Privacy Policy

Last Updated: 29 June 2025
Version: 1.0

1. Who We Are

This privacy policy explains how Plumb Parts Glasgow Ltd (trading as MunsenRings.com) collects, uses, and protects your personal information when you use our website munsenrings.com.

Company Details:

  • Company Name: Plumb Parts Glasgow Ltd
  • Trading As: MunsenRings.com
  • Company Registration: SC423608
  • VAT Number: GB 66010833
  • Registered Address: 555 South Street, Glasgow, G14 0QX, United Kingdom
  • Phone: +44 141 404 5128
  • Email: info@munsenrings.com

For the purposes of UK data protection law, Plumb Parts Glasgow Ltd is the data controller responsible for your personal information.

2. Information We Collect

2.1 Personal Information You Provide

When you use our website or purchase our products, we may collect:

  • Contact Information: Name, email address, phone number, billing and delivery addresses
  • Account Information: Username, password, and account preferences (if you create an account)
  • Order Information: Product details, purchase history, payment information (processed securely by our payment provider)
  • Communication Data: Messages you send us through contact forms, emails, or phone calls
  • Marketing Preferences: Your consent for marketing communications and preferences

2.2 Information We Collect Automatically

When you visit our website, we automatically collect:

  • Technical Information: IP address, browser type and version, device type, operating system
  • Usage Information: Pages visited, time spent on pages, clickstream data, search terms used
  • Location Data: General location based on IP address (country/region level)

2.3 Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Essential Cookies: Enable core website functionality, shopping cart, and security
  • Analytics Cookies: Understand how visitors use our website (Google Analytics)
  • Marketing Cookies: Deliver relevant advertisements and measure campaign effectiveness
  • Preference Cookies: Remember your settings and preferences

For detailed information about our use of cookies, please see our Cookie Policy.

3. Legal Basis for Processing

Under UK GDPR, we process your personal data based on the following legal grounds:

  • Contract Performance: To process your orders, deliver products, and provide customer service
  • Legitimate Interests: To improve our website, prevent fraud, and conduct business analytics
  • Consent: For marketing communications and non-essential cookies (where required)
  • Legal Compliance: To comply with tax, accounting, and other legal obligations

4. How We Use Your Information

We use your personal information to:

4.1 Order Processing and Customer Service

  • Process and fulfill your orders
  • Send order confirmations and delivery updates
  • Handle returns, refunds, and warranty claims
  • Provide customer support and respond to inquiries

4.2 Website Improvement and Analytics

  • Analyze website usage to improve functionality and user experience
  • Conduct research and analysis to develop new products and services
  • Monitor and maintain website security and performance

4.3 Marketing Communications (with your consent)

  • Send newsletters about new products and special offers
  • Provide information about products that may interest you
  • Invite you to participate in surveys or reviews

4.4 Legal and Business Operations

  • Comply with legal obligations and regulatory requirements
  • Prevent fraud and ensure transaction security
  • Maintain business records and accounts

5. Information Sharing and Third Parties

We may share your personal information with the following third parties:

5.1 Service Providers

  • Payment Processors: To process payments securely (e.g., Stripe, PayPal)
  • Delivery Services: To fulfill and deliver your orders (e.g., Royal Mail, courier services)
  • Website Analytics: Google Analytics (with appropriate privacy settings)
  • Email Services: For sending order confirmations and newsletters
  • IT Support: For website maintenance and security

5.2 Legal Requirements

We may disclose your information if required by law, court order, or to:

  • Protect our legal rights and interests
  • Prevent fraud or investigate suspected illegal activities
  • Comply with regulatory investigations or legal proceedings

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction.

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

6. International Data Transfers

6.1 Within the UK and EU

Your personal data is primarily processed within the United Kingdom. Some of our service providers may process data within the European Economic Area (EEA).

6.2 Transfers Outside the UK/EU

Some of our service providers (such as Google Analytics) may transfer your data to countries outside the UK/EU. When this occurs, we ensure:

  • Adequacy Decisions: Transfers are made to countries with adequate protection (e.g., EU adequacy decision for UK)
  • Standard Contractual Clauses: Use of EU-approved standard contractual clauses where appropriate
  • Additional Safeguards: Implementation of additional technical and organizational measures

7. Data Security

We implement appropriate technical and organizational measures to protect your personal information:

  • Encryption: Sensitive data is encrypted in transit and at rest
  • Access Controls: Limited access to personal data on a need-to-know basis
  • Security Monitoring: Regular monitoring for unauthorized access or data breaches
  • Staff Training: Regular training for staff on data protection and security
  • Secure Payment Processing: PCI DSS compliant payment processing

Despite our security measures, no internet transmission is completely secure. We cannot guarantee absolute security but will notify you and relevant authorities of any data breaches as required by law.

