Logo

Privacy Policy

Data Protection and Privacy

1. Personal Data

The Company complies with the requirements of the General Data Protection Regulation (GDPR) and is committed to protecting your privacy and personal data. And in accordance with:

  • The Data Protection Act 2018
  • UK General Data Protection Regulation (GDPR)
  • EU General Data Protection Regulation (GDPR)
  • French Data Protection Act (Loi Informatique et Libertés)

2. Legal Basis for Processing Personal Data

We collect and process your personal data based on the following legal bases under the GDPR:

  • Consent: When you provide us with explicit consent to process your data.
  • Contractual necessity: When the processing of personal data is necessary to fulfil our contractual obligations.
  • Legitimate interests: When we process your data based on our legitimate interests, for example, to improve our services.

3. Data Collection

3.1 Merchant Data

Data Collected:

  • Business registration details
  • Transaction records
  • Stock data
  • Customer interaction logs
  • Employee access records
  • Supply chain information
  • Bank account details for settlements
  • Analytics data
  • Usage patterns

3.2 Consumer Data

Data Collected:

  • Personal identification information
  • Transaction history
  • Digital receipts
  • Payment information
  • Device information
  • Location data (with consent)
  • Age verification documents
  • Address verification data
  • Usage patterns

Data Processing

The Company shall process data solely for:

  • Service provision
  • Payment processing
  • Identity verification
  • Fraud prevention
  • Legal compliance
  • Analytics and reporting
  • Customer support
  • Service optimisation
  • Marketing (with explicit consent only)

4. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction.

5. Data Retention

We will retain your personal data only for as long as is necessary to fulfil the purposes for which it was collected or as required by law.

6. Third-Party Data Sharing

We may share your personal data with trusted third parties such as analytics providers, marketing services, or business partners. These third parties are required to adhere to data protection laws and will only use your data as outlined in this policy.

7. Data Security Measures

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction.

8. User Rights under GDPR

Under GDPR, you have the following rights regarding your personal data:

  • The right to access your personal data
  • The right to rectify any inaccuracies in your data
  • The right to erase your personal data (right to be forgotten)
  • The right to object to processing of your data
  • The right to restrict the processing of your data
  • The right to portability of your data (if applicable)

Please contact us at dpo@wollette.com if you wish to make a request.

How to Complain

If you have any concerns about our use of your personal information, you can make a complaint to us at complaints@wollette.com.

You can also complain to the ICO if you are unhappy with how we have used your data.

The ICO's address:

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Helpline number: 0303 123 1113

ICO website: https://www.ico.org.uk