Privacy Policy

Last Updated: 19th June 2025 GDPR Compliant

Introduction

At Cantimeado, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or interact with us.

This policy applies to all information collected by Cantimeado through our website (cantimeado.com), email communications, and other digital or offline interactions.

Information We Collect

Personal Information

We may collect personal information that you voluntarily provide to us when you:

  • Register for our newsletter
  • Contact us through our contact form
  • Place an order for our products
  • Participate in surveys or promotions
  • Apply for employment with us

This information may include:

  • Name and contact information (email address, phone number, postal address)
  • Company information (if applicable)
  • Payment information (processed securely through third-party providers)
  • Communication preferences
  • Any other information you choose to provide

Automatically Collected Information

When you visit our website, we may automatically collect certain information, including:

  • IP address and location data
  • Browser type and version
  • Device information
  • Pages visited and time spent on our site
  • Referring websites
  • Cookies and similar tracking technologies

How We Use Your Information

We use the information we collect for the following purposes:

Service Provision

  • Process and fulfil orders
  • Provide customer support
  • Respond to enquiries and communications
  • Deliver newsletters and marketing communications (with consent)

Business Operations

  • Improve our website and services
  • Analyse website usage and performance
  • Prevent fraud and ensure security
  • Comply with legal obligations

Marketing and Communications

  • Send promotional emails about new products and offers (with consent)
  • Personalise your experience on our website
  • Conduct market research and analysis

Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

  • Consent: When you provide explicit consent for specific processing activities
  • Contract: When processing is necessary to fulfil a contract with you
  • Legitimate Interest: When we have a legitimate business interest that doesn't override your privacy rights
  • Legal Obligation: When we must process data to comply with legal requirements

Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:

Service Providers

We may share information with trusted third-party service providers who assist us in operating our website, conducting business, or serving our customers, including:

  • Payment processors
  • Shipping and logistics companies
  • Email marketing platforms
  • Website analytics providers
  • Customer support tools

Legal Requirements

We may disclose your information when required by law or to:

  • Comply with legal processes or government requests
  • Protect our rights and property
  • Prevent fraud or security threats
  • Protect the safety of our users and the public

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your browsing experience. For detailed information about our cookie practices, please see our Cookie Policy.

Data Security

We implement appropriate technical and organisational security measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • Encryption of sensitive data in transit and at rest
  • Regular security assessments and updates
  • Access controls and staff training
  • Secure payment processing through certified providers

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Specific retention periods include:

  • Customer data: Retained for the duration of the customer relationship plus 7 years
  • Marketing data: Retained until you withdraw consent or for 3 years of inactivity
  • Website analytics: Retained for 26 months
  • Support enquiries: Retained for 3 years after resolution

Your Rights Under GDPR

As a data subject, you have the following rights regarding your personal information:

  • Right of Access: Request copies of your personal data
  • Right of Rectification: Request correction of inaccurate or incomplete data
  • Right of Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Request limitation of processing under certain circumstances
  • Right to Data Portability: Request transfer of your data in a structured format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent for processing at any time

To exercise any of these rights, please contact us using the information provided below. We will respond to your request within one month.

International Data Transfers

Your personal information may be transferred to and processed in countries other than your country of residence. When we transfer data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, including:

  • Adequacy decisions by the European Commission
  • Standard contractual clauses
  • Binding corporate rules
  • Certification schemes

Children's Privacy

Our services are not directed to children under the age of 16. We do not knowingly collect personal information from children under 16. If you become aware that a child has provided us with personal information, please contact us immediately, and we will take steps to remove such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Sending an email notification to registered users
  • Displaying a prominent notice on our website

Your continued use of our services after any changes indicates your acceptance of the updated Privacy Policy.

Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Data Protection Officer

Cantimeado Ltd
42 Eco Street, Green Quarter
London SW1A 1AA, United Kingdom

Email: [email protected]
Phone: +44 20 7946 0958

Supervisory Authority

If you believe we have not addressed your concerns adequately, you have the right to lodge a complaint with the UK's Information Commissioner's Office (ICO):

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire SK9 5AF
Website: ico.org.uk