Mayfair

Implementation date: 01.05.2025

Effective Date: 01.05.2025

Information We Collect

We may collect the following categories of personal data to help us deliver and improve our services:

Contact Information: such as your name, email address, phone number, and billing/shipping address, which you provide during checkout or when creating an account.

Order and Transaction Data: including product selections, order confirmations, payment status, and delivery preferences. We do not collect or store full card numbers or CVV codes.

Technical Information: like your IP address, browser type, device model, operating system, and general location (e.g., city/country) derived from IP, for analytics and fraud prevention.

Account Credentials: if you choose to create an account, we store your login email and encrypted password.

Communication Records: including messages submitted via forms, email correspondence, or customer service chats.

Regional and Display Preferences: including your selected language, currency (EUR, USD, GBP), and location for delivery or browsing.

Marketing and Engagement Data: preferences regarding newsletters and offers, including interaction history (e.g., email open/clicks).

Social Media Identifiers: publicly shared handles or usernames if you tag us or contact us through social platforms.

Children’s Privacy: Our Website is not intended for use by children. We do not knowingly collect personal data from individuals under the age of 16 (or applicable age of consent in your jurisdiction) without parental consent. If we become aware that we have inadvertently collected personal data from a child without proper consent, we will delete it as soon as possible. If you are a parent or guardian and believe we have collected information about a minor, please contact us.

How We Collect Personal Data

We obtain personal data through the following means:

• Directly from You: When you interact with our site—by placing orders, creating an account, subscribing to marketing, or contacting our support—you voluntarily provide personal information that we collect and process.
• Automatically Through Technology: As you browse our website, we use cookies and similar technologies to collect technical and usage data such as your IP address, device type, and navigation behavior. This helps us ensure site functionality, detect fraud, and analyze performance.
• Via Trusted Service Providers: We may receive information from third parties who assist us in fulfilling our services. This includes payment gateways confirming transactions, delivery providers updating shipment status, and analytics or advertising platforms supplying user insights or campaign effectiveness metrics.

Purposes for Using Your Personal Data

We use your personal data for purposes that support the operation of our business and the services we provide to you:

• Processing and Fulfillment: To handle your purchases, deliver goods, process returns, and send order-related notifications.
• Customer Support: To assist you with account-related questions, order inquiries, or general customer service interactions.
• Security and Fraud Prevention: To monitor and detect unusual activity, prevent fraud or misuse of our platform, and ensure platform integrity.
• Marketing Communications: To send promotional emails and updates, but only where you have explicitly opted in. You can unsubscribe at any time.
• Analytics and Improvement: To assess how our website is used, evaluate campaign performance, optimize user experience, and test new features.
• Legal and Regulatory Compliance: To meet obligations under applicable law, including tax, accounting, and consumer protection requirements.

We only process your personal data where we have a valid legal basis. These include:

• Contractual necessity (e.g., delivering your order).
• Legitimate interests (e.g., improving services, securing our platform).
• Legal obligations (e.g., recordkeeping and compliance).
• Consent (e.g., for email marketing or non-essential cookies, where required by law).

Your Privacy Rights

You have rights under the UK General Data Protection Regulation (UK GDPR) and related data privacy laws, including the right to:

• Access: Obtain a copy of the personal data we hold about you.
• Rectification: Request corrections to inaccurate or incomplete data.
• Erasure: Ask for your personal data to be deleted, provided we are not legally obligated to retain it.
• Restriction: Request that we limit how we use your data in certain circumstances.
• Objection: Object to our processing of your data, particularly where we rely on legitimate interest.
• Data Portability: Receive your data in a structured, machine-readable format and have it transferred to another provider if requested.
• Withdraw Consent: If you previously consented to marketing or cookies, you may withdraw that consent at any time without affecting prior processing.
• Lodge a Complaint: File a concern with a supervisory authority like the UK Information Commissioner`s Office (ICO) if you believe your rights have been violated.

To exercise any of your privacy rights or make a related request, please contact us at support@mayfair-shop.com. We may ask for identification to ensure we are handling your data securely.

Sharing Information

We may share personal information with carefully selected third parties in accordance with applicable data protection laws:

• Payment Processors and Card Services: To facilitate secure transactions, verify payments, and detect fraud.
• Shipping Providers and Logistics Firms To fulfill and deliver your orders to the correct address.
• Cloud Hosting and IT Providers: For website operations, data storage, backup, and service uptime.
• Marketing and Analytics Platforms: To send communications (where consent is given), monitor engagement, and optimize advertising strategies.
• Professional Advisors and Legal Authorities: When necessary to comply with legal obligations, protect our rights, or prevent harm.

All third parties are contractually bound to use your data only as necessary and in line with our instructions. When data is transferred outside the UK or EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or adequacy decisions by the UK government or European Commission.

Retention Period

We keep your personal data only as long as necessary to fulfill the purposes for which it was collected, including:

• Transaction Completion Retaining data until delivery, return window expiration, or warranty coverage ends.
• Legal and Regulatory Compliance: Keeping records to meet accounting, tax, and other statutory obligations.
• Customer Service: Maintaining information for a reasonable period to resolve post-purchase inquiries or disputes.
• Marketing Preferences: Storing contact preferences until you opt out or withdraw consent.

When retention is no longer required, we securely erase, anonymize, or archive the data in accordance with our internal policies and applicable law.

Cookies and Tracking Technologies

Cookies are small text files stored on your device that help us enhance your browsing experience. We use cookies and similar technologies to:

• Support Core Functionality: Remember your cart, login state, and display settings.
• Analyze Performance: Understand how users navigate the site, what features are used, and which content performs best.
• Enable Personalization: Show tailored content, recommend products, and manage ad placements across platforms.

You can accept or decline cookies through your browser settings or consent tools we may present. Declining certain cookies may impact the site’s functionality. For detailed information on cookie types and how to control them, please see our separate Cookie Policy.

Security Measures

We prioritize the confidentiality and integrity of your data by applying technical and organizational security controls, including:

• Encryption: SSL (Secure Socket Layer) is used across our site to protect data in transit.
• Access Control: Role-based access and password protection are enforced to limit internal access.
• Secure Processing: Payments are processed through PCI DSS-certified providers who do not share full card data with us.
• Monitoring and Response: Our systems are monitored for vulnerabilities, and we maintain protocols for identifying and addressing potential breaches.

While we work to protect your data, no system is entirely immune from threats. You can contribute to your own security by maintaining strong, unique passwords and reporting any unusual activity promptly to our support team.

Links to Other Websites

Our website may contain links to third-party websites, applications, or services that are not owned or controlled by URBANLOFT APPAREL LTD. These links are provided for your convenience and reference only. When you click on such links, you may be redirected to external platforms that operate under their own privacy policies.

We do not have control over the content, data handling practices, or security of those third-party sites and accept no responsibility or liability for them. We strongly encourage you to read the privacy policies of any external websites before submitting personal information to them. Your use of third-party platforms is entirely at your own risk.. These sites are governed by their own privacy practices, and we are not responsible for their content or policies.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or the way we handle your personal data, please contact us. We are here to help and will respond as promptly as we can.

• By Email: support@mayfair-shop.com
• By Post Data Protection Officer (Privacy Team)
  URBANLOFT APPAREL LTD
  35 Firs Avenue, London, N11 3NE
  United Kingdom

Thank you for trusting URBANLOFT with your personal data. Your privacy is important to us, and we are dedicated to safeguarding it.