1. Introduction and Who We Are Welcome to Evvida.co.uk’s Privacy Policy. Evvida (“we”, “us”, or “our”) is committed to protecting and respecting your privacy. This policy explains what personal data we collect, how we use it, the conditions under which we may disclose it to others, and how we keep it secure.
Data Controller: For the purpose of the UK General Data Protection Regulation (UK GDPR), the data controller is Mio Solution LTD.
Company Number: 16245537
Registered Address: 121A Brownswall Rd, Dudley, West Midlands, DY3 3NS
2. What Personal Data We Collect We may collect, use, store, and transfer different kinds of personal data about you:
Identity Data: Includes first name, last name, and title.
Contact Data: Includes billing address, delivery address, and email address.
Financial Data: Includes payment card details (processed securely by our payment gateway, not stored by us).
Transaction Data: Includes details about payments to and from you and other details of products you have purchased from us.
Technical Data: Includes your internet protocol (IP) address, browser type and version, time zone setting and location, and other technology on the devices you use to access this website.
Marketing and Communications Data: Includes your preferences in receiving marketing from us.
3. How and Why We Use Your Personal Data (Legal Basis for Processing) We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
To Fulfil a Contract: Where we need to perform the contract we are about to enter into or have entered into with you (e.g., to process your payment and deliver your order).
For Our Legitimate Interests: Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests (e.g., using analytics to improve our website).
To Comply with a Legal Obligation: Where we need to comply with a legal or regulatory obligation (e.g., keeping transaction records for tax purposes).
4. Sharing Your Personal Data (Third-Party Disclosures) We do not sell your data. However, we may have to share your personal data with trusted third parties to provide our services to you, including:
Payment Service Providers: Such as Stripe or PayPal, to securely process your payments.
Delivery and Courier Services: Such as Royal Mail or DPD, to deliver your orders.
IT and System Administration Service Providers: Including our website hosting provider (Hostinger).
Analytics Providers: Such as Google Analytics, to help us understand website traffic and improve user experience.
We require all third parties to respect the security of your personal data and to treat it in accordance with the law.
5. International Data Transfers Some of our external third parties (like our hosting provider or analytics provider) may be based outside the UK, so their processing of your personal data will involve a transfer of data outside the UK. Whenever we transfer your personal data out of the UK, we ensure a similar degree of protection is afforded to it by ensuring appropriate safeguards, such as Standard Contractual Clauses approved by the UK’s Information Commissioner’s Office (ICO), are in place.
6. Data Security We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, accessed in an unauthorized way, altered, or disclosed. Access to your personal data is limited to employees and third parties who have a business need to know.
7. Data Retention We will only retain your personal data for as long as is reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. By law, we have to keep basic information about our customers (including Contact, Identity, Financial, and Transaction Data) for six years after they cease being customers for tax purposes.
8. Your Legal Rights Under data protection law, you have rights including:
Right of Access: To ask for copies of your personal information.
Right to Rectification: To ask us to rectify inaccurate information.
Right to Erasure (‘Right to be Forgotten’): To ask us to erase your personal information in certain circumstances.
Right to Restriction of Processing: To ask us to restrict the processing of your information in certain circumstances.
Right to Object to Processing: To object to processing if we are doing so under our legitimate interests.
Right to Data Portability: To ask that we transfer the information you gave us to another organisation, or to you.
To exercise any of these rights, please contact us at info@evvida.co.uk. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s supervisory authority for data protection issues (www.ico.org.uk).
9. Marketing Preferences We will only send you direct marketing communications by email if we have your explicit consent (opt-in). You can ask us to stop sending you marketing messages at any time by following the “unsubscribe” link on any marketing message sent to you or by contacting us directly.
