Privacy Policy for Roam & Wrap
1. Introduction
Roam & Wrap (“we”, “us”, “our”) is committed to protecting your privacy and handling personal data responsibly. This policy explains how we collect, use, and share your data and your rights regarding it.
2. Who We Are & Contact
-
Controller: Roam & Wrap (operating the website roamandwrap.com).
-
Contact: connect@roamandwrap.com
3. Personal Data We Collect
-
Account information: name, email, billing/shipping address, password.
-
Order details: items purchased, transaction amounts, payment confirmation.
-
Site usage: browser, IP address, device, pages visited, session timing.
-
Optional data: newsletter preferences, customer service chats.
4. How & Why We Use Your Data
| Purpose | Legal Basis | Data Used |
|---|---|---|
| Order processing & delivery | Contractual | Account, order, shipping, payment info |
| Customer support | Legitimate interest | Account and order details |
| Marketing (email, offers) | Consent | Email, preferences |
| Analytics & site improvements | Legitimate interest | Technical/site usage data |
| Legal obligations (e.g. tax) | Compliance | Basic account and transactional data |
5. Cookies & Tracking
We use cookies (session, analytics, marketing) to operate the site, analyze usage, and tailor communications. You can control cookies via your browser settings. More details will be provided in our updated cookie notice.
6. Sharing Your Data
We may share your data with:
-
Service providers: e.g. payment gateways, shipping partners, customer support tools.
-
Legal entities: if required by law or to protect our rights.
-
Marketing tools: with your consent.
We do not sell personal information to third parties.
7. International Transfers
If we transfer your data outside the UK/EU, we ensure protection (e.g. via EC-approved model clauses, Privacy Shield, or UK adequacy decisions).
8. Data Retention
We keep your data only as long as necessary:
-
For orders and legal reporting: up to 7 years.
-
For marketing: until you withdraw consent.
-
For analytics: typically 2 years.
9. Your Rights
You have the following rights under data protection laws:
-
Access, correct, delete your data
-
Restrict or object to processing
-
Data portability
-
Withdraw consent (e.g., stop marketing emails)
-
Lodge a complaint with a supervisory authority
We respond within one month (or two in complex cases).
10. Data Security
We use industry-standard security: firewalls, HTTPS (SSL/TLS), encryption, regular testing, and secured employee access to protect personal data—but no system is 100% secure.
11. Children’s Privacy
Our site is not intended for children under 16. We do not knowingly collect data from this age group.
12. Updates to This Policy
We may update this policy occasionally. The latest version is always on our site with its “last updated” date. Significant changes will be communicated (e.g. via email or site banner).