Privacy Policy

Our privacy policy intends to explain how we capture, process, and utilize any information that you share while visiting our website or placing an order with us. It includes the information automatically recorded by the website or shared by you for any reason. Your visit to our website means you accept the practices as described in this privacy statement.

1. Introduction

At Royal Bathrooms UK, we respect your privacy and are committed to protecting the personal information you share with us. We understand the importance of safeguarding your personal information and aim to comply with the UK General Data Protection Regulation (GDPR) and the Data Protection Act 2018 when handling your information.

This privacy policy explains what data we collect, how we use it, and the rights you have in relation to your personal information during your visit to our website. We do not sell your personal data to third parties. However, we may share it with trusted service providers where necessary to operate our business, fulfil your orders, or comply with legal obligations.

Our registered business address is:

Shafqat Enterprises Ltd,

61-64 Sapcote Trading Center, Powke Lane, Cradley Heath, B64 5QX

2. Legal Basis Regarding Data Collection and Processing

As per UK General Data Protection Regulation (GDPR), there might be several reasons for which we may lawfully collect your information.

We may need your information to fulfill our obligations regarding business. This may include your name and address details that we collect during the order placement and use them to deliver your purchase.
In some cases, we collect and process your data with your consent. For example, when you subscribe to receive our marketing updates, we will send you the latest offers. It shows your consent to collect and process the information required for it.
We may use your data to help understand customer needs and requirements so that we can serve you in a better way. It should by no means impact your interests.
Sometimes, we may need data to identify potential criminal activity against Royal Bathrooms UK or anyone in public. This may lead to the transfer of information to concerned legal authorities and law enforcement agencies.

3. Types of Information We Collect

When collecting personal data used for marketing, analytics, or ad measurement, we ensure that your consent is obtained, especially where legally required. You may opt in or out of such tracking and communications at any time.

There are two types of information that we collect about you:

Information you provide directly

This includes details you share when placing an order, requesting information, registering as a customer, signing up for marketing materials, or contacting us via online forms, email, or phone. It may also include information you provide when leaving feedback, reviews, or comments on our website or third-party platforms (such as TrustPilot). Such information generally covers your identity and contact details (name, address, email, phone), financial data for processing payments or refunds, and your purchase history, including order details and shipment tracking. We may also display your feedback on our website or use it in our marketing materials, subject to obtaining your prior consent where necessary.

Information collected automatically

When you visit our website or interact with our online stores (including through Google Ads or other advertising platforms), we may automatically collect certain information through cookies and analytics tools. This can include your IP address, device type, browser information, and browsing behavior on our website.

3.1 Data You Share with Us

We collect personal information that you provide directly, including when you:

Place an order with us
Register an account on our website
Sign up for promotions, newsletters, or marketing updates
Request for our customer support
Submit a review or comment on our website
Take part in a giveaway, promotion, or contest

The information we collect may include your name, delivery address, email address, contact number, account details, and order history.

Please note we do not store your credit card details on our systems. Payments are processed securely through our payment service providers.

3.2 Data Automatically Recorded by Our Systems

When you visit our website, certain data is automatically collected through cookies, analytics tools, and similar technologies. This helps us improve website performance, enhance your experience, and maintain security.

This may include:

Technical details such as your IP address, browser type and version, and operating system
Information about your browsing activity, including pages viewed, products searched, time spent on the site, and referral sources. You can deny or accept the cookies when visiting our website.

4. How Do We Use Your Information?

We use your personal data to provide our services, meet our obligations, and continually improve your experience with us.

Your data helps us understand customer needs and identify areas where we can improve our products and services.
It is necessary to fulfill our legal obligations under the contract we have with you, ensuring that you receive the products or services you have paid for.
We use your information to maintain accurate and up-to-date business and customer records.
Information collected may help us identify and resolve potential issues with our website or services.
Our web development team may use this data for website administration, including troubleshooting, analytics, testing, and user experience surveys.
With your explicit consent, we may use your information to send you promotional content such as discounts, special offers, and newsletters. You may withdraw this consent at any time.
We may contact you for marketing research purposes, such as collecting feedback on your experience, to better understand customer expectations and improve our services.
We do not collect, process, or share data related to sensitive categories, including but not limited to religious beliefs, health information, sexual orientation, political affiliations, or personal data of individuals under the age of 13. This ensures compliance with applicable privacy laws, including the UK GDPR, as well as Google’s Enhanced Conversion policy.
In limited cases, we may authorize third-party service providers (such as advertising networks or analytics platforms) to upload conversion or customer data on our behalf. When this happens, we ensure that they comply with this Privacy Policy, applicable data protection laws, and consent protocols, including secure hashing and encryption standards.

5. How Do We Secure Your Data?

At Royal Bathrooms UK, we take the security of your personal information seriously and apply industry-standard measures to protect it. All data is stored in secure servers and is transmitted between the browser and our website using TLS (commonly referred to as SSL) encryption. Access to personal data is restricted to authorized personnel only and is not publicly available. We regularly update and monitor our systems to minimize the risk of unauthorized access, accidental loss, or data leakage.

