Privacy Policy
1. Who We Are
Biomewise ("we", "us", "our") operates the website at biomewise.co and sells Postbiotic Gummies directly to consumers in the United Kingdom and internationally. Our registered address and data controller contact details are available at info@biomewise.co.
2. What Information We Collect
We collect personal data in the following circumstances:
When you place an order: name, billing and delivery address, email address, telephone number, and payment information. Payment card details are processed directly by our payment processor (Stripe) and are never stored on our servers.
When you create an account or subscribe to our newsletter: email address, name, and marketing preferences.
When you contact us: any information you choose to include in your message, including your name and email address.
Automatically when you visit our website: IP address, browser type, device type, pages visited, time spent on pages, and referring URLs, collected via cookies and analytics tools. Please see our Cookie Policy for full details.
3. How We Use Your Information
We use your personal data for the following purposes:
|
Purpose
|
Legal Basis
|
|
Processing and fulfilling your orders
|
Performance of a contract
|
|
Sending order confirmations and shipping updates
|
Performance of a contract
|
|
Responding to customer service enquiries
|
Legitimate interests
|
|
Sending marketing emails (if opted in)
|
Consent
|
|
Improving our website and products
|
Legitimate interests
|
|
Complying with legal obligations (e.g. tax records)
|
Legal obligation
|
|
Fraud prevention and security
|
Legitimate interests
|
4. How Long We Keep Your Data
We retain order records for seven years to comply with HMRC requirements. Marketing data is retained until you unsubscribe or withdraw consent. Customer service correspondence is retained for three years. You may request deletion of your data at any time, subject to our legal retention obligations.
5. Who We Share Your Data With
We do not sell your personal data. We share data only with trusted third-party service providers who process it on our behalf, including:
•Shopify — e-commerce platform and order management
•Stripe — payment processing
•Royal Mail / DPD / courier partners — order fulfilment and delivery
•Klaviyo / Mailchimp — email marketing (where applicable)
•Google Analytics / Meta Pixel — website analytics and advertising
•Zendesk / Gorgias — customer service (where applicable)
All processors are contractually bound to handle your data in accordance with UK GDPR.
6. International Transfers
Where your data is transferred outside the UK or EEA (for example, to US-based service providers), we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the UK Information Commissioner's Office (ICO).
7. Your Rights
Under UK GDPR, you have the right to:
•Access the personal data we hold about you
•Rectify inaccurate or incomplete data
•Erase your data ("right to be forgotten"), subject to legal retention requirements
•Restrict processing of your data in certain circumstances
•Data portability — receive your data in a structured, machine-readable format
•Object to processing based on legitimate interests or for direct marketing
•Withdraw consent at any time where processing is based on consent
To exercise any of these rights, please contact us at info@biomewise.co. We will respond within 30 days. If you are unsatisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.
8. Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or disclosure. Our website uses SSL/TLS encryption for all data transmission.
9. Changes to This Policy
We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page will reflect any changes. Continued use of our website following any update constitutes acceptance of the revised policy.
