Last updated: September 20, 2025

​

​

Privacy Policy

​

1. Who We Are and How to Contact Us

Groomed Glory is committed to protecting your privacy and ensuring transparent data handling practices. We are the data controller responsible for your personal information when you use our services.

Contact Information:

• Company Name: Groomed Glory

• Registered Address: Swanscombe Kent DA10 1DZ, United Kingdom

• Email: joycegl203@gmail.com

• Phone: 07958089522

• Privacy Queries: joycegl203@gmail.com

For all data protection inquiries, please contact us using the above details with "Privacy Request" in the subject line.

2. Information We Collect and Why

Personal Data We Collect Directly

When you interact with our website or make purchases, we collect:

Account and Contact Information:

• Name, email address, phone number

• Billing and delivery addresses

• Date of birth (for age verification if required)

• Account preferences and communication settings

Order and Payment Information:

• Purchase history and product preferences

• Payment method details (processed securely by our payment providers)

• Order status, shipping tracking, and delivery confirmations

• Customer service communications and support tickets

Marketing and Communication Data:

• Newsletter subscriptions and marketing preferences

• Survey responses and product reviews

• Communication history with our customer service team

Information We Collect Automatically

Website Usage Data:

• IP address, browser type, and device information

• Pages visited, time spent on site, and navigation patterns

• Session recordings and heatmaps (via Wix platform)

• Referring websites and search terms used to find us

Legal Basis for Processing:

• Contract fulfillment: Processing orders, payments, and delivery (Article 6(1)(b) GDPR) ICO +2

• Legitimate interests: Fraud prevention, customer service, and business analytics (Article 6(1)(f) GDPR) ICO +2

• Consent: Marketing communications and non-essential cookies (Article 6(1)(a) GDPR) European Union +3

• Legal obligation: Tax records and consumer protection compliance (Article 6(1)(c) GDPR) ICO +2

3. How We Share Your Information

Dropshipping Suppliers and Order Fulfillment

As a dropshipping business, we share customer information with third-party suppliers to fulfill your orders. Free Privacy PolicyTermly When you place an order, we provide suppliers with:

• Your name and contact details

• Delivery address and special delivery instructions

• Order details (products, quantities, specifications)

• Any relevant customer service notes

Supplier Locations: Our suppliers are located primarily in the UK, EU, and other countries with adequate data protection. Free Privacy Policy We ensure all suppliers have appropriate data protection agreements and comply with GDPR requirements. GDPR Advisor +2

Payment Processing Partners

We use secure third-party payment processors who act as independent data controllers:

Payment Methods and Providers:

• Apple Pay: Processed by Apple Payments Services LLC AppleApple Support - Apple Pay Privacy apple

• PayPal: Processed by PayPal - PayPal Privacy Policy paypal

• Credit/Debit Cards: Processed through PCI DSS compliant processors with encryption PCI Security Standards Council +3

• Google Pay: Processed by Google Payment Corp - Google Pay Privacy google

Website Platform and Technology

Wix Platform: Our website is hosted on Wix.com, which processes certain data on our behalf including website analytics, session recordings, and technical performance data. WixCookieYes View Wix Privacy Policy. wix

Other Third-Party Services

We may share data with:

• Shipping carriers (for delivery tracking and logistics)

• Customer service platforms (for support ticket management)

• Marketing platforms (with your consent for newsletters and promotions)

• Fraud prevention services (to protect against unauthorized transactions)

• Legal authorities (when required by law or to protect our rights)

4. International Data Transfers

Some of our suppliers and service providers are located outside the UK and EU. Free Privacy Policy When we transfer your data internationally, we ensure appropriate safeguards are in place: GDPR AdvisorEuropean Union

Transfer Mechanisms:

• EU Adequacy Decisions: For transfers to countries deemed adequate by the EU Commission GDPR Advisor +4

• Standard Contractual Clauses (SCCs): Legal contracts ensuring GDPR-level protection GDPR Advisor +4

• Specific Consent: Where you've explicitly consented to international transfers European Union

• Contractual Necessity: Where transfers are essential for order fulfillment

Key Transfer Locations: United States (adequacy framework), other EU/EEA countries, and select countries with appropriate safeguards. BfDI

You have the right to request information about international transfers affecting your data and can contact us for details about specific safeguards.

5. How Long We Keep Your Information

We retain personal data only as long as necessary for the purposes collected: DPDI +3

Data Retention Periods:

• Customer account data: Until account closure plus 1 year

• Order and transaction history: 7 years (for tax and legal compliance) DPDIICO

• Payment information: Handled by payment processors; we don't store complete card details

• Marketing communications: Until consent withdrawn or 2 years of inactivity European Union

• Website analytics: 26 months maximum

• Customer service records: 3 years

• Legal claims data: 6 years (UK limitation periods)

We regularly review data retention and securely delete information when no longer needed. ICOGDPR Local

6. Your Rights Under GDPR

You have extensive rights regarding your personal data: EDPB

Right of Access

Request a copy of personal data we hold about you, including processing purposes and recipients. Wix +4

Right to Rectification

Ask us to correct inaccurate or incomplete personal information. WixData Privacy Manager

Right to Erasure ("Right to be Forgotten")

Request deletion of your personal data Wix where: GDPR

• Data is no longer necessary for original purposes

• You withdraw consent (where consent is the legal basis) European Union

• Data has been unlawfully processed

• Legal obligation requires deletion GDPR Info

Right to Restrict Processing

Limit how we use your data while we verify accuracy or assess legitimate interests.

