Privacy policy

Privacy Policy (Trade Store)

Last Updated: October 2025

Introduction

Restmor Ltd (“we”, “us”, “our”) operates this website and trade store.
We are a limited company registered in England and Wales (Company No. 06876331) with our registered office at Unit H, Bramingham Business Park, Enterprise Way, Luton, England LU3 4BU.

We are registered with the Information Commissioner’s Office (ICO) as a data controller and are committed to respecting and protecting your privacy in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Data (Use and Access) Act 2025.

Our website and e‑commerce platform are powered by Shopify Inc, which acts as a data processor on our behalf. This Policy explains how we collect, use, store and protect your business-related information when you use our services.

By using this website, you acknowledge that you have read and understood this Privacy Policy and our approach to data protection.

1. Information We Collect

We collect only the information necessary to manage trade accounts and process commercial transactions. This may include:

  • Business contact details: name, job title, company name, business address, email address and telephone number.

  • Account details: login credentials, trade references and account preferences.

  • Order and payment information: invoices, order history, VAT details and payment data (processed securely through Shopify Payments).

  • Technical information: IP address, browser type, usage data, and cookies for performance and analytics.

  • Communications: emails, enquiries and correspondence related to your account or orders.

2. Cookies and Analytics

Our website uses cookies to distinguish visitors, improve user experience, and support website analytics.

  • Essential cookies: necessary for secure operation and order processing.

  • Analytics cookies: used anonymously to help us analyse website traffic and improve functionality.

You can manage or disable cookies through browser settings. Further information can be found in our Cookie Notice available in the website footer.

3. How We Use Your Information

Your information is used only for legitimate business purposes, including:

  • Processing and fulfilling trade orders and managing customer accounts.

  • Handling deliveries, invoices, and account enquiries.

  • Fulfilling UK accounting, tax and record‑keeping requirements.

  • Maintaining client relationships and communicating product updates.

  • Conducting fraud prevention and credit checks for secure transaction processing.

We do not use this information for consumer profiling or non‑trade marketing purposes.

4. Lawful Basis for Processing

We process business data under the following lawful bases as defined by the UK GDPR and updated by the Data (Use and Access) Act 2025:

  • Contractual necessity – for fulfilling trade orders and providing account services.

  • Legitimate interest – to manage commercial relationships and improve our operations.

  • Legal obligation – to meet compliance, financial and audit requirements.

Consent is used only when applicable to non‑essential cookies or voluntary marketing.

5. Marketing Communications

We may contact existing business customers with product updates, promotional news or logistics information under the lawful basis of legitimate interest.

You may opt out at any time by using the unsubscribe link provided in our emails or by contacting
sales@restmor.co.uk.

We do not send unsolicited marketing communications to sole traders or partnerships without prior consent and adhere to the Privacy and Electronic Communications Regulations (PECR).

6. Data Sharing

We only share business data where necessary for legitimate operational reasons:

  • Shopify Inc – to provide website hosting, order processing and secure payment infrastructure.
    Shopify’s Privacy Policy

  • Payment service providers – to process transactions securely.

  • Logistics partners and couriers – to deliver orders.

  • IT and support providers – for essential system maintenance, hosting and analytics.

  • Credit‑reference or fraud‑prevention agencies – where legitimate or legally required.

  • Regulators or authorities – where disclosure is mandated by law.

We do not sell or rent customer data to third parties.

7. International Data Transfers

Shopify and some service providers may store or process data outside the United Kingdom or the European Economic Area (“EEA”).
All transfers comply with UK‑approved Standard Contractual Clauses (SCCs) or equivalent frameworks to ensure appropriate protection.

8. Data Retention

We retain business customer and supplier records for as long as necessary to meet contractual, tax and statutory obligations – typically six years from the end of the financial year in which a transaction took place.
Records are reviewed regularly and deleted when no longer required.

9. Security

We employ appropriate organisational and technical measures to protect your data.
This includes encrypted Secure Socket Layer (SSL) technology for payments and restricted staff access to internal systems.

While we take all reasonable precautions, no online platform can be entirely secure. Account holders are responsible for safeguarding their login credentials and notifying us promptly if unauthorised access is suspected.

10. Links to Other Websites

Our website may contain links to external or partner websites. These sites operate independently and have their own privacy policies. We do not accept any responsibility or liability for their content, use or compliance.

11. Your Rights

Under the UK GDPR and relevant updates in the Data (Use and Access) Act 2025, you have the following rights over your personal data:

  • Access: request a copy of your information.

  • Rectification: correct inaccurate or incomplete details.

  • Erasure: request deletion of data no longer needed.

  • Restriction: limit how we process your information in specified circumstances.

  • Portability: receive data in a structured format for transfer elsewhere.

  • Objection: opt out of marketing or certain processing activities based on legitimate interests.

Requests can be made by contacting sales@restmor.co.uk. We will respond within one calendar month.

If you are dissatisfied with our response, you may raise a complaint with the Information Commissioner’s Office (ICO) via www.ico.org.uk.

12. Children’s Data

Our website and trade store are designed for professional and business use only. We do not knowingly collect or store data relating to individuals under 18 years of age.

13. Changes to This Policy

We may update this Privacy Policy periodically to reflect operational or legal developments.
All updates will be posted here with a revised “Last Updated” date.

14. Contact

Restmor Ltd
Unit H, Bramingham Business Park, Enterprise Way,
Luton, LU3 4BU, United Kingdom
Email: sales@restmor.co.uk