toxicGARB is a trading name of Etail Ventures Group Limited (referred to using “We”, “Us”, “Our” or the “Company”) is a company registered in England and Wales (Company registration number: 10854807) where toxicGARB is an online retailer and services company.

When you shop with us or use our services, you trust us with your data. We’re a company that puts you, our customer, first, respecting you as an individual but also as a member of our community. We listen to our customers to understand your expectations and make sure these are reflected in our business decisions. We’re committed to maintaining your trust and confidence. In this Privacy Policy, we’ve provided details on when and why we collect your personal information, how we use it, the very limited conditions under which we may disclose it to others (where direct marketing is concerned only with your explicit permission) and how we keep it secure.

When you visit the Site, we automatically collect certain information about your device, including information about your web browser, IP address, time zone, and some of the cookies that are installed on your device. Additionally, as you browse the Site, we collect information about the individual web pages or products that you view, what websites or search terms referred you to the Site, and information about how you interact with the Site. We refer to this automatically-collected information as “Device Information.”

We collect Device Information using the following technologies:

“Cookies” are data files that are placed on your device or computer and often include an anonymous unique identifier. For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org.

“Log files” track actions occurring on the Site, and collect data including your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.

“Web beacons,” “tags,” and “pixels” are electronic files used to record information about how you browse the Site.

Additionally when you make a purchase or attempt to make a purchase through the Site, we collect certain information from you, including your name, billing address, shipping address, payment information (including credit card numbers), email address, and phone number. We refer to this information as “Order Information.”

When we talk about “Personal Information” in this Privacy Policy, we are talking both about Device Information and Order Information.

We use the Order Information that we collect generally to fulfill any orders placed through the Site (including processing your payment information, arranging for shipping, and providing you with invoices and/or order confirmations). Additionally, we use this Order Information to:

Communicate with you;

Screen our orders for potential risk or fraud; and

When in line with the preferences you have shared with us, provide you with information or advertising relating to our products or services.

We use the Device Information that we collect to help us screen for potential risk and fraud (in particular, your IP address), and more generally to improve and optimize our Site (for example, by generating analytics about how our customers browse and interact with the Site, and to assess the success of our marketing and advertising campaigns).

We share personal information within our group of companies, Etail Ventures Group. Members of the Etail Ventures Group that receive this information are not authorised to use or disclose the information except as provided in this privacy policy.

Our service providers
We work with partners, suppliers, insurers and agencies so they can process your personal information on our behalf and only where they meet our standards on the processing of data and security. We only share information that helps them provide their services to us or to help them provide their services to you. For example, some of our service providers place advertising for us online, about our products and services and those of our retail partners, suppliers and third parties. As a result, where you have indicated you are happy to receive marketing from us, you might see online advertising that we have placed on the web sites you visit, or the interactive services you use.

Where you have asked us to deliver your purchases either to the store (‘Click & Collect) or any other place, we will also share your address and contact details with our delivery partners like DPD, Royal Mail etc. to ensure a successful delivery. These partners may contact you to provide periodic updates on your delivery

Other organisations and individuals
We may transfer your personal information to other organisations in certain scenarios. For example:

When you apply for credit e.g. Klarna, we’ll pass on your information to trusted third party partners responsible for these products. Please note we are not the lender in respect of any of the credit facilities offered by individual payment service providers.

If required to by law, under any code of practice by which we are bound or we’re asked to do so by a public or regulatory authority such as the Police or the Department for Work and Pensions

Information may also be shared with fraud prevention agencies to prevent fraudulent claims

If we need to do so in order to exercise or protect our legal rights, users, systems and services

In response to requests from individuals (or their representatives) seeking to protect their legal rights or the rights of others.

Companies that enable us to collect your reviews and comments, both online and offline.

We may use trusted third parties to carry out certain activities on our behalf and may share your personal data with them for the purposes of: processing and sorting data, monitoring how customers use our site, issuing our emails for us and collecting product/customer feedback from you via surveys.

Companies which run our contact centres because they need your personal information to identify and contact you.

Third party vendors who help us to manage and maintain the Group IT infrastructure.

Companies that provide insights and analytics services for us so we can stock the right products, send the right marketing campaigns and understand our business and customers better.

Finally, we may also share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.

If you are a resident of the United Kingdom, you have the right to access personal information we hold about you and to ask that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us through the contact information below.

We use your information and data in order to process and fulfil orders/contracts we might have with you (for example if you make an order through the Site), or to pursue our legitimate business interests as listed above. Additionally, please note that because we use global servers and CDN’s (content delivery networks) your information may be transferred outside of the United Kingdom to locations including Europe, Canada and the United States.

From time to time we may transfer your personal information to our suppliers, service providers and other company offices based outside of the European Economic Area (EEA) for the purposes described in this privacy policy. If we do this your personal information will continue to be subject to one or more appropriate safeguards set out in the law.

