Privacy policy

Privacy Policy (UK GDPR Compliant)

Last updated: 25/10/2025

At ATTIS Natural Products (“we”, “us”, “our”), we are committed to protecting your privacy and respecting your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

By using our website attisuk.com / naturalsoapsuk.com or purchasing from us, you agree to the terms of this Privacy Policy.

1. Who We Are

Business Name: ATTIS Natural Products
Owner: Pavitri Wypior
Registered Address: 26 High Street, Ventnor, PO38 1RZ
Email: office@attisuk.com
Telephone: +44 (0) 7310810499
Website: attisuk.com

We are the data controller responsible for the personal data we collect from you.

2. Information We Collect

We collect the following types of personal data when you interact with us:

  • Identity Data: name, title, and contact details.
  • Contact Data: billing and delivery address, email, phone number.
  • Transaction Data: purchase details, order history, and payment information.
  • Technical Data: IP address, browser type, time zone, device information, and website usage data (through cookies).
  • Marketing Preferences: your choices for receiving marketing communications.

We do not collect any special category (sensitive) data.

3. How We Use Your Data

We use your personal data for the following purposes:

  • To process and deliver your orders.
  • To communicate with you about your order or account.
  • To manage payments, refunds, and prevent fraud.
  • To improve our website, services, and customer experience.
  • To send marketing emails (only if you have consented).

We will only use your personal data where we have a lawful basis, such as:

  • Contractual necessity (to fulfil your order).
  • Legal obligation (e.g., accounting or tax requirements).
  • Legitimate interest (to improve our services).
  • Consent (for marketing communications).

4. How We Store and Protect Your Data

We take reasonable steps to protect your personal information against loss, misuse, unauthorised access, disclosure, or alteration.
All payment transactions are encrypted and processed securely through PayPal.

Your data is stored securely within the UK or in data centres compliant with UK GDPR requirements.

5. Sharing Your Data

We only share your data with trusted third parties when necessary to run our business, such as:

  • Payment processors (e.g., PayPal)
  • Delivery and courier services.
  • Website hosting providers.

We do not sell or rent your personal information to any third parties.

6. Data Retention

We keep your personal data only for as long as necessary to fulfil the purposes we collected it for — typically 6 years for accounting and tax obligations, unless a longer retention period is required by law.

7. Your Rights

Under UK GDPR, you have the following rights:

  • Access to your personal data.
  • Correction of inaccurate or incomplete data.
  • Deletion of your data (“right to be forgotten”).
  • Restriction or objection to processing.
  • Data portability.
  • Withdrawal of consent (for marketing communications).

To exercise these rights, contact us at office@attisuk.com.
We aim to respond within one month.

8. Cookies

Our website uses cookies to improve your browsing experience and collect anonymised usage data.
You can control cookies through your browser settings.

9. Contact Us

If you have any questions or concerns about your personal data, please contact:
Email: office@attisuk.com
Address: 26 High Street, Ventnor, PO38 1RZ

If you’re unhappy with how we handle your data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
https://www.ico.org.uk