Privacy Policy

At Comfort Haven Official, we are committed to protecting your privacy and ensuring the security of your personal information. This policy explains how we collect, use, and safeguard your data.

Last Updated: September 2025

Effective Date: September 2025

Data Controller

Comfort Haven Official Ltd is the data controller responsible for your personal information.

Company: Comfort Haven Official Ltd

Registration: England & Wales

Contact: Contact Form

Information We Collect

Personal Information

  • Name and contact details (email, phone, address)
  • Billing and delivery addresses
  • Payment information (processed securely by third parties)
  • Order history and preferences

Technical Information

  • IP address and browser information
  • Device type and operating system
  • Website usage data and analytics
  • Cookies and similar technologies

How We Use Your Information

Order Processing

  • • Process and fulfill your orders
  • • Handle payments and refunds
  • • Arrange delivery and shipping
  • • Provide customer support

Communication

  • • Send order confirmations
  • • Provide shipping updates
  • • Respond to inquiries
  • • Send important account notices

Website Improvement

  • • Analyze website usage
  • • Improve user experience
  • • Optimize product offerings
  • • Prevent fraud and abuse

Legal Compliance

  • • VAT and tax obligations
  • • Regulatory requirements
  • • Dispute resolution
  • • Record keeping

Legal Basis for Processing (GDPR)

Contract Performance

Processing necessary to fulfill our contract with you (order processing, delivery)

Legitimate Interest

Website analytics, fraud prevention, and business improvement

Consent

Marketing communications (where you've opted in)

Legal Obligation

Tax records, VAT compliance, and regulatory requirements

Data Sharing & Third Parties

We Never Sell Your Data

Your personal information is never sold, rented, or shared for marketing purposes.

We Only Share Data With:

Payment Processors

Secure payment handling (Stripe, PayPal, etc.)

Shipping Partners

Royal Mail, courier services for delivery

Analytics Services

Website performance and user experience

Legal Requirements

When required by law or regulation

Your Rights Under GDPR

Right to Access

Request a copy of your personal data

Right to Rectification

Correct inaccurate personal data

Right to Erasure

Request deletion of your data

Right to Restrict

Limit how we process your data

Data Portability

Receive your data in a portable format

Right to Object

Object to certain processing activities

To exercise any of these rights, please contact us. We'll respond within 30 days.

Cookies & Tracking

We use cookies to improve your browsing experience and analyze website performance.

Essential Cookies

Required for website functionality (shopping cart, checkout)

Analytics Cookies

Help us understand how visitors use our website

Marketing Cookies

Used to deliver relevant advertisements (with consent)

You can manage cookie preferences in your browser settings or through our cookie consent banner.

Data Security

Security Measures

  • SSL encryption for all data transmission
  • Secure hosting infrastructure
  • Access controls and authentication
  • Regular security updates and backups

Payment Security

PCI DSS Compliant

Payment data is processed by certified third-party providers (Stripe, PayPal) and never stored on our servers.

Data Retention

Customer Data

Retained for 7 years after last purchase (UK tax requirements)

Marketing Data

Until you unsubscribe or withdraw consent

Website Analytics

Anonymized data retained for 26 months

Inactive Accounts

Deleted after 3 years of inactivity

Contact Us About Privacy

Privacy Questions

For any privacy-related questions or to exercise your rights:

Contact Us

Data Protection Authority

If you're not satisfied with our response, you can complain to:

Information Commissioner's Office (ICO)

Website: ico.org.uk

Phone: 0303 123 1113

Policy Updates

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements.

We'll notify you of significant changes by:

  • • Email notification to registered customers
  • • Prominent notice on our website
  • • Updated "Last Modified" date at the top of this policy