1. Who We Are

Electrily Ltd (“Electrily”, “we”, “us”, or “our”) is the data controller responsible for your personal data. We are a company registered in England and Wales, operating exclusively online at www.electrily.co.uk.

• Registered company name: Electrily Ltd
• Registered address: _____
• Email: contact@electrily.co.uk
• Website: www.electrily.co.uk

As data controller, we determine how and why your personal data is processed. If you have any questions about this Privacy Policy or how we handle your data, please contact us at contact@electrily.co.uk.

2. Data We Collect About You

Depending on how you interact with our Website, we may collect and process the following categories of personal data:

Identity and Contact Data

• Full name
• Email address
• Delivery address

Transaction Data

• Details of products you have purchased from us
• Order history and value
• Payment method type (we do not store full card details — these are handled securely by our payment processors)

Technical Data

• IP address
• Browser type and version
• Device type and operating system
• Pages visited and time spent on our Website
• Referring URLs (how you arrived at our Website)

Communications Data

• Messages and enquiries sent to us via email or live chat
• Customer service correspondence

Marketing and Preferences Data

• Your preferences regarding receiving marketing communications from us
• Engagement with our marketing emails (open rates, click activity)

We do not collect any special category data (such as health information, racial or ethnic origin, or political opinions), nor do we knowingly collect data from anyone under the age of 18.

3. How We Collect Your Data

We collect personal data through the following means:

Directly from You

• When you place an order on our Website
• When you create an account or register with us
• When you contact us via email or live chat (LiveChat)
• When you sign up to receive marketing emails
• When you complete any forms on our Website

Automatically

• Via cookies and similar tracking technologies when you browse our Website (see Section 7)
• Via Google Analytics, which collects anonymised data about how visitors use our Website
• Via advertising pixels from Meta (Facebook and Instagram), TikTok, and Google, which track interactions with our ads

From Third Parties

• From payment processors, who confirm the status of your payment
• From our drop-shipping suppliers, who may confirm dispatch or delivery details
• From advertising platforms (Meta, TikTok, Google), which may share aggregated audience data with us for advertising purposes

4. How We Use Your Data

We use your personal data for the following purposes:

To Fulfil Your Order

• Processing and confirming your purchase
• Passing your name and delivery address to our suppliers for dispatch
• Sending you order confirmation and dispatch notifications
• Handling returns, refunds, and warranty enquiries

To Manage Our Relationship with You

• Responding to your enquiries via email or LiveChat
• Providing customer support
• Notifying you of changes to our Terms, this Privacy Policy, or our products

To Improve Our Website and Services

• Analysing how visitors use our Website via Google Analytics
• Understanding which products and pages are most popular
• Improving the user experience and site performance

For Marketing Purposes

• Sending you promotional emails via Klaviyo, where you have consented or where we have a legitimate interest based on a prior purchase
• Delivering targeted advertising on Facebook, Instagram, TikTok, and Google using pixel tracking data
• Creating custom and lookalike audiences for advertising purposes on social media platforms

For Legal and Compliance Purposes

• Meeting our legal obligations under UK law
• Fraud detection and prevention
• Keeping financial and tax records as required

5. Legal Basis for Processing

Under UK GDPR, we are required to have a lawful basis for processing your personal data. We rely on the following bases:

• Contract: Processing is necessary to fulfil the contract we have with you when you place an order (e.g. processing payment, dispatching goods, handling returns).
• Legal obligation: Processing is necessary to comply with our legal obligations (e.g. maintaining financial records for tax purposes).
• Legitimate interests: We process certain data where it is in our legitimate business interests to do so, provided those interests are not overridden by your rights. This includes fraud prevention, improving our Website, and direct marketing to existing customers.
• Consent: Where we rely on your consent (e.g. sending marketing emails to new subscribers, or placing non-essential cookies), we will ask for your explicit consent. You may withdraw consent at any time without affecting the lawfulness of processing carried out prior to withdrawal.

6. Sharing Your Data

We do not sell your personal data. We may share your data with the following categories of third parties, strictly for the purposes described in this policy:

Drop-Shipping Suppliers

We share your name and delivery address with our approved third-party suppliers solely to enable them to dispatch your order directly to you. Our suppliers are contractually required to handle your data securely and use it only for fulfilment purposes.

Payment Processors

Your payment details are processed securely by our third-party payment providers (such as Stripe, PayPal, or others shown at checkout). We do not store or have access to your full card details.

Delivery and Courier Services

Where relevant, courier or delivery companies may receive your name and address to facilitate delivery of your order.

Marketing and Analytics Platforms

• Klaviyo: We use Klaviyo to manage and send marketing emails. Your email address and purchase history may be shared with Klaviyo for this purpose.
• Google Analytics: We use Google Analytics to analyse Website traffic. Data collected is anonymised and aggregated.
• Meta (Facebook & Instagram): We use the Meta Pixel to track conversions and deliver targeted advertising. Meta may receive data about your interactions with our Website.
• TikTok: We use the TikTok Pixel to measure ad performance and deliver targeted content. TikTok may receive data about your interactions with our Website.
• Google Ads: We use Google’s advertising tracking to measure campaign performance and deliver relevant ads across Google’s network.

LiveChat

If you use our live chat feature, your messages and any personal data you share during the conversation will be processed by LiveChat Inc. on our behalf.

Legal and Regulatory Authorities

We may disclose your data to law enforcement, regulatory bodies, or other authorities where required by law or to protect our legal rights.

7. Cookies and Tracking Technologies

Our Website uses cookies and similar technologies to improve your experience, analyse usage, and deliver relevant advertising. A cookie is a small text file placed on your device when you visit a website.

