Last updated: 12 April 2026
This Privacy Policy explains how Sticker Nation (“we”, “us”, “our”) collects, uses, and protects your personal data when you visit stickernation.co.uk or place an order with us. We are committed to protecting your privacy in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Who we are
Sticker Nation is the “data controller” responsible for your personal data.
- Trading name: StickerNation.co.uk
- Business address: Unit 4, Neads Court, Knowles Road, Clevedon BS21 7XS
2. What personal data we collect
We may collect and process the following categories of personal data:
- Identity & contact data: name, billing address, delivery address, email address, phone number.
- Order data: products purchased, order history, custom design files or images you upload.
- Payment data: payment card details are processed directly by our payment provider ([e.g. Stripe / PayPal / Shopify Payments]); we do not store full card details on our servers.
- Account data: username and password (if you create an account).
- Communications data: messages you send us via email, contact forms, or social media.
- Technical data: IP address, browser type and version, device information, time zone, operating system.
- Usage data: information about how you use our website, including pages visited and products viewed.
- Marketing data: your preferences in receiving marketing from us.
3. How we collect your data
We collect data:
- Directly from you when you place an order, create an account, contact us, or sign up to our newsletter.
- Automatically through cookies and similar technologies when you use our website (see Section 9).
- From third parties such as payment processors, delivery partners, and analytics providers.
4. How we use your data and our lawful basis
Under UK GDPR we must have a lawful basis for processing your data. We rely on the following:
| Purpose | Lawful basis |
|---|---|
| Processing and delivering your orders | Performance of a contract |
| Managing payments and refunds | Performance of a contract |
| Providing customer support | Performance of a contract / Legitimate interests |
| Sending order confirmations and delivery updates | Performance of a contract |
| Sending marketing emails and newsletters | Consent (you can withdraw at any time) |
| Complying with legal and tax obligations | Legal obligation |
| Fraud prevention and website security | Legitimate interests |
| Analytics and improving our website | Consent (via cookie banner) |
5. Who we share your data with
We only share your data where necessary and with trusted third parties, including:
- Payment providers
- Delivery couriers
- IT and hosting providers
- Email and marketing platforms
- Analytics providers
- Professional advisers
- Government bodies or regulators where we are legally required to do so (e.g. HMRC).
We never sell your personal data to third parties.
6. International transfers
Some of our service providers are based outside the UK. Where data is transferred outside the UK, we ensure appropriate safeguards are in place, such as the UK International Data Transfer Agreement, the EU Standard Contractual Clauses with the UK Addendum, or transfers to countries with a UK adequacy decision.
7. How long we keep your data
We keep your personal data only for as long as necessary:
- Order and transaction records: 6 years after the end of the tax year, to comply with HMRC requirements.
- Account data: until you close your account or request deletion.
- Marketing data: until you unsubscribe.
- Website analytics: typically up to 26 months.
- Customer service correspondence: up to 2 years after the enquiry is resolved.
8. Your rights
Under UK GDPR you have the following rights:
- Right of access — request a copy of the personal data we hold about you.
- Right to rectification — ask us to correct inaccurate or incomplete data.
- Right to erasure (“right to be forgotten”) — ask us to delete your data in certain circumstances.
- Right to restrict processing — ask us to limit how we use your data.
- Right to data portability — receive your data in a machine-readable format.
- Right to object — object to processing based on legitimate interests or direct marketing.
- Right to withdraw consent — where we rely on consent, you can withdraw it at any time.
- Rights related to automated decision-making — we do not use automated decision-making or profiling that produces legal effects.
To exercise any of these rights, email via our contact form in your order menu. We will respond within one month.
9. Cookies
Our website uses cookies and similar technologies. A cookie is a small text file placed on your device. We use:
- Strictly necessary cookies — required for the website and checkout to function.
- Analytics cookies — help us understand how visitors use our site (only with your consent).
- Marketing cookies — used for advertising and remarketing (only with your consent).
You can manage your cookie preferences via our cookie banner or your browser settings. For more information, see our [Cookie Policy] [if you have one].
10. Security
We take appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or disclosure, including SSL encryption, secure hosting, and restricted access to personal data. No method of transmission over the internet is 100% secure, but we do our best to protect your data.
11. Children’s privacy
Our website and products are not directed at children under 13. We do not knowingly collect personal data from children under 13. If you believe we have, please contact us and we will delete it.
12. Changes to this policy
We may update this Privacy Policy from time to time. The “Last updated” date at the top shows when it was last revised. We encourage you to review this page periodically.
13. Contact us
If you have any questions about this Privacy Policy or how we handle your data, please contact us via your account.