FREE UK Shipping on all orders over £100! Use code: FREE100
0

Privacy Policy

Last updated: 27/10/2025

This Privacy Policy explains how OUTCÆST® (the "Controller," "we," "us," or "our") processes the personal data of users ("you" or "your") who visit our website, use our services, or make a purchase from https://www.outcaest.com/ (the "Site").

We are the Data Controller responsible for your personal data.

 

1. The Data We Collect and Our Lawful Basis

We only collect and process personal data when we have a valid Lawful Basis for doing so under the UK GDPR.

Category of Data What We Collect Purpose for Processing Lawful Basis (GDPR)
Contact Data Name, Email Address, Phone Number. To communicate with you and manage your account. Contract (to provide the Services) or Legitimate Interests (customer service).
Order Data Billing Address, Shipping Address, Items Purchased, Payment Confirmation. To process your payment, fulfil your order, manage shipping and returns. Contract (to fulfil your purchase).
Marketing Data Your preference regarding email marketing, sign-up dates. To send promotional emails, special offers, and advertising. Consent (where required) or Legitimate Interests (marketing to existing customers).
Usage Data IP address, browser type, device information, pages viewed, time spent on site. To analyse website performance, prevent fraud, and secure our services. Legitimate Interests (to administer and improve the Site).
Payment Data Payment card details (processed by third-party processors like Stripe/PayPal). To securely process payment for your order. Contract (to facilitate the transaction).

Note on Cookies: We use Cookies to power and improve our Site. For specific details on the types of cookies we use and how to manage them, please refer to our dedicated Cookie Declaration.

 

2. How We Share Your Personal Data

We will share your personal data only with trusted third parties necessary to run our business or when required by law.

  • Service Providers: We share data with vendors who perform essential functions on our behalf, such as:

    • Big Cartel (E-commerce platform).

    • Stripe and PayPal (Payment processing—we never store your full payment card details ourselves).

    • Shipping and Fulfilment Partners (to deliver your order).

    • Mailchimp (for email marketing communications).

    • Fera (for displaying reviews).

    • Cookiebot (for managing your cookie consent).

  • Legal Requirements: We may disclose your information to comply with any applicable legal obligation, including responding to requests from competent law enforcement agencies, regulators, or courts.

 

3. Your UK GDPR Rights

Under the UK GDPR, you have the right to request certain actions regarding your personal data. These rights are not absolute and may be subject to legal exceptions.

  • Right of Access (SAR): You have the right to ask for a copy of the personal data we hold about you.

  • Right to Rectification: You can ask us to correct inaccurate or incomplete data we hold about you.

  • Right to Erasure ('Right to be Forgotten'): You can ask us to delete your personal data where there is no good reason for us to continue processing it.

  • Right to Restriction of Processing: You can ask us to limit the way we use your personal data.

  • Right to Data Portability: You can request that we transfer your personal data to you or another service provider in a structured, commonly used format.

  • Right to Object: You have the right to object to the processing of your data, particularly where we rely on the lawful basis of Legitimate Interests.

 

4. How to Exercise Your Rights and Complaints

To exercise any of your rights listed above, please contact us at [email protected]. We may need to verify your identity before processing your request.

  • Right to Lodge a Complaint: If you are unhappy with how we have used your data, you have the right to complain to the supervisory authority for data protection in the UK: the Information Commissioner's Office (ICO). You can find their contact details on the ICO website (ico.org.uk).

 

5. Data Security and Retention

We take reasonable technical and organizational measures to secure your personal data. We retain your personal data only for as long as is necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

 

6. Children's Data and Third-Party Links

  • Children: Our Services are not intended for use by children, and we do not knowingly collect personal information about children.

  • Third-Party Links: Our Site may contain links to third-party websites. If you follow these links, you should review their privacy policies, as we are not responsible for the privacy practices of external sites.

 

Contact Information

For any questions about this Privacy Policy, please contact us by e-mail at [email protected].