Types of Cookies We Use

• Essential cookies: Necessary for the Website to function correctly (e.g. shopping basket, login sessions). These cannot be disabled.
• Analytics cookies: Used by Google Analytics to collect anonymised data about how visitors use our Website, helping us improve performance and content.
• Marketing and advertising cookies: Placed by Meta (Facebook/Instagram), TikTok, and Google to track your interactions with our ads and enable retargeting. These cookies may track you across other websites.
• Functional cookies: Used by tools such as LiveChat to remember your preferences and deliver a better experience.

Managing Your Cookie Preferences

When you first visit our Website, you will be asked to consent to non-essential cookies. You can update your preferences at any time via our cookie banner or through your browser settings. Please note that disabling certain cookies may affect the functionality of our Website.

You can also opt out of interest-based advertising directly with the platforms:

• Google: adssettings.google.com
• Meta (Facebook/Instagram): Your Ad Preferences in your Facebook account settings
• TikTok: TikTok Ads Settings in your TikTok account

8. Marketing Communications

We may send you marketing emails about our products, promotions, and offers via Klaviyo. We will only do this where:

• You have given your explicit consent to receive marketing from us; or
• You have previously purchased from us and we are marketing similar products (soft opt-in under PECR).

Every marketing email we send will include a clear and easy way to unsubscribe. You can also opt out at any time by emailing contact@electrily.co.uk with the subject line “Unsubscribe”.

Opting out of marketing emails will not affect transactional emails related to your orders (e.g. order confirmation, dispatch notifications), which we must send to fulfil our contract with you.

9. Data Retention

We will only retain your personal data for as long as is necessary for the purposes set out in this policy, or as required by law. Our general retention periods are as follows:

• Order and transaction data: Retained for 7 years to comply with HMRC financial record-keeping requirements.
• Customer account data: Retained for as long as your account is active, plus 2 years after your last interaction with us.
• Marketing data: Retained until you unsubscribe or withdraw consent, after which we will suppress your details rather than delete them to ensure we do not contact you again.
• Live chat transcripts: Retained for up to 12 months for customer service purposes.
• Analytics data: Google Analytics data is retained for 26 months by default.

When your data is no longer required, it will be securely deleted or anonymised.

10. International Data Transfers

Our Website and operations are based in the United Kingdom. However, some of the third-party platforms we use (including Meta, TikTok, Google, Klaviyo, and LiveChat) are based outside the UK and may process your data in countries outside the UK and European Economic Area (EEA), including the United States.

Where your data is transferred outside the UK, we ensure appropriate safeguards are in place, including:

• Transfers to countries with an adequacy decision from the UK Government;
• Use of UK International Data Transfer Agreements (IDTAs) or Standard Contractual Clauses (SCCs) approved for use with UK transfers;
• Reliance on the provider’s adherence to recognised data protection frameworks.

You can find more information about how each third-party platform handles international transfers in their respective privacy policies.

11. Your Rights

Under UK GDPR, you have the following rights in relation to your personal data. You can exercise any of these rights by contacting us at contact@electrily.co.uk. We will respond within one calendar month.

• Right of access: You have the right to request a copy of the personal data we hold about you (known as a Subject Access Request).
• Right to rectification: You have the right to ask us to correct any inaccurate or incomplete personal data we hold about you.
• Right to erasure: You have the right to request that we delete your personal data where there is no compelling reason for us to continue processing it.
• Right to restriction of processing: You have the right to ask us to restrict how we process your data in certain circumstances.
• Right to data portability: You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transfer it to another controller.
• Right to object: You have the right to object to processing based on legitimate interests or for direct marketing purposes. We will stop processing unless we can demonstrate compelling legitimate grounds.
• Rights related to automated decision-making: You have the right not to be subject to decisions made solely by automated means that produce significant effects on you. We do not currently carry out such processing.
• Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time. This does not affect the lawfulness of processing before withdrawal.

We will not charge a fee for handling your request unless it is manifestly unfounded or excessive. In such cases, we may charge a reasonable fee or refuse the request.

12. Data Security

We take the security of your personal data seriously and have implemented appropriate technical and organisational measures to protect it against unauthorised access, loss, alteration, or disclosure. These measures include:

• SSL encryption on our Website (HTTPS);
• Secure, encrypted payment processing via third-party providers;
• Access controls limiting who within our organisation can access personal data;
• Regular review of our data handling practices.

While we take all reasonable precautions, no method of transmission over the internet is entirely secure. In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify the ICO within 72 hours and inform affected individuals where required.

13. Third-Party Links

Our Website may contain links to third-party websites, social media platforms, or other services. This Privacy Policy applies only to our Website. We are not responsible for the privacy practices of any third-party sites and encourage you to read their privacy policies before sharing any personal data with them.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. Any changes will be posted on this page with an updated “Last Updated” date at the top.

We encourage you to review this policy periodically. Where changes are significant, we may notify you by email or via a notice on our Website.

15. Contact Us and How to Complain

If you have any questions about this Privacy Policy, wish to exercise any of your rights, or have a concern about how we handle your data, please contact us:

• Email: contact@electrily.co.uk
• Website: www.electrily.co.uk

We aim to respond to all data-related requests within one calendar month as required by UK GDPR.

Right to Complain to the ICO

If you are not satisfied with how we have handled your personal data or your request, you have the right to lodge a complaint with the UK’s data protection authority:

• Information Commissioner’s Office (ICO)
• Website: www.ico.org.uk
• Helpline: 0303 123 1113

We would, however, appreciate the opportunity to address your concerns before you approach the ICO, so please contact us in the first instance.