AURICLE's Ram skull logo

PRIVACY POLICY

Effective Date: 9 August 2025

This Privacy Policy describes how we collect, use, disclose and protect personal data when you use our websites and services. It applies to www.auricle.co.uk and www.auriclejewelry.com (the “Website”).

NOTICE: This policy explains how we process personal data. Some processing is strictly necessary to operate the Website and fulfil orders (contract/legitimate interests). If you do not agree with this policy, do not use the Website or submit personal data. For cookies, see the COOKIE POLICY. Website use is governed by the TERMS OF SERVICE.

1) Who we are (Controller)

“AURICLE”, “we”, “us”, “our” means AURICLE Limited.
We are the data controller for personal data processed through the Website and our B2B operations.

Contact: info@auricle.co.uk
See our registered details on the Company Information page.

2) Scope

If you are under 18, you may only use the Website with parent/guardian consent.

3) Data we collect

We collect the following categories of personal data:

  • Account & identity: name, business name, job title/role, email, phone, password hash.
  • Business & addresses: billing, shipping, company identifiers (e.g., VAT), preferred currency/region.
  • Order & support: orders, invoices, returns, messages to our team.
  • Usage & device: IP address, device/browser info, pages viewed, referral source, approximate location (derived from IP).
  • Marketing preferences: newsletter/artwork updates, opt-ins/opt-outs.
  • Cookies & similar tech: see Cookie Policy.

We do not store full payment card numbers on our Website. Card data is handled by our checkout/payment provider.

4) How we collect it

  • Directly from you: account registration, checkout, forms, email/contact.
  • Automatically: cookies, logs, analytics when you browse the Website.
  • From third parties: address verification, fraud prevention, courier integrations, and (where permitted) business data sources.

5) Purposes & lawful bases

Purpose Examples Lawful basis
Account setup & management Approving wholesale accounts, authentication, communications about your account Contract; Legitimate interests (B2B admin/security)
Order processing & delivery Taking payment, fulfilling orders, returns, invoices Contract; Legal obligation (tax/records)
Support & communications Responding to enquiries, service notifications Legitimate interests (operate & support services)
Security & fraud prevention Access controls, monitoring suspicious activity Legitimate interests; Legal obligation
Analytics & site performance Measuring traffic, improving pages and navigation Legitimate interests (improve Website); Consent where required (cookies)
Marketing Email updates about products/services Consent (and where permitted, Legitimate interests with opt-out)

You may withdraw marketing consent at any time via unsubscribe links or by contacting us.

6) Sharing your data

We share personal data with:

  • E-commerce & payment providers (e.g., Shopify checkout and your chosen payment processor) to process orders and payments.
  • Couriers & logistics partners to deliver goods and manage returns.
  • IT & cloud service providers (hosting, email, analytics, security) to run the Website.
  • Professional advisers & auditors (legal, accounting) where necessary.
  • Authorities/regulators when required by law or to protect rights, safety, or security.

We require recipients to protect personal data appropriately and only process it for specified purposes.

7) International transfers

Some providers may process data outside the UK/EEA. Where this happens, we use appropriate safeguards such as adequacy decisions or standard contractual clauses to protect your data, as required by UK/EU data protection law.

8) Retention

We keep personal data only as long as necessary for the purposes above:

  • Accounts & orders: duration of the business relationship, and typically 6 years after the end of the financial year for tax/record-keeping.
  • Support correspondence: up to 24 months from resolution.
  • Marketing data: until you withdraw consent or object, or after a period of inactivity.
  • Logs/analytics: typically 12–24 months, aggregated or anonymised sooner where possible.

We may retain data longer if required by law or to establish/exercise/defend legal claims.

9) Your rights

Subject to conditions and exemptions in applicable law, you have the right to:

  • Access your personal data;
  • Rectify inaccurate or incomplete data;
  • Erase data in certain circumstances;
  • Restrict or object to processing;
  • Portability (receive data in a structured, commonly used format);
  • Withdraw consent where processing is based on consent;
  • Not be subject to decisions based solely on automated processing that produce legal or similarly significant effects.

To exercise your rights, contact info@auricle.co.uk.
You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) or your local EEA data authority.

10) Security

We use technical and organisational measures appropriate to the risk, including HTTPS, access controls, and restricted access to personal data. No method of transmission or storage is 100% secure; we encourage you to keep your account credentials confidential and notify us of any suspected misuse.

11) Children

Our Website and services are not directed to children. If you believe we have collected personal data about a minor without appropriate consent, please contact us so we can delete it.

12) Cookies & similar technologies

We use cookies and similar technologies for essential functions, performance, and (where enabled) analytics/marketing.
See our Cookie Policy and manage choices via Cookie Preferences.

13) Changes to this policy

We may update this Privacy Policy from time to time. Changes take effect when posted on this page. If you do not agree with the changes, please stop using the Website.

14) Contact

For privacy requests and questions: info@auricle.co.uk
Postal: see Company Information.

Version: 09.08.2025