Data & Privacy

Data & Privacy Policy

This Data Privacy Policy outlines how Royal Me Now ("we," "us," or "our") collects, uses, stores, and protects the personal data of customers who use our services to upload photos and create bespoke images. We are committed to safeguarding the privacy of our customers and ensuring that all personal data is handled in accordance with the Data Protection Act 2018 and the General Data Protection Regulation (GDPR).

1. Data Collection

1.1 Personal Data Collected

When you use our service to upload photos and create bespoke images, we may collect the following personal data:

  • Photos: Images uploaded by you for the purpose of creating bespoke images.
  • Contact Information: Name, email address, and phone number.
  • Billing Information: Payment details necessary to process transactions.
  • Technical Data: IP address, browser type, and other technical information collected automatically when you visit our website.

1.2 How We Collect Data

  • Directly from You: When you upload photos, fill out forms, or contact us directly.
  • Automatically: Through cookies and similar tracking technologies when you interact with our website.

2. Purpose of Data Processing

2.1 Use of Data

We use your personal data for the following purposes:

  • Service Delivery: To create bespoke images based on the photos you provide.
  • Customer Support: To respond to your inquiries and provide customer service.
  • Payment Processing: To process your payments securely.
  • Improving Services: To analyse data to improve our services and website experience.

2.2 Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Performance of a Contract: To fulfil our contractual obligations when providing our services.
  • Consent: For processing photos, where explicit consent is required.
  • Legitimate Interests: To improve our services and ensure the security of our platform.

3. Data Sharing and Disclosure

3.1 Third-Party Service Providers

We may share your personal data with third-party service providers who assist us in providing our services, such as payment processors, cloud storage providers, and IT support. These providers are contractually obligated to protect your data and use it only for the purposes specified by us.

3.2 Legal Requirements

We may disclose your personal data if required by law or in response to valid requests by public authorities (e.g., a court or government agency).

4. Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction. This includes the use of encryption, access controls, and regular security assessments.

5. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected or to comply with legal, regulatory, or contractual obligations. Once your data is no longer needed, we will securely delete or anonymize it.

6. Your Rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right to Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can ask us to correct any inaccurate or incomplete data.
  • Right to Erasure: You can request the deletion of your personal data under certain conditions.
  • Right to Restrict Processing: You can ask us to restrict the processing of your data under certain circumstances.
  • Right to Data Portability: You can request the transfer of your data to another service provider.
  • Right to Object: You can object to the processing of your data based on legitimate interests or for direct marketing purposes.
  • Right to Withdraw Consent: If we process your data based on consent, you can withdraw your consent at any time.

To exercise these rights, please contact us using the contact information provided below.

7. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically to stay informed about how we are protecting your personal data.

8. Contact Us

If you have any questions or concerns about this Privacy Policy or how we handle your personal data, please contact us using the contact page.

9. Complaints

You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK regulator for data protection issues (www.ico.org.uk) or the Data Protection Commission (DPC), the Ireland regulator for data protection issues (https://www.dataprotection.ie/). We would, however, appreciate the chance to deal with your concerns before you approach the ICO/DPC so please contact us in the first instance.