If a data breach occurs that may affect your personal information, we will notify you promptly and, where legally required, report it to the relevant supervisory authority. When personally identifiable data is shared with third parties (for example, for advertising analytics), it is hashed using the SHA-256 cryptographic standard before transfer. Only limited, non-sensitive information (such as country, city, or postal code) may remain unhashed where it cannot identify an individual on its own.

6. Do We Share Your Data with Anyone? (Disclosure of Information)

As defined by the UK Companies Act 2006, we may share your information with out trusted third parties, which may include:

Companies that offer marketing services to help us improve our business.
Courier, delivery, and transport companies to help us perform business activity.
Payment service providers for transactions between our customers and us. These may include credit reference agencies to check your credit history if we enter any such contract that includes a credit facility.
Whenever we are required by law to do so by request of a competent authority.
In case we sell our business, the data will be handed over to the new owners as a business asset.

Please note that we only provide information that is necessary to perform specific activities.

6.1 Use of Data to Improve Our Business

We may also use information held by us for

Getting help from companies providing business analytics and search engine services so we can improve, maintain, or optimize our presence on the internet.
Such data analytics tools used by us are Google and Google Analytics. We use these tools to keep track record of the sales generated through different digital channels. In addition to that, we also get customer insight from it so we can improve customer experience.

6.2 Data Sharing for Ad Measurement & Enhanced Conversions

We may share certain customer information with Google for ad measurement and conversion tracking purposes, including:

Certain customer information such as name, email address
Purchase confirmations (e.g., order details)
Marketing interactions (e.g., newsletter sign-ups, quote requests)

This data is hashed (encrypted) using SHA-256 before sharing to protect your privacy.

7. What Do We Do with Cookies?

Whenever you visit our website on your computer, phone, or any other device, a tiny text file named a cookie is stored on it. These are completely safe and don't contain any private information. There are different types of cookies with a range of functions like user tracking, personalization of experience, etc. Whenever you visit our website, you permit us to use such cookies. We use traffic log cookies to identify which pages are being used. This helps us analyze data about web page traffic and improve our website to tailor it to customer needs. We only use this information for statistical analysis purposes, and then the data is removed from the system.

We also use advertising cookies from selected third-party companies with whom we collaborate for marketing purposes. Such cookies help us identify your interests so that relevant advertising can be displayed on your website. We also monitor which adverts you click that direct you to our website so that we can keep a track record of the customer journey.

You are assured that these cookies are perfectly safe and do not cause any harm to your computer. However, you may disable all cookies by going into the settings of your web browser. But that may not display our web pages correctly. You must, however, note that Royal Bathrooms UK is not responsible for any problems you may have due to third-party cookies.

7.1 List of Cookies We Collect

The table below outlines the cookies we use and the type of information they store.

