Privacy Policy

Privacy Policy – Introduction

Kit Miles Ltd (“we”, “us”, “our”) is committed to respecting and protecting your personal information. This policy explains how we collect, use, share, and safeguard your data when you interact with us — whether online, by email, by phone, through a stockist, or in person. We comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, PECR, and relevant updates under the Data (Use and Access) Act 2025.

Who We Are

Data Controller: Kit Miles Ltd, Company No. 08419612. (Insert full registered office address). Email: privacy@kitmiles.co.uk. We determine how and why your personal data is used.

Data We Collect

We may collect the following types of personal information from you:

• contact details (such as your name, address, email address and telephone number);
• demographic information (such as age, nationality, gender or other information that may identify you as an individual);
• passwords and other authentication details;
• responses you provide to customer satisfaction surveys or market research (unless submitted anonymously);
• financial and payment information; and
• your marketing and communication preferences.

We may also collect information automatically. For example, if you contact us with a query or complaint, we may record the phone number used to call our customer service team, along with correspondence, notes and the time taken to resolve your request. We may also retain information relating to your level of satisfaction with the service provided. In addition, we keep a record of your purchase history.
We may also automatically gather certain types of personal data using cookies and similar technologies. A cookie is a small text file placed on your device. For more details about the cookies we use and their purpose, please refer to our Cookie Policy. The information collected may include:

• technical information, including the IP address used to connect your device to the internet;
• login information;
• browser type and version, time zone setting, and browser plug‑in types and versions;
• operating system and platform; and
• information about your visit, including full Uniform Resource Locator (URL) clickstream data to, through and from our website (including date and time); products viewed or searched for; page response times; download errors; length of visits to certain pages; and page interaction data such as scrolling, clicks and mouse‑overs; as well as methods used to navigate away from a page.

We may use the personal data we hold about you in the following ways:
“• to fulfil your order (including acknowledging your order and contacting you if there are any issues related to fulfilment);
• to ensure your order is packaged and delivered correctly;
• to maintain and support your customer account and any preferences associated with it;
• for accounting, billing, reporting, regulatory and audit purposes;
• for credit checking or screening where necessary;
• for authentication and identity verification, including distinguishing you from other users;
• for payment card verification and fraud‑prevention checks;
• for debt collection where applicable;
• to support the safety and security of our operations (including the security of our studio, warehouse partners, and digital systems);
• for internal purposes such as training, legal compliance, troubleshooting, data analysis, testing, research, and statistical or survey work;
• to provide customer care support and respond to enquiries;
• to understand your preferences and requirements so we can improve our products and services;
• to monitor your use of our website, ensuring it is presented effectively for your device and improving overall user experience;
• to improve your shopping experience and tailor our marketing communications to be more relevant to your interests (only where you have opted‑in to marketing);
• to notify you of changes to our services, policies or operations; and
• to conduct marketing analysis so we can understand trends and assess the effectiveness of our marketing and communications, including building an understanding of your interests or preferences so that future communications are relevant to you.

We may also match or combine information we collect directly from you with information we receive from other sources (such as social media platforms or trusted partners).
This combined information may include:
• contact details
• demographic information
• social media interactions
• purchase history
• preferences and interests
• general location or age range
We may use this combined data to tailor and show advertisements or content that is more relevant to you either on our own website or on third‑party platforms (including social media). Where relevant — for example, for clients with whom we have an ongoing or high‑engagement relationship — we may also use this information to offer a more personalised level of service grounded in your preferences, past orders, or design interests.

Legal basis for processing

We will only process your personal data where we have a legal basis to do so. The legal basis will depend on the purposes for which we have collected and use your personal data. In almost every case the legal basis will be one of the following:

• Consent: For example, where you have provided your consent to receive certain marketing from us. You can withdraw your consent at any time, including by clicking on the “unsubscribe” link at the bottom of any marketing email we send you.

• Our legitimate business interests: Where it is necessary for us to understand our customers, promote our services and operate effectively, provided in each case that this is done in a legitimate way which does not unduly affect your privacy and other rights. For example, we will rely on this legal basis when we conduct certain market analysis to understand our customers in sufficient detail so we can create new services and improve the profile of our brand.

• Performance of a contract with you (or in order to take steps prior to entering into a contract with you): For example, where you have purchased a product from us and we need to use your contact details and payment information in order to process your order and send the product to you.

• Compliance with law: Where we are subject to a legal obligation and need to use your personal data in order to comply with that obligation.

Disclosure of your information

We may share your personal data with trusted third‑party partners who support the operation of our business and the delivery of our products and services. These partners are carefully selected, held to strong data‑protection standards, and may only use your information for the specific tasks they perform on our behalf.
These include:

Service Providers

We may share your information with companies who help us fulfil our obligations to you, such as:
• warehouse and fulfilment partners responsible for preparing and shipping your order;
• payment service providers who process and verify card transactions;
• delivery and courier companies;
• IT providers who support our website, databases and systems;
• data‑analysis or search‑engine providers who help us improve and optimise our site.
These partners may require limited access to your information to perform their role, but they are not permitted to use your data for any other purpose.

