Privacy Policy & Use of Cookies

Effective Date: 1st November 2025

1. Introduction

Welcome to Perkatory Coffee. We are committed to protecting your privacy and handling your personal data in an open and transparent manner.

This policy, which sits alongside our Cookie Policy (detailed below), explains how we collect, use, store, and share your personal data when you use our website, purchase goods from us, or interact with us in other ways.

We are the data controller for the personal information we process, and our details are provided at the end of this policy.

2. The Personal Data We Collect

We collect and process various types of personal data to operate our e-commerce site and fulfil your orders. This typically includes:

  • Identity Information: Name and title.

  • Contact Information: Billing address, delivery address, email address, and telephone number.

  • Account Information: Username and password details for your online account.

  • Financial & Transaction Information: Bank account and payment card details, and details about payments to and from you, as well as details of the goods and services you have purchased.

  • Marketing & Communications Information: Your preferences in receiving marketing from us and our third parties, and your communication preferences.

  • Technical Information: Internet protocol (IP) address, browser type and version, time zone setting and location, operating system and platform, and other technology on the devices you use to access our website.

  • Usage Data: Information about how you use our website pages, products, and services (e.g., pages visited, average time on site).

We do not collect "special categories" of sensitive personal data (such as information about race, religion, or health).

3. How We Collect Your Data

We collect data in the following ways:

  • Direct Interactions: You provide data when you create an account, place an order, subscribe to our newsletter, provide feedback, or contact us.

  • Automated Technologies or Interactions: As you interact with our website, we may automatically collect Technical Information and Usage Data using cookies and other similar technologies (see the Cookie Policy section below).

  • Third Parties: We may receive personal data from third parties such as analytics providers (e.g., Google Analytics), advertising networks, and payment processors (e.g., PayPal, Stripe).

4. How and Why We Use Your Data (Lawful Basis for Processing)

We will only use your personal data when the law allows us to. We rely on the following legal bases for processing your data:

We will only use your personal data when the law allows us to. We rely on the following legal bases for processing your data:

  1. Purpose of Use - To process and deliver your orders, manage payments, fees, and charges

    Type of Data Used

    Identity, Contact, Financial, Transaction

    Lawful Basis

    Contractual Obligation: Necessary for us to fulfil the contract we have with you.

  2. Purpose of Use - To manage your account and provide customer services

    Type of Data Used

    Identity, Contact, Account, Transaction

    Lawful Basis

    Contractual Obligation and/or Legitimate Interests (providing good customer service).

  3. Purpose of Use - To manage our relationship with you

    Type of Data Used

    Identity, Contact, Marketing, Communication

    Lawful Basis

    Legitimate Interests (keeping our records updated, developing our products/services).

  4. Purpose of Use - To enable you to participate in a competition or complete a survey

    Type of Data Used

    Identity, Contact Survey

    Lawful Basis

    Consent (if required) or Legitimate Interests (running our business).

  5. Purpose of Use - To administer and protect our business and website (including troubleshooting, data analysis, testing, system maintenance, support, reporting, and hosting of data)

    Type of Data Used

    Technical, Identity, Contact

    Lawful Basis

    Legitimate Interests (running our business, preventing fraud, network security) and Legal Obligation (complying with the law).

  6. Purpose of Use - To deliver relevant website content and advertisements to you and measure their effectiveness

    Type of Data Used

    Technical, Usage, Marketing

    Lawful Basis

    Consent (for non-essential cookies/marketing) or Legitimate Interests (studying how customers use our products/services).

  7. Purpose of Use - To make suggestions and recommendations to you about goods or services that may interest you

Type of Data Used

Identity, Contact, Usage, Marketing

Lawful Basis

Legitimate Interests (developing our products/services, growing our business).

5. Sharing Your Data

We may need to share your personal data with the following parties for the purposes set out in Section 4:

  • Internal Third Parties: Other companies within our group (if applicable) who provide services such as IT and system administration.

  • External Third Parties:

    • Service providers (e.g., payment processors, delivery companies like Royal Mail/DPD, IT services).

    • Professional advisers (e.g., lawyers, accountants, insurers).

