Privacy Policy

Here at sunshima™ we are committed to protecting and respecting the privacy of your personal data. This Privacy Policy describes how your personal information is collected, used, and shared when you visit or make a purchase from www.sunshima.com (the “Website”). 

Who is sunshima

sunshima is a wellbeing, relaxation and mindfulness brand owned by Fitnessory Ltd, an online fitness accessories retail company. We design, source, market and sell fitness, health and wellbeing products in the UK and Europe, aimed at maintaining a healthy and balanced lifestyle.

Fitnessory Ltd (referred to as “sunshima”, “we”, “us” and “our” in this privacy notice) is the controller and responsible for your personal data collected through the Website.

If you have any questions in relation to this privacy notice, please contact us using our details are set out in the “How to Contact Us” section at the end of this notice.

Our commitment to you

We take the protection of your personal data seriously and will process your personal data fairly, lawfully and transparently. Personal data means any information about an individual from which that person can be identified. This privacy notice describes the personal data we are collecting about you and how it is used.

When you visit the Website, the following groups of personal data are collected:

  • Identity Data includes information such as: first name, last name, title, date of birth (optional), occupation, personal description, photo and gender.
  • Contact Data includes information such as: email address, billing address, delivery address, location, country, telephone number, loyalty programme membership number, and social media id (if you log in by social media).
  • Financial Data includes information such as: payment card details and bank account.
  • Transaction Data includes information such as: details of your purchases and the fulfilment of your orders (such as basket number, order number, subtotal, title, currency, discounts, shipping, number of items, product number, single item price, category, tax etc.); payments to and from you and details of other products and services you have obtained from us, correspondence or communications with you in respect of your orders, and details of any rewards and bonuses awarded.
  • Technical Data includes information such as: details of the device(s) you use to access our services, your internet protocol (IP) address, login data, your username and password, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform.
  • Profile Data includes information such as: purchases or orders made by you, product and style interests, preferences, feedback, and survey responses.
  • Usage Data includes information such as: how and when you use our website/app, how you moved around it, what you searched for; website/app performance statistics, traffic, location, weblogs and other communication data; loyalty programme activities; and details of any other sunshima products and services used by you.
  • Marketing and Communications Data includes information such as: your preferences in receiving marketing from us and our third parties and your communication preferences.

While our website is designed for a general audience, we will not knowingly collect any data from children under the age of 13 or sell products to children. If you are under the age of 13, you are not permitted to use or submit your data to the website.

How we keep your personal data safe and secure

We have appropriate organisational safeguards and security measures in place to protect your data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed.

The communication between your browser and our website uses a secure encrypted connection wherever your personal data is involved.

We require any third party who is contracted to process your personal data on our behalf to have security measures in place to protect your data and to treat such data in accordance with the law.

In the unfortunate event of a personal data breach, we will notify you and any applicable regulator when we are legally required to do so.

The legal basis for processing your personal data

We will only collect and process your personal data where we have a legal basis to do so. As a data controller, the legal basis for our collection and use of your personal data varies depending on the manner and purpose for which we collected it.

We will only collect personal data from you when:

  • we have your consent to do so, or
  • we need your personal data to perform a contract with you. For example, to process a payment from you, fulfil your order or provide customer support connected with an order, or
  • the processing is in our legitimate interests and not overridden by your rights, or
  • we have a legal obligation to collect or disclose personal data from you.

Uses made of your personal data

Your personal data is used by us to support a range of different activities. Please be aware that we may process your personal data using more than one lawful basis, depending on the specific activity involved.

We use the personal data that we collect generally to fulfil any orders placed through the Website (including processing your payment information, arranging for shipping, and providing you with invoices and/or order confirmations). Additionally, we use personal data to: 

  • Communicate with you; 
  • Screen our orders for potential risk or fraud; and 
  • In accordance with your preferences, provide you with information or advertising relating to our products or services. 

We also use the data that we collect to help us to improve and optimize our Website, for example by generating analytics about how our customers browse and interact with the Website, and to assess the success of our marketing and advertising campaigns. 

Sharing your personal data 
We share your personal data with third parties to help us use your personal data as described above.

For example, we use WooCommerce to power our online store – you can read more about how WooCommerce uses your personal data here: www.automattic.com/privacy/.

We also use Google Analytics to help us understand how our customers use the Website. You can read more about how Google uses your personal data here: https://www.google.com/intl/en/policies/privacy/.

You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout. 

Finally, we may also share your personal data to comply with applicable laws and regulations, to respond to a lawful request for information we receive, or to otherwise protect our rights. 

Behavioural advertising 
As described above, we use your personal data to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work. 

You can opt out of targeted advertising by using the links below: 
– Facebook: https://www.facebook.com/settings/?tab=ads 
– Google: https://www.google.com/settings/ads/anonymous 
– Bing: https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads 

Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: http://optout.aboutads.info/. 

Your rights 
If you are a European resident, you have the right to access personal information we hold about you and to ask that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us through the contact information below. 

Additionally, if you are a European resident, we note that we are processing your information in order to fulfil contracts we might have with you (for example if you make an order through the Website), or otherwise to pursue our legitimate business interests listed above. Additionally, please note that your information may be transferred outside of Europe, including to Canada and the United States. 

Data retention 
When you place an order through the Website, we will maintain your personal data for our records unless and until you ask us to delete this information. 

Changes 
We may update this privacy policy from time to time in order to reflect, for example, changes to our practices or for other operational, legal or regulatory reasons. 

Contact us 
For more information about our privacy policy, if you have questions, or if you would like to make a complaint, please contact us by e‑mail at [email protected] or by mail using the details provided below: 

Data Protection Officer, Fitnessory Ltd, 20 Woodview Close, Colchester, Essex, CO4 0QW, United Kingdom