Advertisers and Advertising Networks

We may share certain data with advertising partners to provide relevant, tailored advertising to you and others.
This may include online retargeting — for example, seeing KIT MILES adverts on other websites after visiting ours.
This type of advertising uses cookies and similar technologies. You can learn more about this in our Cookie Policy.
This processing may constitute profiling under UK GDPR. We rely on our legitimate interests in providing personalised content, and where required, on your consent for direct marketing activities.

Analytics Providers

We may share anonymised or aggregated data with analytics or search‑engine providers who assist us in improving our website and understanding visitor behaviour.

Marketing by Other Businesses

We do not share your personal data with other companies for their own marketing unless you have expressly asked us to do so.

Business Transfers

We may disclose your personal data in the following circumstances:
• if we sell or purchase any business or assets, we may share data with the prospective buyer or seller;
• if KIT MILES Ltd or substantially all of its assets are acquired by a third party, customer information may be transferred as part of that transaction.

Any such disclosure will be made securely and in accordance with applicable data‑protection law.

Legal Obligations and Security

We may share your personal data where required:

• to comply with a legal obligation;
• to enforce or apply our terms and other agreements;
• to protect our rights, property, or the safety of our customers or others;
• to support fraud‑prevention and credit‑risk‑reduction efforts.
This may include exchanging information with other companies or organisations for these purposes.

International Transfers

Some service providers may process data outside the UK. Where required, we use safeguards such as Standard Contractual Clauses or adequacy regulations in line with UK GDPR.
Opt-Out of direct marketing
“You can at any time tell us not to send you marketing communications (i) by email by clicking on the unsubscribe link within the marketing emails you receive from us or through your account if you have one and depending on where you are located; (ii) by SMS by following the “STOP” instructions provided with the message; (iii) by postal mail by following the instructions that may be included in a particular promotion; or (iv) by contacting our customer services team (who will then direct you to where you can unsubscribe). If you have registered with us, you may also opt out of receiving postal mail from us by logging into your account and amending your preferences.

Where We Store and Process Your Personal Data

The personal data we collect may be transferred to and stored in countries outside the UK. These countries may have different — and in some cases less stringent — data‑protection laws than those in the UK.

We may transfer your data in this way because some of our service providers or operational partners (for example, fulfilment specialists, technical support, or payment processors) are located outside the UK, or may process data in jurisdictions other than where it was originally collected. Staff in these locations may be involved in fulfilling your order, processing payments, or providing customer support.

When transferring personal data internationally, we take all reasonably necessary steps to ensure that appropriate safeguards are in place. This includes the use of approved data‑transfer mechanisms such as UK GDPR Standard Contractual Clauses, ensuring your data is protected and handled securely according to this Privacy Policy.
If you are located in the UK, you may contact us to request further details of the safeguards we apply to international data transfers.

Security and Passwords

We implement appropriate technical and organisational measures to protect your personal data. This includes protection of any transactional information you provide, such as payment card details, contact information, delivery addresses, and order history.

If you create an account with us, your account information (including your name, email address, contact details, and order history) will be stored securely. For security reasons, you must re‑enter your payment card details each time you place an order.

If you choose, or are provided with, a password to access parts of our website, you are responsible for keeping this password confidential. Please do not share your password with anyone.

Although we work hard to protect your data, transmission of information over the internet is not completely secure. Any data you send to our website is at your own risk. Once we receive your information, we use strict procedures and security features to prevent unauthorised access wherever possible.

Third‑Party Links

Our website may contain links to third‑party sites, including partners, stockists, or service providers. These websites operate independently from us and have their own privacy policies. We do not accept responsibility or liability for the content or practices of these external sites.

We recommend reviewing their privacy policies before providing any personal information.

Children’s Privacy

Our site is not intended for children under 16. We do not knowingly collect data from children.

Data Retention and Destruction

We retain your personal data only for as long as necessary to:

  • provide products and services to you,
  • comply with legal, accounting, and regulatory requirements, and
  • protect our business in the event of disputes or claims.

For example, we retain order information for the legally required period (typically six years for UK tax and accounting purposes). We may also keep records of communications, such as complaints or customer‑service interactions, for as long as needed to protect our rights.
Once data is no longer required, it is securely deleted or anonymised.

Your Rights

Under UK GDPR, you have several rights concerning your personal data, including:

  • The right to access the personal data we hold about you
  • The right to correct inaccurate or incomplete data
  • The right to request deletion of your data (“the right to be forgotten”)
  • The right to restrict or object to certain types of processing
  • The right to data portability (to receive a machine‑readable copy)
  • The right to withdraw consent where processing is based on your consent (e.g., marketing emails)

We will respond to any request to exercise your rights in accordance with applicable laws and subject to any relevant exemptions.
You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) if you believe your data has been handled unlawfully. However, we encourage you to contact us first so we can address your concerns directly.Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our operations, legal requirements, or best practice. Any updates will be posted on this page, and the “Last Updated” date will be revised accordingly.
We encourage you to review this page periodically to stay informed about how we protect your personal data.

Contact Us

For questions or requests: privacy@kitmiles.co.uk. Kit Miles Ltd, Company No. 08419612.