Introduction
1.1. Brandably LTD (“we”, “us”, “our”) is committed to protecting and respecting your privacy. This policy explains how we collect, use, and protect the personal data you provide to us when you use our website, request a quote, or place an order for our Goods and Services. As a business-to-business (B2B) supplier, we primarily process the personal data of our clients' employees or representatives.
1.2. We are the Data Controller for any personal data we collect. This means we are responsible for deciding how we hold and use personal data about you.
The Data We Collect About You
2.1. Personal data means any information about an individual from which that person can be identified. We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped together as follows:
- 2.1.1Identity Data:Includes first name, last name, and job title.
- 2.1.2Contact Data:Includes billing address, delivery address, email address, and telephone numbers associated with your business.
- 2.1.3Transaction Data:Includes details about payments to and from you and other details of products and services you have purchased from us.
- 2.1.4Client Materials:Includes logos, designs, text, and images you provide to us for customisation. While this is often a business asset, it may contain identifying information.
- 2.1.5Technical Data:Includes internet protocol (IP) address, browser type and version, time zone setting and location, and other technology on the devices you use to access our website.
- 2.1.6Marketing and Communications Data:Includes your preferences in receiving B2B marketing from us and your communication preferences.
How We Collect Your Data
3.1. We use different methods to collect data from and about you, including:
3.2. Direct Interactions: You may give us your Identity and Contact Data by filling in forms on our website (e.g., quote request, contact form) or by corresponding with us by post, phone, email, or otherwise. This includes when you:
Automated Technologies: As you interact with our website, we may automatically collect Technical Data about your equipment and browsing actions.
How We Use Your Data (Lawful Basis)
4.1. We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
| Purpose / Activity | Type of Data | Lawful Basis |
|---|---|---|
| To register you as a new client | Identity, Contact | Performance of a contract with you/your business |
| To process and deliver your order, including managing payments and fees | Identity, Contact, Transaction | Performance of a contract |
| To produce customised Goods, including sharing Client Materials with trusted suppliers | Identity, Contact, Client Materials | Performance of a contract |
| To manage our relationship with you (e.g. notifying you of changes to our terms or policy) | Identity, Contact | Legitimate Interest (to keep our records updated and study how customers use our products) |
| To administer and protect our business and website | Identity, Contact, Technical | Legitimate Interest (IT services, network security) |
| To send you B2B marketing communications about similar products and services | Identity, Contact, Marketing | Legitimate Interest (to develop our services and grow our business). You can opt out at any time. |
Who We Share Your Data With
5.1. We will not sell your personal data. We may have to share your personal data with trusted third parties for the purposes set out above, including:
We require all third parties to respect the security of your personal data and to treat it in accordance with the law.
International Transfers
6.1. Some of our external third-party suppliers (e.g., specialist manufacturers) may be based outside the United Kingdom (UK). This may involve transferring your data outside the UK.
Whenever we transfer your personal data out of the UK, we ensure a similar degree of protection is afforded to it by ensuring that safeguards are in place, such as using contracts approved by the UK Information Commissioner's Office (ICO).
Data Security
7.1. We have put in place appropriate technical and organisational security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed. Access to your personal data is limited to those employees and third parties who have a business need to know.
Data Retention
8.1. We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
By law, we have to keep basic information about our clients (including Contact, Identity, and Transaction Data) for six years after they cease being clients for tax purposes.
Your Legal Rights
9.1. Under UK data protection law, you have rights in relation to your personal data. These include the right to:
You also have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues.
Changes to This Privacy Policy
10.1. We may update this policy from time to time. Any changes will be posted on this page. This policy was last updated on 5th June 2026.