    • HM Revenue & Customs, regulators, and other authorities where required by law.

We require all third parties to respect the security of your personal data and treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

6. International Transfers

Some of our third-party service providers may be based outside the UK for example with our domain hosting providers. Whenever we transfer your personal data out of the UK, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

  • We will only transfer your data to countries that have been deemed to provide an adequate level of protection for personal data by the UK government.

  • We use specific contracts approved by the UK government which give personal data the same protection it has in the UK.

7. Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have procedures in place to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

8. Data Retention

We will only retain your personal data for as long as necessary to fulfil the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the data, the potential risk of harm from unauthorised use or disclosure, the purposes for which we process your personal data, and whether we can achieve those purposes through other means, and the applicable legal requirements.

For example, by law we have to keep basic information about our customers (including Contact, Identity, Financial, and Transaction Data) for six years after they cease being customers for tax purposes.

9. Your Legal Rights

Under the UK GDPR, you have the following rights in relation to your personal data:

  • The right to be informed about how your data is used (which we do via this policy).

  • The right of access to your personal data (commonly known as a "data subject access request").

  • The right to rectification of inaccurate or incomplete data.

  • The right to erasure of your personal data (where there is no good reason for us to continue processing it).

  • The right to restrict processing of your personal data.

  • The right to data portability (to get your data in an easily usable format).

  • The right to object to the processing of your personal data (e.g., for direct marketing purposes).

  • Rights in relation to automated decision making and profiling.

If you wish to exercise any of these rights, please contact us using the details below. You will not usually have to pay a fee to access your personal data or to exercise any of the other rights, but we may charge a reasonable fee or refuse to comply if your request is clearly unfounded, repetitive, or excessive. We try to respond to all legitimate requests within one month. Occasionally it could take us longer if your request is particularly complex or you have made a number of requests.

You also have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.

10. Contact Details

Full name of legal entity: Perkatory Coffee
Email address: privacypolicy@perkatorycoffee.co.uk
Postal address: The Barn, 3a Silver Street, Branston, Lincolnshire LN4 1LR

11. Use of Cookies

Our website uses cookies and similar technologies to improve your experience and to help us understand how our site is used.

What are Cookies?

Cookies are small text files placed on your computer or mobile device when you visit our website. They are widely used to make websites work more efficiently, as well as to provide information to the owners of the site.

How We Use Cookies

We use cookies to:

  • Remember the items in your shopping basket.

  • Keep you logged in to your account.

  • Understand how you use our site to improve the design and functionality.

  • Deliver personalised content and advertising.

Types of Cookies Used and Consent

Under UK law (PECR and UK GDPR), we must tell you about the cookies we use and get your consent for all but the most essential ones.

Category - Strictly Necessary / Essential Cookies

Purpose - These are essential for core website functions, like enabling secure login, managing your shopping cart, and processing payments. The website cannot function properly without them

Requires Consent? No

Category - Performance / Analytics Cookies

Purpose - These collect anonymous information about how visitors use our site (e.g., which pages are most popular, how they found us). This helps us improve our website and services

Requires Consent? Yes

Category - Functionality Cookies

Purpose - These remember your preferences (e.g., language or region) to provide a more personalised experience.

Required Consent? Yes

Category - Targeting / Advertising Cookies

Purpose - These are used to track browsing habits and deliver relevant advertising. They are usually set by third-party advertising networks.

Requires Consent? Yes

Third-Party Cookies

Some cookies on our site are set by third parties that provide services to us, such as Google Analytics for site usage analysis and payment providers like Stripe or PayPal. These third parties have their own privacy and cookie policies, which you should review.

Managing Your Cookie Preferences

When you first visit our site, you will see a cookie consent banner that allows you to manage your preferences. You can choose to accept all cookies, reject all non-essential cookies, or manage your preferences for each category.

You can also change your cookie preferences or withdraw your consent at any time by visiting our [Insert Link to Cookie Preference Centre/Settings] page.

Alternatively, most web browsers allow you to control cookies through their settings. You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly.

This policy was last updated on 1st November 2025.