🔐 GDPR & Data Privacy Policy - Protecting Your Story

We take your privacy as seriously as we take the care of our books. This policy explains how we collect, use, store, and protect your personal data in line with UK GDPR and the Data Protection Act 2018.

📚 What Information We Collect

We only collect the information we genuinely need to run the shop smoothly, such as:

  • Name and contact details (email, postal address)

  • Order information (what you bought, when, and where it’s going)

  • Payment details (processed securely by our payment provider - we never see your full card information)

  • Messages or enquiries you send us

  • Website usage data (via cookies, if applicable)

We never collect more than we need, and we never sell your data.

🧭 How We Use Your Information

We use your data to:

  • Process and deliver your orders

  • Contact you about your purchase if needed

  • Respond to questions or customer service requests

  • Improve our website and services

  • Send optional newsletters or updates (only if you’ve opted in)

Everything we do with your data has a clear purpose - no unnecessary chapters.

🗝️ Legal Basis for Processing

We process your data under the following lawful bases:

  • Contract - to fulfil your order

  • Consent -for newsletters or optional communications

  • Legitimate interests - to improve our services or prevent fraud

  • Legal obligation - for tax or accounting requirements

🏰 How We Store & Protect Your Data

Your data is stored securely using reputable, GDPR‑compliant systems.
We use appropriate technical and organisational measures to keep your information safe - think of it as a sturdy bookshelf with a lock.

We only keep your data for as long as necessary for the purpose it was collected, after which it is securely deleted or anonymised.

🤝 Sharing Your Data

We only share your information with trusted third parties who help us run the shop, such as:

  • Royal Mail or other couriers

  • Payment processors

  • Website hosting or analytics providers

These partners only receive the information needed to perform their service and must keep it secure.

We never sell or trade your data. Ever.

🧹 Your Rights Under UK GDPR

You have the right to:

  • Access the personal data we hold about you

  • Request corrections to inaccurate information

  • Ask for your data to be deleted (“the right to be forgotten”)

  • Restrict or object to certain types of processing

  • Request a copy of your data in a portable format

  • Withdraw consent at any time (for things like newsletters)

Just contact us and we’ll help — no complicated quests required.

🍪 Cookies (If Applicable)

If our website uses cookies, they’re only there to make things run smoothly - like remembering what’s in your basket. You can manage or disable cookies through your browser settings.

📬 Contact Us

If you have questions about your data or want to exercise your rights, you can reach us at:

SecondSpellBooks@gmail.com

We’re always happy to help and we aim to respond within 30 days.

💛 Our Promise

Your trust matters to us. We handle your data with the same care we give to every pre‑loved book on our shelves - respectfully, responsibly, and with a touch of magic.