If we do transfer information to our agents or advisers outside of the EEA, we will make sure that it is protected in the same way as if it was being used in the EEA.

We sometimes use systems to make automated decisions based on your personal information or the information we are allowed to collect from others about you or your business (for example where we perform checks when you make an online payment). This helps us to make sure our decisions are quick, fair, efficient and correct, based on what we know. These automated decisions can affect the products, services or features we may offer you now or in the future, or the price that we charge you for them.

Your rights
You have rights over automated decisions.

Under certain circumstances, you can ask that we do not make our decision based on the automated score alone

You can object to an automated decision, and ask that a person reviews it.

If you want to know more about these rights, please contact us.

We will keep your personal information for as long as you’re a customer. If you haven’t made a purchase or engaged with us for 3 years or more, then we’ll remove you from our marketing mailing lists. After you stop being a customer, we may keep your data for up to 7 years after the last time you interacted with us. This could include one of the ways specified in ‘How we use your personal information’ and for one of these reasons:

• To respond to any questions or complaints
• To show that we treated you fairly
• To maintain records according to rules that applies to us
• To establish, bring or defend legal claims.

We may keep your data for longer than 7 years if we cannot delete it for legal, regulatory or technical reasons. We may also keep it in order to help support product recalls or safety notices. If we do, we will make sure that your privacy is protected and only use it for those purposes.

We do not retain personal information in an identifiable format for longer than is necessary.

Access to Information held about you
You have the right to request what personal information we hold about you. This is sometimes called a ‘Data Subject Access Request’. If we agree that we are obliged to provide personal information to you (or someone else on your behalf), we’ll provide it to you free of charge. Before providing personal information to you or another person on your behalf, we may ask for proof of identity and sufficient information about your interactions with us that we can locate your personal information. Except in rare cases, we’ll respond to you within 30 days after we’ve received this information or, where no such information is required, after we’ve received your request.

If any of the personal information we hold about you is inaccurate or out of date, you may ask us to correct it.

In certain circumstances you have the right to request a copy of your personal information from us or to have that information passed to an organisation of your choice in a format that can be easily re-used.

Right to stop or limit our processing of your data
You have the right to object to us processing your personal information if we’re not entitled to use it any more, to have your information deleted if we are keeping it too long or have its processing restricted in certain circumstances.

Where we rely on our legitimate interests, as set out under ‘How we use your personal information’, you may object to us using it for these purposes. If we agree that your objection is justified in accordance with your rights under data protection laws, we’ll permanently stop using your data for those purposes. Otherwise we’ll provide you with our justification as to why we need to continue using your data.

You can ask us to restrict the use of your personal information if:

• It isn’t accurate.
• It has been used unlawfully but you don’t want us to delete it.
• It’s not relevant any more, but you want us to keep it for use in legal claims.
• You’ve already asked us to stop using your data but you’re waiting for us to tell you if we’re allowed to keep on using it.

Please note that we may be required by law to retain certain information. Before we are able to provide you with any information or correct any inaccuracies, we may ask you provide other details to help us respond to your request.

If you would like to exercise these rights, please contact us.

Please make sure you provide one proof of identity (we suggest either a utility bill in your name or your driver’s licence, but other similar formal documents may be accepted, please note the documents cannot be older than 6 months) as part of your request.

We won’t send you marketing messages if you tell us not to.

• You can click onto the “unsubscribe” link in any communication that we send to you by email which will automatically unsubscribe you from that type of communication. Each “unsubscribe” link only relates to that specific type of communication. Please also note that you may continue to receive Service communications in relation to the product and services we have sold to you
• Alternatively, you can unsubscribe by submitting your request here. Please note that it may take up to 28 days to process your request.
• In relation to our App(s), you can manage your preferences in the App(s). For Mobile Apps, your consent for marketing notifications is collected individually for each device that you use to access our application from. So if you access the App from multiple devices, you will have to independently manage your preferences for each device which is by default switched off
• Changing your preferences through the Mobile App(s) will not change your marketing preferences for other channels of marketing like SMS, Email etc. To manage those preferences, you can use the ‘Unsubscribe’ link from that type of communication.

Our websites (which includes this Privacy Policy) contain links to other websites run by other organisations which we do not control. This policy does not apply to those other websites and Apps‚ so we encourage you to read their privacy statements.

We use so-called social plugins (buttons) of social networks such as Facebook, TikTok, You Tube, Instagram and Twitter.

After activation of a button, the social network can retrieve data, independently of whether you interact with the button or not. If you are logged on to a social network, the network can assign your visit to the website to your user account. A social network cannot assign a visit to websites operated by our other group companies unless you activate the respective button there as well.

If you’re a member of a social network and don’t want that network to combine data retrieved from your visit to our websites with data they hold on you, you must log out from the social network concerned before activating the buttons.

We may update this privacy policy from time to time in order to reflect, for example, changes to our practices or for other operational, legal or regulatory reasons.

The date of the current policy is shown at the top of this page.