This Privacy Policy explains how WHIPPEDCO LTD (“we”, “us”, “our”) collects, uses, stores, and protects your personal data when you visit our website (whippedcoltd.shop), place an order, make a payment, or contact our team. We are a private limited company registered in England and Wales (Company No. 16577955) with a registered office at 61 Ernest Road, Hornchurch, England, RM11 3JN. Our nature of business is defined by SIC code 56103 (Take-away food shops and mobile food stands).

We are committed to complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, ensuring your personal data is handled securely, transparently, and only for legitimate purposes. This policy outlines your rights as a data subject and how you can exercise them.

What Personal Data We Collect

We only collect personal data that is necessary to provide our food delivery services, process payments, and communicate with you. The data we collect falls into the following categories:

• Order-Related Data: Your full name, delivery address, contact phone number, and email address. This information is required to prepare your order, deliver it to your location, and contact you if there are any issues with your order (e.g., delivery delays, item unavailability).

Payment Data: When you make a payment via our website, payments are processed securely by our trusted payment processor. We never access, store, or process your full card details, bank account information, or other sensitive payment data. All payment processing is handled directly by our payment processor, in compliance with strict privacy and data protection standards.

• Optional Data: If you contact us via our website form or email with questions, feedback, or complaints, we may collect additional information you choose to provide (e.g., order details, specific requests, or allergen concerns) to resolve your inquiry.

Who We Share Your Personal Data With

We take your privacy seriously and will never sell, rent, or share your personal data with third parties for marketing or commercial purposes. We only share your data with the following trusted parties, solely to provide our services:

Trusted Payment Processor: We share only the minimum necessary information (your name, email, and order amount) to process your payment securely. Our payment processor handles all sensitive payment data, and their privacy practices are compliant with global data protection standards and UK GDPR requirements, adhering to data minimisation principles by collecting only what is necessary for payment processing.

• Delivery Drivers/Partners: We share your delivery address and contact phone number with our delivery team to ensure your order is delivered to the correct location. Drivers are required to keep this information confidential and only use it for delivery purposes.
• Legal/Regulatory Authorities: We may share your data if required by law, court order, or regulatory request (e.g., to comply with anti-money laundering regulations, food safety investigations, or other legal obligations).

Data Security & Retention

Data Security: We implement appropriate organizational, technical, and administrative measures to protect your personal data from unauthorized access, loss, alteration, or misuse. This includes secure website hosting, encrypted communication, and restricted access to data within our team. For payment processing, we rely on our payment processor’s industry-leading security measures to protect your payment information, ensuring compliance with data protection best practices.

Data Retention: We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Specifically:

• Order and contact data is retained for 6 years to comply with UK tax and accounting obligations.
• Payment confirmation data (no sensitive payment details) is retained for 6 years in line with financial reporting requirements.
• After this period, your personal data will be securely deleted or anonymized so it can no longer be associated with you.

WHIPPEDCO LTD | Company No. 16577955 | Registered Address: 61 Ernest Road, Hornchurch, England, RM11 3JN

Contact for Privacy Inquiries: hi@whippedco.co.uk | Phone: +44 7878 503661

This Privacy Policy is compliant with UK GDPR and strict payment processing privacy requirements, including data minimisation and secure data handling standards.