Privacy Policy

Last Updated: 08/09/2025

We are committed to protecting your privacy. This Privacy Policy outlines how your personal information is collected, used, and shared when you visit or make a purchase from our website (www.helloheartstring.co.uk).

1. Who We Are

This website is operated by Aimee Taylor, a sole trader in the United Kingdom. If you have any questions about this policy or how we handle your data, please contact us:

Email: helloheartstring@outlook.com

2. What Personal Data We Collect

When you visit or interact with our Site, we may collect the following types of personal data:

When You Browse the Site:

  • IP address

  • Device type

  • Browser type

  • Browsing activity

  • Referring website

When You Make a Purchase:

  • Full name

  • Billing and shipping address

  • Email address

  • Phone number

  • Payment information (processed securely via third-party providers — we do not store your full card details)

  • Personalised information relating to the order (e.g. guest lists)

When You Subscribe or Contact Us:

  • Email address

  • Any other personal information you provide voluntarily (e.g., via forms or emails)

3. How We Use Your Data

We use your data to:

  • Fulfil and manage your orders

  • Communicate with you (order updates, customer support)

  • Process payments securely

  • Improve our website and services

  • Send you marketing emails (only if you have opted in)

We will only use your data when we have a legal basis to do so, such as fulfilling a contract (e.g. order processing), your consent (e.g. marketing), or our legitimate interests (e.g. site improvement).

4. Sharing Your Information

We may share your personal data with third parties who help us run our business, including:

  • Squarespace (our website platform)

  • Payment processors (e.g. Stripe, PayPal)

  • Delivery partners (e.g. Royal Mail, Evri, UPS, DPD)

  • Marketing tools (e.g. email platforms like Mailchimp)

These third parties only have access to the data necessary to perform their functions and are required to protect your data.

We do not sell or rent your personal information to third parties.

5. Cookies

We use cookies and similar tracking technologies to enhance your experience on our site. Cookies help us understand website traffic and user behaviour. You can control cookies through your browser settings.

6. How Long We Keep Your Data

We retain your personal information only for as long as necessary to provide our services and comply with legal obligations. For example:

  • Order information: up to 5 years (for tax and accounting)

  • Marketing preferences: until you unsubscribe

7. Your Rights

Under the UK GDPR, you have rights regarding your personal data, including:

  • The right to access your data

  • The right to correct inaccurate data

  • The right to request deletion of your data

  • The right to object to or restrict processing

  • The right to data portability

  • The right to withdraw consent at any time

To exercise your rights, please contact us at helloheartstring@outlook.com.

If you are unhappy with how we handle your data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
https://ico.org.uk/

8. Third-Party Links

Our site may contain links to other websites such as Facebook and Instagram. We are not responsible for the privacy practices or content of those websites.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated “Last Updated” date.