Right to Data Portability

Receive your data in a structured, commonly used format and transmit it to another service provider. GDPR Info

Right to Object

Object to processing based on legitimate interests or for direct marketing purposes. We will stop marketing communications immediately upon request.

Right to Withdraw Consent

Where processing relies on consent, withdraw it at any time without affecting prior processing. European Union

Automated Decision-Making Rights

We don't use automated decision-making or profiling that produces legal or significant effects without human oversight.

How to Exercise Your Rights: Email us at joycegl203@gmail.com with "Data Subject Request" in the subject line. We'll respond within one month and may require identity verification for security. European Union +3

7. Cookies and Website Tracking

We use cookies and similar technologies to improve your experience and analyze website performance. European Union

Cookie Categories

Essential Cookies: Required for website functionality (shopping cart, checkout, security) Performance Cookies: Anonymous analytics to understand site usage and improve performance
Marketing Cookies: Track visits across websites for advertising and social media integration Preference Cookies: Remember your settings and personalize your experience

Managing Cookie Preferences

You can control cookies through:

• Our cookie preference center (accessible from our website footer)

• Your browser settings

• Direct opt-out links for specific services

Note: Disabling essential cookies may affect website functionality and your ability to complete purchases.

8. Data Security Measures

We implement robust security measures to protect your information: GOV.UK

Technical Safeguards:

• SSL encryption for all data transmission

• PCI DSS compliance for payment data security PCI Security Standards Council +3

• Regular security audits and vulnerability assessments

• Access controls and staff authentication requirements

Organizational Measures:

• Staff training on data protection and privacy

• Data processing agreements with all third parties

• Regular reviews of security policies and procedures

• Incident response procedures for potential breaches

Data Breach Notification: If a breach occurs that may affect your rights, we'll notify you and relevant supervisory authorities within 72 hours as required by GDPR. GDPR Advisor +3

9. Marketing Communications

How We Communicate With You

Order-Related Communications: We'll send essential updates about your orders, delivery status, and customer service responses (no consent required).

Marketing Communications: With your consent, we may send:

• Product recommendations based on purchase history

• Promotional offers and seasonal sales

• Newsletter content about new arrivals and trends

Consent and Opt-Out

Soft Opt-In: For existing customers, we may send marketing about similar products unless you opt out. GDPR LocalICO

Easy Unsubscribe: Every marketing email includes unsubscribe links, and you can manage preferences in your account or contact us directly. iubenda

Communication Preferences: Control how we contact you (email, SMS, phone) through your account settings or by contacting customer service.

10. Children's Privacy

Our services are not directed to children under 16. We don't knowingly collect personal information from children. WikipediaEuropean Union If you believe we've collected a child's information, please contact us immediately for deletion.

11. Complaints and Supervisory Authorities

Your Right to Lodge Complaints

If you're unhappy with how we handle your personal data, you have the right to lodge a complaint with: GDPR InfoData Protection Commission

UK Customers:

• Information Commissioner's Office (ICO) GDPR EU

• Website: ico.org.uk

• Phone: 0303 123 1113

• Address: Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF

EU Customers: Contact your local data protection authority. You can find contact details at: ec.europa.eu/justice/data-protection/bodies/authorities/

Our Commitment to Resolution

We encourage contacting us first to resolve concerns. We're committed to working with you and regulatory authorities to address any privacy issues promptly and transparently.

12. Policy Updates

We may update this privacy policy to reflect changes in our practices, technology, or legal requirements. Free Privacy Policy

How We Notify You:

• Material changes: Email notification to registered users

• Minor updates: Website notification and updated "last modified" date

• Version history: Available upon request

Your Continued Use: Using our services after updates constitutes acceptance of changes unless you contact us to discuss concerns or exercise your rights.

13. Contact Information for Privacy Matters

For all privacy-related questions, data subject requests, or concerns about our data handling practices: Free Privacy Policy

Primary Contact:

• Email: joycegl203@gmail.com

• Subject Line: "Privacy Request" or "Data Protection Query"

• Phone: 07958089522

• Mail: Groomed Glory, Swanscombe Kent DA10 1DZ, United Kingdom

Response Times:

• General inquiries: Within 3 business days

• Data subject requests: Within 1 month (may extend to 2 months for complex requests) European Union

• Urgent privacy concerns: Within 24 hours

This privacy policy complies with UK GDPR, EU GDPR, and Privacy and Electronic Communications Regulations (PECR). We regularly review our practices to ensure ongoing compliance with evolving privacy laws and regulation