Privacy policy.

Retail Parlour

Last updated: 4/12/25

Retail Parlour (“we”, “us”, “our”) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your information when you visit www.retailparlour.com, interact with our content, download resources, sign up for events, or work with us as a consultancy or coaching client.

1. Who We Are

Retail Parlour is the data controller for the personal data we process.

Retail Parlour

86-90 Paul Street

London EC2A 4NE

Email: info@retailparlour.com

2. The Data We Collect

2.1 Information you provide directly

Name

Email address

Phone number (if provided)

Company name, size and sector

Details about your enquiry or project

Workshop, sprint, or event registration details

Newsletter sign-up details

Survey responses or feedback

Payment information (via Stripe – we do not store card details)

2.2 Information collected automatically

Through cookies and analytics tools we may collect:

IP address

Browser type and device type

Pages viewed, time on site, and navigation pathways

Interactions with our emails or website

Cookie preferences

2.3 Information from third parties

Depending on how you interact with us, we may receive data from:

MailerLite (email marketing & automations)

Stripe (secure payment processing)

Google Analytics (website analytics)

Social media platforms (e.g., LinkedIn or Meta for lead forms or ads)

We may work with carefully selected subcontractors who support delivery of our services. They will only receive the minimum necessary information.

3. How We Use Your Personal Data

We process your personal data for the following purposes, relying on the lawful bases set out in UK GDPR:

3.1 To deliver our services

Responding to enquiries

Delivering consultancy, coaching, workshops, and audits

Sending service-related updates or confirmations

Legal basis: Contract or legitimate interests

3.2 To manage your payments

Processing transactions through Stripe

Legal basis: Contract and legal obligation

3.3 For marketing and communications

Sending newsletters, event invitations, and resources through MailerLite

Delivering lead magnets or free resources

Legal basis: Consent or legitimate interests (for existing clients – soft opt-in under PECR)

You can unsubscribe at any time.

3.4 To improve our website and user experience

Analysing site performance via Google Analytics

Understanding what content users engage with

Legal basis: Legitimate interests

3.5 For advertising and measurement

We may use tools such as the Meta Pixel or LinkedIn Insights to run ads, measure effectiveness and run retargeting campaigns.

Legal basis: Consent (via cookie banner)

3.6 To comply with legal obligations

Financial record keeping

Responding to regulatory requests

Legal basis: Legal obligation

4. Cookies & Tracking Technologies

We use essential, functional, analytics, and (with consent) advertising cookies.

These may include:

Google Analytics cookies

MailerLite behavioural cookies (e.g., email open/click tracking)

Meta Pixel (if enabled in future)

Site functionality cookies

You can manage cookie preferences via our cookie banner or through your browser settings.

5. Sharing Your Data

We only share your data when necessary for the operation of our business or when legally required.

Your data may be shared with:

MailerLite (email management)

Stripe (payments)

Google Analytics (site analytics)

IT and website hosting providers

Professional advisors such as accountants

Potential future subcontractors who support delivery of services (under binding confidentiality agreements)

We never sell your personal data.

6. International Transfers

Some of our service providers (e.g., MailerLite, Stripe, Google) may store or process data outside the UK.

Where this happens, data is protected through approved safeguards such as:

Standard Contractual Clauses (SCCs)

International Data Transfer Agreements (IDTAs)

Provider-specific GDPR-compliant frameworks

7. Data Retention

We retain your data only as long as necessary:

Client and financial records: 7 years

Enquiry data: 24 months

Newsletter subscribers: until you unsubscribe

Analytics data: typically 14–26 months

Contractual project files: up to 7 years

After these periods, data is securely deleted or anonymised.

8. Your Rights

Under UK GDPR, you have the right to:

Access your personal data

Request corrections

Request deletion (“right to be forgotten”)

Restrict or object to processing

Withdraw consent at any time

Request data portability

You can exercise your rights by contacting us at:

info@retailparlour.com

You may also complain to the Information Commissioner’s Office (ICO) if you believe your data has been handled improperly.

9. Security Measures

We take privacy seriously and implement a range of appropriate measures, including:

Secure website (SSL/TLS)

Restricted access to internal systems

Encrypted devices

Password protection and two-factor authentication

Third-party providers with GDPR-compliant practices

10. External Links

Our website may include links to third-party websites. We are not responsible for their content or privacy practices.

11. Children’s Data

Our services are not intended for individuals under 18. We do not knowingly collect children’s data.

12. Changes to This Policy

We may update this policy occasionally. The updated version will be posted here with a new “Last updated” date.

13. Contact Us

If you have any questions about how we use your data or this Privacy Policy, please contact:

Retail Parlour

Email: info@retailparlour.com

Address: 86-90 Paul Street

London EC2A 4NE