1. Introduction

Ashton Furniture (“we”, “us”, or “our”) is operated by Sophie Marsden, Entrepreneur individuel, and is committed to protecting and respecting your privacy in accordance with applicable data protection laws, including the UK GDPR and the EU General Data Protection Regulation (GDPR).

2. Data Controller

Business Name: Sophie Marsden
SIREN: 102 882 164
SIRET: 10288216400019
Address: 35 Glandovey Terrace, Tregolds, PL28 8AB, United Kingdom
Email: support@ashtonfurniture.co.uk

Sophie Marsden is the data controller responsible for your personal data.

3. Personal Data We Collect

3.1 Information You Provide

  • Full name
  • Email address
  • Phone number
  • Address (if applicable)
  • Information submitted via forms

3.2 Automatically Collected Data

  • IP address
  • Browser type and version
  • Device information
  • Pages visited and interaction data

4. Legal Basis for Processing

We process personal data under the following lawful bases:

  • Consent for marketing communications
  • Contractual necessity for providing services
  • Legitimate interests to improve our website and operations
  • Legal obligations under applicable laws

5. How We Use Your Data

We use your data to:

  • Respond to enquiries
  • Provide services and manage transactions
  • Improve website performance and user experience
  • Send marketing communications (only with consent)
  • Ensure security and prevent fraud

6. Cookies

We use cookies and similar technologies to:

  • Enable core functionality
  • Analyse traffic and performance

Users may control cookies through browser settings.

7. Data Sharing

We may share your data with:

  • Hosting providers
  • Payment processors (once implemented)
  • Analytics providers

All third parties are required to comply with applicable data protection laws.

8. International Data Transfers

Where data is transferred outside the European Economic Area (EEA) or UK, we ensure appropriate safeguards such as:

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions by relevant authorities

9. Data Retention

We retain personal data only as long as necessary for:

  • Legal obligations
  • Business operations
  • Legitimate purposes

10. Your Rights

Under GDPR and UK GDPR, you have the right to:

  • Access your personal data
  • Request correction
  • Request deletion
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time

To exercise your rights, contact us using the details above.

11. Supervisory Authority

You have the right to lodge a complaint with a supervisory authority, including:

  • In the UK: Information Commissioner’s Office (ICO)

12. Data Security

We implement appropriate technical and organisational measures to safeguard your data.

13. Third-Party Links

We are not responsible for the privacy practices of external websites linked from our Site.

14. Changes to This Policy

We may update this Privacy Policy from time to time. Updates will be posted on this page.