Privacy Policy
Effective Date: 18/12/2024
At Yoga with Jaime LTD (the parent company to Basic Space SW Ltd and Basic Space CB Ltd) ("we", "our", "us"), we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website wwww.basicspacelondon.com (the "Site") or use our services (the "Services"). By using our Site and Services, you consent to the practices described in this policy.
1. Information We Collect
We collect two types of information from users: personal information and non-personal information.
Personal Information: This includes information that can be used to identify you, such as:
Name
Email address
Phone number
Address
Payment information
Any other information you provide to us directly
Non-Personal Information: This includes data that cannot be used to identify you personally, such as:
IP address
Browser type
Device type
Pages visited on our site
Time and date of access
Geolocation data (if applicable)
2. How We Collect Information
We may collect information from you in the following ways:
Information you provide directly: When you fill out forms, create an account, make a purchase, or communicate with us, we collect the information you provide.
Cookies and tracking technologies: We use cookies, web beacons, and other tracking technologies to collect data on your usage of our website and to enhance your experience. You can manage cookie preferences through your browser settings.
3. How We Use Your Information
We use the information we collect for various purposes, including:
To provide and improve our products and services
To process transactions and manage billing
To communicate with you, including sending updates, newsletters, and promotional content (if you opt-in)
To personalize your experience on our Site
To ensure the security and integrity of our Site and Services
To comply with legal obligations and resolve disputes
4. How We Share Your Information
We may share your personal information in the following ways:
Service providers: We may share your information with third-party vendors and service providers who help us run our business (e.g., payment processors)
Legal requirements: We may disclose your information if required by law, regulation, or legal process, such as in response to a subpoena or court order.
Business transfers: If we are involved in a merger, acquisition, or sale of assets, your personal information may be transferred as part of that transaction.
5. Data Security
We implement reasonable administrative, technical, and physical security measures to protect your personal information from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality. We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so. However, please note that no method of transmission over the internet or method of electronic storage is completely secure, and we cannot guarantee the absolute security of your data.
6. Your Rights and Choices
Depending on your location, you may have the following rights regarding your personal information:
Access: You have the right to request access to the personal information we hold about you.
Correction: You can request correction of inaccurate or incomplete personal information.
Deletion: You can request that we delete your personal information, subject to legal exceptions.
Opt-Out of Marketing: If you no longer wish to receive promotional emails, you can unsubscribe by following the instructions in the email or by contacting us directly.
Data Portability: You can request a copy of your personal information in a structured, commonly used, and machine-readable format.
To exercise your rights, please contact us at [Contact Information].
7. UK GDPR Compliance (For UK Residents)
If you are a resident of the United Kingdom (UK), you have specific rights and protections under the UK General Data Protection Regulation (UK GDPR). Below, we explain how we comply with the UK GDPR and how you can exercise your rights:
Lawful Basis for Processing: Under the UK GDPR, we process your personal data based on the following lawful bases:
Consent: We process your data when you have given us explicit consent to do so, such as subscribing to our newsletter.
Contractual Necessity: We process your data to fulfill a contract with you, such as processing orders or providing customer support.
Legal Obligation: We may process your data to comply with legal requirements (e.g., tax reporting).
Legitimate Interests: We may process your data based on legitimate interests, such as improving our products, services, and marketing efforts, unless your rights override those interests.
Your Rights under the UK GDPR: As a UK resident, you have the following rights regarding your personal data:
Right to Access: You have the right to request a copy of your personal data.
Right to Rectification: You can ask us to correct inaccurate or incomplete data.
Right to Erasure ("Right to be Forgotten"): You can request the deletion of your personal data in certain circumstances.
Right to Restrict Processing: You can request that we limit the processing of your personal data under certain conditions.
Right to Data Portability: You can request that we transfer your personal data to another provider in a structured, commonly used, and machine-readable format.
Right to Object: You can object to the processing of your data based on legitimate interests or for direct marketing purposes.
Right to Withdraw Consent: If we are processing your data based on consent, you can withdraw that consent at any time.
Data Protection Officer (DPO): If you have any concerns about how we process your personal data or would like to exercise your rights, please contact our Data Protection Officer at [DPO Email] or [DPO Contact Information].
Complaints: If you believe that we have not handled your data in compliance with the UK GDPR, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s data protection authority. You can contact them via their website at [ICO Website] or by phone at [ICO Phone Number].
8. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to enhance your experience on our Site. Cookies are small data files placed on your device to store certain information. You can control the use of cookies through your browser settings, but disabling cookies may affect certain features of our Site.
Types of Cookies We Use:
Strictly Necessary Cookies: These cookies are essential for the operation of our Site and cannot be turned off.
Performance Cookies: These cookies collect information about how visitors use our Site, such as which pages are visited most frequently.
Functional Cookies: These cookies enable our Site to remember your preferences and provide enhanced features.
Targeting/Advertising Cookies: These cookies are used to deliver advertisements that are more relevant to you based on your interests.
Cookie Consent: When you first visit our Site, you will be presented with a cookie banner that requests your consent to use cookies for non-essential purposes (e.g., performance, targeting). You can manage your cookie preferences at any time through your browser settings.
For more information about how we use cookies, please refer to our [Cookies Policy].
9. International Data Transfers
We may transfer your personal data to countries outside the United Kingdom, including to countries that are not considered to provide an adequate level of data protection under UK law.
Safeguards for International Transfers: Where we transfer your personal data internationally, we will ensure that appropriate safeguards are in place to protect your data, such as using Standard Contractual Clauses or ensuring that the recipient country is subject to an adequacy decision from the UK government.
If you would like more information on the safeguards we have in place for international transfers, please contact us at [Contact Information].
10. Automated Decision-Making and Profiling
We do not engage in automated decision-making that significantly affects you, such as decisions based solely on automated processing that produce legal effects or similarly significant consequences. If we ever use automated decision-making or profiling, we will inform you and provide you with information about the logic involved, the significance of such processing, and its potential consequences for you.
11. Data Retention
We retain personal data for no longer than necessary for the purposes outlined in this policy. The retention period depends on the type of data and the purpose for which it was collected. For example:
Transaction data: Retained for the duration of our contractual relationship and for compliance with legal obligations (e.g., tax records).
Marketing data: Retained until you withdraw your consent or opt-out of communications.
Once the retention period has expired, we will securely delete or anonymize your personal data.
12. Third-Party Websites
Our Site may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of those sites before providing any personal information.
13. Children’s Privacy
Our Site and Services are not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have inadvertently collected personal information from a child under 13, we will take steps to delete the information as soon as