collect from you or third parties. Please note that their privacy and security policies may differ from that of ours. Please refer to the links that are mentioned in “Third-party sites and services”  for more information.

Data retention

We retain the data that we collect from you for as long as it is necessary for us to fulfil the purposes for which it was collected or provided including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements. We may retain your personal data for a longer period in the event of a complaint, if we reasonably believe there is a prospect of litigation in respect to our relationship with you, to comply with law enforcement requests, maintain security, prevent fraud and abuse, resolve disputes, enforce our legal agreements, or fulfill your request to “unsubscribe” from further messages from us. 

The data collected on the website does not have an expiration date. We only delete them when there is a deletion request from a customer. 

DO Not Track requests

Currently, this website is not set to recognise do not track requests. As a result, we will not be treating you differently from others in case your browser has sent such signals.

Automatic processing of data

We do not use any automatic processing methods for the data we collect.

Your rights

Depending on the privacy law of your country, you have the following rights.

  1. Right to be informed: you have the right to be informed of the collection and use of your personal data
  2. Right to access: you have the right to view and request for copies of the personal data that you have provided us
  3. Right to rectification: You have the right to request inaccurate or outdated information be corrected or updated
  4. Right to be forgotten/right to erasure: You have the right to ask your personal data be deleted. You have to note that this right is not absolute and may be subject to exemptions under certain laws.
  5. Right to data portability: You have the right to ask for your data to be transferred to another controller or provide to you in a machine-readable, electronic format
  6. Right to restrict processing: you have the right to restrict the processing of your personal data
  7. Right to withdraw consent: you have the right to withdraw consent to the processing of your personal data. Please note that this may make us unable to serve you with our services.
  8. Right to object to processing: You have the right to object to the processing of your personal data. Exercising this right may affect our ability to provide you with our services.
  9. Right to object to automated processing: You have the Right to object to automated processing. This may also affect our ability to provide you with our services.

If you wish to exercise any of the above rights, please contact us as set out at the end of this Privacy Policy. We will respond to such queries within 30 days and deal with requests we receive from you, in accordance with the provisions of the applicable Data Protection Law. Which means that the law that will govern you would depend upon your address. Occasionally it could take us longer, if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.

You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive. Alternatively, we could refuse to comply with your request in these circumstances.

We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.

Questions and concerns

If you have any questions or concerns regarding this privacy policy, please reach out to us at the contact details given towards the end of this document.

Appropriate age

Our services are meant for the use of people who are major in accordance with the applicable laws and regulations and are not meant to be used by anybody who does not meet this criteria. If you are aware that your child, who is a minor, has given information to us, kindly contact us at the details given below. We will take appropriate action after verifying the information that you have provided.

Link to external apps/websites

On our website, we may provide you with links to external websites, apps, or services. These are not operated by us and thus do not come under our privacy policy or practices. We strongly recommend to read the privacy policies of such websites before engaging with them to ensure that you are not providing with your personal information that you do not want to.

Changes to this Privacy Policy

We may have to make changes to this privacy policy to reflect any legal, regulatory or any internal changes. Any changes we may make to our Privacy Policy in the future will be posted here and, where appropriate, notified to you by email. Please check back frequently to see any updates or changes to our Privacy Policy. 

This Privacy Policy was last updated on 31st May 2023, and this version replaces any other Privacy Policy previously applicable.

Contact

If you have any questions, comments, requests, or complaints regarding our privacy policy or our privacy practices, kindly reach out to us using the following:

By post: Mozilor Limited, 16 Upper Woburn Place, London, WC1H 0BS, United Kingdom.

By email: support@webtoffee.com