Slimming Solutions takes the privacy of your information very seriously. We have a few simple principles which we abide by in order to protect your privacy:
We only ask you for information which we genuinely need in order to provide you with a better service, for example your name and e-mail address if you want to enquire about our services; and
Unless legally obliged to do so we won’t share your information with anyone, other than for the standard running of our business. For example, for you to make payment for our services we would need to ask additional personal and financial information to give to our bank in order to process the transaction.
Armadillo Business Centre,
Newcastle Upon Tyne,
Important Information Regarding Our Website and Services
Information Collection on Our Website:
We collect information as follows::
Website Security. We use a third party hosting service to maintain the security and performance of our website, and in order to do this it is necessary to collect the Internet Protocol (‘IP’) address of visitors to our website.
Data Requested From You
In line with our principles, in addition to electronic data automatically collected when you use our website, in order to provide you with a service or to respond to any questions or queries you may have, we may request and collect the following data from you:
(c) Contact Information such as email addresses and telephone numbers; and
(d) Financial information such as credit/debit card numbers;
Our Use of Your Data
Other than data we are legally obliged to keep for longer periods, for example as regards taxation legislation, we will retain any data you submit to us for a period of one year. This includes e-mail correspondence. We take the security of your data very seriously. All of your data which we collect is stored securely with appropriate physical, managerial and electronic safeguards in accordance with the principles of the Slimming Solutions and any other applicable legislation.
Third Party Access to Your Data
We do not sell or lease your personal data/information to third parties unless we are required to do so by law. We distribute a limited amount of data only to third parties as defined below.
We utilise both Google Analytics and Google Adwords to track and monitor users on our site. All data available to Google is anonymised, this is there is no personally identifiable information given. The data collected includes:
Device Internet Protocol (IP) Address
Duration of Visit
This data allows us to monitor what products and pages are popular and better tailor user experience around the data.
There is NO PERSONAL data sent, stored or given to Google.
5.2. Affiliate Scheme
We run an affiliate scheme. If you were referred to us via one of our affiliates then you will be tracked. The tracking includes reporting back to the affiliate the following:
This data allows us to correctly identify our affiliate referrers.
There is NO PERSONAL data sent, stored or given to Affiliates.
5.3. Cart Recovery Affiliate
Our Cart Recovery Affiliate monitors our checkout process for abandonment and then asks failed customers if they require help with the process etc. The affiliate securely collects the following information:
Your Email Address
The affiliate does not knowingly store any information of under 18’s. They only store the information for 90 days and are securely transmitted over HTTPS.
Some personal data is securely sent to our Cart Recovery Affiliate and is stored for 90 days.
To make sure that all payments are processed correctly and securely, we make use of a payment gateway for internet and telephone orders, this means that we (SSRTP Ltd.) do NOT STORE payment details such as credit and debit card numbers. Our Payment processing gateway is SagePay.
SagePay securely collect the following details:
Your Email Address
Your Payment/Bank Details
Any Payment/Bank Security Procedures
SagePay are PCI DSS Secure and has direct contact with most banks worldwide.
Sensitive and Personal data is securely sent to SagePay directly by you and NOT via our site or servers.
So we can get your order delivered we have to share some of your details with our couriers, we only supply the information necessary and only to the courier for the delivery method requested. Our couriers can change from time to time depending on availability and delivery destinations.
Information supplied to couriers includes:
Your Email Address
You Telephone Number
Some personal data is securely sent to our couriers and only retained by them for as long as necessary.
We are PCI DSS Compliant and can be validated with TrustWave.
Our payment provider and our data centre are also PCI-DSS Compliant.
Your Access to Your Data which is Held by Us
Under the Data Protection Act you have the right to ask for a ‘Subject Access Request’- being a copy of your personal data held by us. Where we do hold such data on you we will provide you with a copy of the data we hold on you. This will be in a commonly used machine readable file where you request us to e-mail the information to you. We will also give you a description of the data, tell you why we are holding it and tell you who we could have disclosed it to. We do not charge to provide you with this information.
Where data we hold on you is incorrect we will rectify the data. We will also stop processing data on your request and you may also request that we delete the data held on you, though we may have to retain data for a certain length of time for legal purposes, for example tax legislation.
Transfers outside the European Economic Area (‘EEA’)
Governing Law and Jurisdiction
Your Rights and Control
This Statement is intended to comply with the provisions of the General Data Protection Regulation EU 2016/679 (GDPR) which governs how Personal Data is processed within the European Economic Area (EEA).
You can control/restrict the collection or use of your data in the following ways:
If you have previously agreed to disclose information to ourselves for direct marketing purposes, you may change your mind and unsubscribe at any time. You can do this by writing to us, emailing us or using the unsubscribe link contained in the marketing emails.
Under legislation defined in the Data Protection Act (1998) you may request a copy of all information that we hold on you that is older than 90 days. This request for personal information only and will require some form of identification. Please post or email us for us to start the process to fulfil your request.
If you believe any data we hold on you is incorrect then please contact us any corrections and we will update your details as necessary.