Legal

Privacy Policy

Last updated: 1 March 2024

This privacy policy explains how Groomstory (“we,” “us,” or “our”) collects, uses, and protects personal data when you use our website (groomstory.com) or contact us in connection with our grooming salon at 3 Paddington Village, Grove St, Liverpool L7 3FA. We are committed to processing personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Data controller

The data controller is Groomstory, 3 Paddington Village, Grove St, Liverpool L7 3FA, United Kingdom. Contact: [email protected] or +44 151 245 6654.

2. What data we collect

Contact and booking forms

When you submit a contact or booking request, we collect your name, email address, optional phone number, and any information you include in your message (such as pet breed, coat condition notes, or service preferences). We collect only what is needed to respond to and process your request.

Newsletter sign-up

If you subscribe to grooming guide notifications, we collect your email address. You may unsubscribe at any time using the link in any email we send.

Analytics (with consent only)

We use privacy-respecting analytics to understand how guides are read and which content is most useful. Analytics are only activated if you accept cookies via the consent banner. We do not use Google Analytics or other third-party tracking services by default. No personal identifying information is collected in analytics.

Cookies

See our cookie policy for full details of cookies used.

3. Legal basis for processing

  • Contract performance (Article 6(1)(b) UK GDPR): processing booking requests and enquiries.
  • Consent (Article 6(1)(a) UK GDPR): newsletter subscriptions and analytics cookies.
  • Legitimate interests (Article 6(1)(f) UK GDPR): essential site function and fraud prevention (captcha).

4. How we use your data

We use personal data to respond to enquiries, process grooming bookings, send guide notifications you have subscribed to, and maintain basic website function. We do not use your data for advertising, profiling, or automated decision-making. We do not sell or share your personal data with third parties for commercial purposes.

5. Data retention

Contact and booking form submissions are retained for up to 24 months from the date of submission, then deleted. Newsletter subscriptions are retained until you unsubscribe. Analytics data, where collected under consent, is retained in aggregated form only and contains no personal identifiers.

6. Your rights

Under UK GDPR, you have the right to access, rectify, erase, restrict, or object to the processing of your personal data. You also have the right to data portability. To exercise these rights, contact us at [email protected]. We will respond within one calendar month. You have the right to lodge a complaint with the Information Commissioner’s Office (ICO) at ico.org.uk.

7. Data security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, or disclosure. All data submitted via our forms is transmitted over HTTPS.

8. Changes to this policy

We may update this policy from time to time. The date at the top of this page reflects the most recent revision. Continued use of the site after changes constitutes acceptance of the revised policy.