Privacy Policy

At Thoughts N Scripts, we are committed to protecting your privacy and ensuring the security of your personal information.

1. Introduction

This Privacy Policy explains how Thoughts N Scripts (“we”, “our”, or “us”) collects, uses, stores, and protects your personal information when you visit our website thoughtsnscripts.co.uk, make a purchase, or use our services. We are committed to ensuring your privacy is protected and that all data is handled securely and in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Who We Are

Website: thoughtsnscripts.co.uk
Email: info@thoughtsnscripts.co.uk
Registered in the United Kingdom

For the purpose of the UK General Data Protection Regulation (UK GDPR), we are the Data Controller of your personal data.

We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:

3. Information We Collect

We may collect the following types of personal information:

  • Personal Identification Data: name, email address, phone number, postal address.
  • Account Information: username, password, and preferences (if you create an account).
  • Payment Information: billing address and partial card details processed via secure third-party payment gateways (we do not store full card numbers).
  • Technical Data: IP address, browser type, operating system, and device information.
  • Usage Data: pages visited, time spent on site, and actions taken (for analytics and improvement).
  • Communication Data: messages or inquiries sent through our contact forms or email.

4. How We Use Your Information

We use your data for the following purposes:

  • To process and fulfill orders or service requests
  • To send order confirmations, receipts, or important updates
  • To manage user accounts and customer support
  • To detect and prevent fraud
  • To comply with legal and tax obligations
  • To improve our website and services
  • To send marketing emails (only if you have opted in)

5. Legal Basis for Processing (UK GDPR)

We process personal data under the following lawful bases:

  • Contractual Necessity: to provide products or services you purchase
  • Consent: for marketing communications and cookies
  • Legal Obligation: to comply with UK laws and financial regulations
  • Legitimate Interest: to improve our services, prevent fraud, and maintain security

6. Payment Processing and Security

We use secure, PCI DSS-compliant payment processors such as:

  • Request access Stripe
  • Request correction PayPal
  • Request erasure Worldpay

All payments are processed through encrypted SSL connections. We do not store your full credit/debit card details on our servers.

Your payment data is handled securely in accordance with UK GDPR and industry-standard PCI DSS requirements.

7. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined above, or as required by law (e.g., tax or accounting obligations).

When data is no longer required, it is securely deleted or anonymised.

8. Sharing Your Information

We may share data with trusted third parties only when necessary, such as:

  • Payment service providers
  • Shipping or delivery companies
  • IT or website hosting providers
  • Professional advisers (legal, accounting, etc.)
  • Government authorities when required by law

    • All third parties are required to handle your data securely and in compliance with the UK GDPR.

    9. Your Data Protection Rights (UK GDPR)

    You have the right to:

  • Access your personal data
  • Request correction of any inaccurate data
  • Request deletion of your data (“right to be forgotten”)
  • Object to processing
  • Restrict processing
  • Request data portability
  • Withdraw consent at any time (for marketing communications)

    • To exercise any of these rights, please contact us at info@thoughtsnscripts.co.uk

    10. Cookies

    We use cookies to improve your browsing experience and analyse website usage. You can manage or disable cookies in your browser settings. For more details, see our Cookie Policy.

    11. Data Security

    We have implemented appropriate technical and organisational measures to protect your data, including:

  • Encrypted SSL communication
  • Secure server environments
  • Access controls and authentication
  • Regular data security reviews

    • Your data is handled securely and in full compliance with the UK GDPR.

    12. Links to Other Websites

    Our website may contain links to third-party websites. We are not responsible for their privacy practices and encourage you to read their privacy policies.

    13. Updates to This Policy

    We may update this Privacy Policy from time to time. The latest version will always be available on our website with the date of the last update.

    14. Contact Us

    We may update this Privacy Policy from time to time. The latest version will always be available on our website with the date of the last update.

    Email: info@thoughtsnscripts.co.uk

    You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO)