Privacy Policy
Wynter Isabelle Bridal
Effective Date: 4.6.2025
Your privacy is important to us. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR).
1. Who We Are
Wynter Isabelle Bridal (“we”, “us”, or “our”) operates www.wynterisabellebridal.com and provides bridalwear services in the United Kingdom.
Data Controller:
Wynter Isabelle Bridal
Email: Hello@wynter-isabelle.co.uk
Phone: 01446 311695
Address: 111 and 112 Park Crescent Barry CF2 6HE
2. What Data We Collect
We may collect and process the following types of personal data:
Name
Email address
Phone number
Event date (e.g., wedding)
Delivery or billing address (if applicable)
Order and booking details
IP address and browser/device data
Usage data via cookies (see Section 9)
We do not collect sensitive personal data (e.g. race, religion, health information) unless you voluntarily provide it.
3. How We Collect Your Data
We collect data through:
Online forms (contact, appointment, newsletter)
Emails or calls you send us
Order or booking submissions
Cookies and website analytics (see Section 9)
4. Lawful Bases for Processing
We process your data under the following lawful bases:
Consent – e.g. marketing emails (opt-in)
Contract – e.g. fulfilling orders, appointment bookings
Legitimate Interests – e.g. improving services, preventing fraud
Legal Obligation – e.g. accounting or tax records
5. How We Use Your Data
We use your information to:
Respond to inquiries or bookings
Deliver products and services
Send service or appointment confirmations
Send occasional marketing (if consented)
Improve website performance and customer experience
Comply with our legal obligations
6. Sharing Your Data
We do not sell or rent your data. We may share your data with:
Service providers (e.g. payment processors, email platforms like Mailchimp, scheduling tools)
IT or hosting providers
Law enforcement, if required by law
All third parties are bound by data protection agreements to protect your information.
7. International Data Transfers
Some services we use may store data outside the UK (e.g. in the USA). When this happens, we ensure your data is protected by:
UK-approved Standard Contractual Clauses (SCCs)
Other lawful transfer mechanisms under UK GDPR
8. Your Rights Under UK GDPR
You have the right to:
Access your personal data
Correct inaccurate or incomplete data
Request deletion (“right to be forgotten”)
Restrict or object to certain uses of your data
Request transfer of your data to another provider
Withdraw consent at any time (where consent was given)
To exercise any of these rights, please email [Insert Email].
You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
https://www.ico.org.uk
9. Cookies and Tracking
We use cookies and similar technologies to:
Analyse website traffic
Improve user experience
Enable social media features
Deliver targeted advertising (if consented)
Essential cookies are necessary for the site to function.
Non-essential cookies (e.g. analytics or marketing) require your consent. You can manage cookie preferences through our cookie banner or your browser settings.
For more, please see our [Cookie Policy] (or include cookie section here if preferred).
10. Retention of Data
We retain personal data only as long as necessary for the purposes set out in this policy, including:
Customer service records: up to 6 years
Marketing data: until consent is withdrawn
Financial records: up to 7 years (legal requirement)
11. Children's Privacy
Our website is not directed to children under 13. We do not knowingly collect data from children. If we become aware of such data, we will delete it.
12. Changes to This Policy
We may update this Privacy Policy periodically. The updated version will be posted on this page with a revised Effective Date.