8. Data Retention

We retain your personal information for as long as necessary to:

  • Order Records: 7 years for tax and accounting purposes
  • Marketing Communications: Until you unsubscribe or withdraw consent
  • Website Analytics: 26 months (Google Analytics default retention)
  • Account Information: Until you request deletion or account closure
  • Legal Requirements: As required by applicable law

When personal information is no longer needed, we securely delete or anonymize it.

9. Your Rights Under UK GDPR

You have the following rights regarding your personal information:

9.1 Right of Access

Request a copy of the personal information we hold about you.

9.2 Right to Rectification

Request correction of inaccurate or incomplete personal information.

9.3 Right to Erasure (“Right to be Forgotten”)

Request deletion of your personal information in certain circumstances.

9.4 Right to Restrict Processing

Request limitation of how we process your personal information.

9.5 Right to Data Portability

Request transfer of your personal information to another organization.

9.6 Right to Object

Object to processing based on legitimate interests or for direct marketing.

9.7 Right to Withdraw Consent

Withdraw consent for processing based on consent (e.g., marketing emails).

9.8 How to Exercise Your Rights

To exercise any of these rights, contact us at:

  • Email: info@munsenrings.com
  • Post: Data Protection Officer, Plumb Parts Glasgow Ltd, 555 South Street, Glasgow, G14 0QX
  • Phone: +44 141 404 5128

We will respond to your request within one month of receipt.

10. Cookies and Tracking

10.1 What Are Cookies

Cookies are small text files stored on your device when you visit our website. They help us provide you with a better browsing experience.

10.2 Types of Cookies We Use

Category Purpose Examples Consent Required
Essential Website functionality Shopping cart, security No
Analytics Website performance Google Analytics Yes
Marketing Advertising and remarketing Social media pixels Yes
Preferences Remember your settings Language, region No

10.3 Managing Cookies

You can control cookies through:

  • Cookie Preferences: Use our cookie preference center
  • Browser Settings: Most browsers allow you to refuse or delete cookies
  • Google Analytics Opt-out: Use Google’s opt-out browser add-on

For more information, see our detailed Cookie Policy.

11. Marketing Communications

11.1 Email Marketing

With your consent, we may send you:

  • Product updates and new arrivals
  • Special offers and promotions
  • Industry news and technical information

11.2 Unsubscribing

You can unsubscribe from marketing emails at any time by:

  • Clicking the unsubscribe link in any marketing email
  • Contacting us at info@munsenrings.com
  • Updating your preferences in your account settings

12. Children’s Privacy

Our website and services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child under 16, please contact us immediately.

13. Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will:

  • Post the updated policy on our website
  • Update the “Last Updated” date at the top of this policy
  • Notify you of significant changes via email or website notice
  • Maintain previous versions for your reference

14. Contact Information

14.1 Data Protection Queries

For questions about this privacy policy or our data protection practices:

  • Email: info@munsenrings.com
  • Post: Data Protection Officer, Plumb Parts Glasgow Ltd, 555 South Street, Glasgow, G14 0QX
  • Phone: +44 141 404 5128

14.2 Supervisory Authority

If you are not satisfied with our response to your data protection concerns, you have the right to lodge a complaint with the UK’s supervisory authority:

Information Commissioner’s Office (ICO)

  • Website: www.ico.org.uk
  • Phone: 0303 123 1113
  • Post: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF

15. Additional Information

15.1 Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects or significantly affects you.

15.2 Data Protection Impact Assessments

We conduct Data Protection Impact Assessments (DPIAs) for high-risk processing activities as required by UK GDPR.

15.3 Breach Notification

In the event of a personal data breach likely to result in high risk to your rights and freedoms, we will notify you within 72 hours of becoming aware of the breach.

This privacy policy is designed to be transparent and easy to understand. If you have any questions or need clarification on any section, please don’t hesitate to contact us.