Cookie Name	Cookie Description
PHPSESSID	To store the logged in user's username and a 128bit encrypted key.This information is required to allow a user to stay logged in to a web sitewithout needing to submit their username and password for each page visited. Without this cookie, a user is unabled to proceed to areas of the web site that require authenticated access.
private_content_version	Appends a random, unique number and time to pages with customer content to prevent them from being cached on the server.
persistent_shopping_cart	Stores the key (ID) of persistent cart to make it possible to restore the cart for an anonymous shopper.
form_key	A security measure that appends a random string to all form submissions to protect the data from Cross-Site Request Forgery (CSRF).
store	Tracks the specific store view / locale selected by the shopper.
login_redirect	Preserves the destination page the customer was navigating to before being directed to log in.
mage-messages	Tracks error messages and other notifications that are shown to the user, such as the cookie consent message, and various error messages, The message is deleted from the cookie after it is shown to the shopper.
mage-cache-storage	Local storage of visitor-specific content that enables e-commerce functions.
mage-cache-storage-section-invalidation	Forces local storage of specific content sections that should be invalidated.
mage-cache-sessid	The value of this cookie triggers the cleanup of local cache storage.
product_data_storage	Stores configuration for product data related to Recently Viewed / Compared Products.
user_allowed_save_cookie	Indicates if the shopper allows cookies to be saved.
mage-translation-storage	Stores translated content when requested by the shopper.
mage-translation-file-version	Stores the file version of translated content.
section_data_ids	Stores customer-specific information related to shopper-initiated actions such as display wish list, checkout information, etc.
recently_viewed_product	Stores product IDs of recently viewed products for easy navigation.
recently_viewed_product_previous	Stores product IDs of recently previously viewed products for easy navigation.
recently_compared_product	Stores product IDs of recently compared products.
recently_compared_product_previous	Stores product IDs of previously compared products for easy navigation.
wp_ga4_customerGroup	Custom dimension storing Magento customer group for segmented GA4 tracking.
wp_ga4_user_id	Stores Magento user ID for GA4 tracking of logged-in users.
X-Magento-Vary	Ensures that cached content is varied based on customer group, locale, or currency.
guest-view	Stores order information for guest users so they can view their order without logging in.
last_visited_store	Remembers the last store view visited by the user to retain context when navigating the store.
cf_clearance	Used to identify trusted web traffic and bypass security restrictions (e.g., CAPTCHA) for verified users.
_fbc	Used by Facebook to store the last visit, helps in conversion tracking and targeting.
_fbp	Used by Facebook to deliver a series of advertising products, such as real-time bidding from third-party advertisers.
_gcl_ag	Stores ad click information to help attribute conversions back to the corresponding Google Ads campaigns
_gcl_gb	Stores ad click information to help attribute conversions back to the corresponding Google Ads campaigns
_gcl_gs	Used by Google Ads' Conversion Linker to store ad click information and track conversions
_gcl_au	Used by Google AdSense for experimenting with advertisement efficiency across websites using their services.
_gcl_aw	Used to track conversion data from clicks on Google Ads.
_ga	Used to distinguish users for website analytics purposes.
_ga_0W6DM1HXWY	Used to persist session state.
_ga_E4CY7LRK9E	Used to persist session state.
_ga_SV8SE4XWHN	Used to persist session state.
klarna-shopping-browser-session-id	Used to link user sessions across Klarna’s systems during checkout.
x-hng	Klarna-specific cookie used for handling session flow or fraud detection.
__kla_id	This cookie is used to collect information on the visitor's behavior. This information will be stored for internal use on the website – internal analytics is used to optimize the website or to register if the visitor has subscribed to a newsletter.
amcookie_allowed	Used to determine whether cookies may be set on the current device or not.
amcookie_disallowed	Lists the cookies which are not allowed to be set on your device.
amcookie_policy_restriction	Stores the user's cookie consent preferences for regulatory compliance.
_uetmsclkid	Stores Microsoft Click ID to correlate ad clicks with conversions when auto-tagging is enabled in Microsoft Ads.
_uetsid	Stores a session ID for a user, used by Microsoft Advertising to track session-level user behavior and conversions.
_uetvid	Stores a unique user ID for Microsoft Advertising.
_clck	Persists the Clarity User ID and preferences, unique to that site, are attributed to the same user ID.
_clsk	Connects multiple page views by a user into a single Clarity session recording.
MicrosoftApplicationsTelemetryDeviceId	Tracks the device for application telemetry and diagnostic insights.
MicrosoftApplicationsTelemetryFirstLaunchTime	Stores the timestamp of the app’s first launch for telemetry tracking.
_derived_epik	The _derived_epik cookie is associated with the Pinterest Tag and is placed when the tag identifies a match without relying on traditional cookie matching, such as through Enhanced Match
_nccapi_url	Used by Pinterest to track the usage of services.
_pin_unauth	This first-party cookie is placed by the Pinterest tag when a user cannot be identified.
sf_id	Session identifier used by Salesforce for tracking and personalization across sessions.
__stripe_mid	This cookie is necessary for making credit card transactions on the website. The service is provided by Stripe.com, which allows online transactions without storing any credit card information.
__stripe_sid	This cookie is necessary for making credit card transactions on the website. The service is provided by Stripe.com, which allows online transactions without storing any credit card information.
tduid	This Cookie is used to track user conversions through affiliate marketing programs.

8. Where Is Your Data Stored and Processed?

All the data that you share with us is stored on secure servers, hosted by renowned technological companies. These companies have expertise in providing such services, and thousands of businesses rely on them. The location of such facilities varies, where most of the data centers in the UK, for processing purposes. We make sure that such third-party services have good repute and comply with international standards of data security.

9. Your Rights Under GDPR Law

As per the Data Protection Act 2018 of the General Data Protection Regulation (GDPR), you have the following rights regarding your data held by us.

Right to Access Personal Information. You may request at any time to get a copy of any personal information that we hold about you and how we process it.
Right to erase your data. You have the right to request that we erase any information held by us about you.
Request to update and correct your personal information. You can request an update or correction if you find any discrepancies in your data held by us.
Right to restrict our use of your data. You also have the right to request we restrict the use of any information held by us.

Note: We may disapprove of your request in case we have a legitimate reason to do so.

10. Retention of Your Data

We only retain your personal information for as long as it is necessary to fulfil the purposes for which it was collected. This may include processing your order, maintaining business records, carrying out analytics, or providing marketing communications where you have consented.

In some cases, we are required by law to keep certain information for a fixed period — for example, financial and tax records are generally kept for up to seven years. We may also retain data where it is needed to establish, exercise, or defend legal claims.

11. How Often Do We Change or Update Our Policy?

We may change or update our privacy policy from time to time. Any such changes will become part of it immediately upon publishing. We don't take responsibility for informing everyone about such changes. Therefore, you must check our privacy policy section for an updated version.

12. Ways to Communicate or Lodge a Complaint

You can write us an email in case of any questions, suggestions, or complaints. Our email for all such communication is info@royalbathrooms.co.uk, and we are committed to responding to all queries within 24 hours. In case you are concerned with the way we handle your data, you should get in touch with us before taking the matter to the concerned authorities.