Delivery

Account

Basket

Privacy Policy

Last updated: March 2026

At AllSweets.co.uk we are committed to protecting your privacy and handling your personal data securely and responsibly. This policy explains what personal data we collect, how we use it, and your rights under the UK General Data Protection Regulation (UK GDPR).

1. Who We Are

AllSweets.co.uk is operated by All Sweets Ltd (“we”, “us”, “our”).
Website: https://allsweets.co.uk
Email: clarestephworld@aol.com
Registered address: The Brew House, Winterbourne Abbas, 
Dorset, DT2 9LU

We are the data controller responsible for your personal information.

2. What Personal Data We Collect

We collect data in several ways when you use our website:

2.1 Data you provide directly

  • Account information (name, email, password)
  • Checkout details (name, billing/shipping address, phone number, email)
  • Order information (products purchased, delivery instructions)
  • Payment details (processed securely by our payment provider — we never store card numbers)
  • Contact form submissions
  • Newsletter sign‑up details
  • Reviews, comments, or uploaded media

2.2 Data collected automatically

When you browse or interact with our website, we may automatically collect:

  • IP address
  • Browser type and version
  • Device type
  • Pages visited
  • Time spent on the website
  • Referring URL
  • Cookies and tracking technologies

This helps us improve the website and detect fraud or unusual activity.

2.3 Cookies

We use cookies to:

  • Enable the checkout and shopping basket
  • Remember your preferences
  • Keep your account logged in
  • Track website analytics
  • Support marketing and advertising

You can manage cookies in your browser settings or via our cookie banner.

2.4 Uploaded Images

If you upload images (such as product reviews), avoid uploading images with embedded location (EXIF) data. Visitors may be able to extract this information.

3. How We Use Your Data

We may use your personal information to:

3.1 Provide and manage our services

  • Process and fulfil your orders
  • Deliver items to your chosen address
  • Manage your account
  • Provide customer support
  • Respond to enquiries

3.2 Payment processing

Payments are processed securely by third‑party providers such as Stripe or PayPal (confirm which you use and I’ll update this section precisely).

These providers handle card information and comply with PCI‑DSS requirements. We do not store full card details.

3.3 Website analytics & performance

We may use services such as:

  • Google Analytics
  • Meta Pixel (Facebook/Instagram analytics)
  • Hotjar or similar behaviour‑tracking tools

These tools help us understand visitor behaviour and improve website performance.

3.4 Marketing

If you opt in, we may send:

  • Email newsletters
  • Promotions and special offers
  • Abandoned basket reminders (if you have given consent or purchased before)

You can unsubscribe at any time.

3.5 Security & fraud prevention

We may use automated tools (such as spam filters or fraud detection systems) to protect our website and users.

4. Embedded Content

Pages on this website may include embedded content (videos, images, social feeds).
Embedded content behaves the same as if you visited the other website and may:

  • Collect data
  • Use cookies
  • Track your interactions

These services have their own privacy policies.

5. Who We Share Your Data With

We only share your data when necessary to operate our business:

  • Payment processors (e.g. Stripe, PayPal)
  • Delivery partners (Royal Mail, DPD, etc.)
  • Email marketing platforms (e.g. Mailchimp, Klaviyo)
  • Website hosting provider
  • Analytics providers
  • Spam/fraud detection services

We do not sell your data to third parties.

If you request a password reset, your IP address may appear in the reset email for security.

6. How Long We Keep Your Data

We keep personal data only for as long as needed:

  • Order records: 6 years (legal/tax requirements)
  • Customer accounts: until you ask us to delete them
  • Email marketing: until you unsubscribe
  • Comments/reviews: indefinitely unless you request removal
  • Analytics data: in accordance with provider retention settings

7. Your Rights (UK GDPR)

You have the right to:

  • Request a copy of the data we hold about you
  • Ask us to correct inaccurate information
  • Request erasure of your data (“right to be forgotten”)
  • Object to certain types of processing
  • Withdraw consent at any time
  • Request data portability
  • Opt out of marketing emails
  • Make a complaint to the ICO (Information Commissioner’s Office)

To exercise these rights, email us at clarestephworld@aol.com.

8. Where Your Data Is Stored

Your data may be processed or stored:

  • On secure UK or EU servers
  • By trusted third‑party providers who comply with UK data protection law

Some providers may store data outside the UK/EU, but only where appropriate safeguards (such as Standard Contractual Clauses) are in place.

9. Automated Decision-Making

We may use automated systems for:

  • Spam detection
  • Fraud detection
  • Recommendation engines (e.g. related products)

You can request human review of any automated decisions affecting you.

10. Changes to This Policy

We may update this privacy policy from time to time. The latest version will always be available on this page.

0
Your Cart
Your cart is emptyReturn to Shop
Shipping, taxes, and discounts calculated at checkout.
Continue Shopping