Privacy policy

PC36 Privacy Policy

Last updated: 04/10/2025

PC36 LTD (“PC36”, “we”, “us”, “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, and protect your personal information when you visit our website, purchase products (physical or digital), contact our support team, or otherwise interact with us.

1. Who We Are (Data Controller)

The data controller is PC36 LTD, a company registered in the United Kingdom. If you have questions or wish to exercise your data rights, contact us at info@pc36.co.uk.

2. Personal Data We Collect

We collect the following categories of personal data, depending on how you interact with us:

  • Identity & Contact Data: name, email address, phone number, billing/shipping addresses, account details.
  • Order & Transaction Data: products purchased (including digital guides), order history, warranty/return requests, limited payment metadata (note: full payment details are processed by our payment providers).
  • Customer Support Data: messages sent via email, contact forms, and live chat; troubleshooting details (including system information you choose to provide).
  • Marketing & Communications Data: newsletter sign-ups, marketing preferences, campaign interactions.
  • Device/Usage Data: IP address, device/browser type, pages viewed, time on site, referral URLs, and similar analytics data (e.g., from Google Analytics, Meta Pixel, YouTube embeds, Hotjar or similar tools).
  • Cookies & Similar Technologies: small files placed on your device to operate our site and understand performance. See “Cookies” below.

3. How We Use Your Data (Purposes & Legal Bases)

We process personal data only where we have a lawful basis under UK GDPR:

  • To provide our services and fulfil contracts (Article 6(1)(b)): processing orders and payments, delivering goods, providing digital access, handling returns/warranty, and customer support.
  • For our legitimate interests (Article 6(1)(f)): improving our website and services, fraud prevention and network security, diagnostics and analytics, protecting our legal rights, and communicating service-related updates. We balance these interests against your rights.
  • With your consent (Article 6(1)(a)): sending marketing emails/newsletters, using non-essential cookies/analytics/advertising pixels, and any other processing you explicitly agree to. You may withdraw consent at any time.
  • To comply with legal obligations (Article 6(1)(c)): tax, accounting, and consumer protection requirements.
  • Vital interests (Article 6(1)(d)), only if strictly necessary (rare).

4. Sharing Your Data

We do not sell your personal data to data brokers. We share data only with essential service providers and partners who help us run our business, including:

  • E-commerce & Hosting: Shopify (store hosting, order processing).
  • Payments: Shopify Payments, Stripe, PayPal, Klarna or similar (they process your payment data directly).
  • Delivery & Logistics: couriers and postal services to deliver your orders and manage returns/warranty shipments.
  • Marketing & Communications: email service providers (e.g., Klaviyo/Mailchimp or equivalent), live-chat providers, CRM/support tools.
  • Analytics & Advertising: Google Analytics, Meta (Facebook) Pixel, TikTok Pixel, YouTube/video embeds, Hotjar or similar tools.
  • Warranty/OEM Support: component manufacturers when assisting with warranty claims.
  • Professional Services & Compliance: accountants, auditors, legal advisers where necessary.

These providers act as processors or independent controllers, as applicable, and are bound by contracts and/or their own privacy terms. We may also disclose data where required by law or to protect our rights, users, or the public.

5. International Transfers

Some service providers may process data outside the UK (e.g., EU/EEA, US, Canada). Where transfers occur, we use appropriate safeguards such as adequacy regulations (UK-approved countries), the UK International Data Transfer Agreement (IDTA), or the EU Standard Contractual Clauses with UK Addendum, as applicable, to protect your data.

6. Data Retention

We keep personal data only as long as necessary for the purposes set out above:

  • Orders & invoices: typically retained for 7 years for tax/accounting/legal purposes.
  • Customer support & live chat logs: typically retained for up to 24 months from last interaction.
  • Marketing data: retained until you unsubscribe or after a period of 24 months of inactivity.
  • Website analytics: retained in accordance with our analytics providers’ default or configurable periods.

We may retain data longer if required by law or to establish, exercise, or defend legal claims.

7. Cookies

We use cookies and similar technologies for site functionality, performance, and analytics. Where required, we obtain your consent for non-essential cookies. You can manage cookies via your browser settings and (where available) our cookie banner/preferences.

8. Your Rights

Under UK GDPR you have the following rights, subject to conditions and exemptions:

  • Access – request a copy of your personal data.
  • Rectification – correct inaccurate or incomplete data.
  • Erasure – ask us to delete your data (where we have no legal basis to keep it).
  • Restriction – request limited processing in certain circumstances.
  • Portability – receive your data in a structured, commonly used format and/or request we transfer it to another controller.
  • Object – object to processing carried out under our legitimate interests or for direct marketing.
  • Withdraw consent – where processing is based on consent (e.g., marketing cookies), you can withdraw it at any time.

To exercise your rights, contact us at info@pc36.co.uk. We may need to verify your identity. We aim to respond within one month.

9. Security

We implement appropriate technical and organisational measures to protect personal data (e.g., encryption in transit, access controls, least-privilege practices). However, no method of transmission over the internet is 100% secure.

10. Children

Our website and services are not intended for children under 13. We do not knowingly collect personal data from children under 13. If you believe a child has provided us with personal data, please contact us and we will take appropriate steps. Individuals aged 13–18 should use the site with the consent and supervision of a parent/guardian where required by law.

11. Links to Third-Party Sites

Our website may contain links to third-party websites and services. We are not responsible for their privacy practices. We encourage you to review their privacy policies.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes to our practices or legal requirements. The updated version will be posted on this page with a new “Last updated” date.

13. Contact & Complaints

If you have questions or concerns about this Policy or how we handle your data, contact: info@pc36.co.uk.

You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO): ico.org.uk.