Privacy Policy – RichardLister.com
1. Introduction
This privacy notice explains how we collect, use, and protect your personal data when you use our website www.richardlister.com, including any information you provide when you:
purchase a product or service,
sign up to our newsletter, or
take part in a competition, giveaway, or promotion.
By providing us with your personal data, you confirm that you are aged 13 or over.
Data Controller: Richard Lister trading as RichardLister.com (“we”, “us”, or “our”).
Contact details:
Email: rich@richardlister.com
Postal address: 769 Fareham, PO14 9TR
If you are unhappy with how we handle your data, you have the right to complain to the Information Commissioner’s Office (ICO) at www.ico.org.uk. We would appreciate the chance to resolve any concerns before you approach the ICO.
It is important that your personal data is accurate and up to date. Please let us know if your details change by emailing rich@richardlister.com.
2. Data We Collect
Personal data means information that can identify you. It does not include anonymised data.
We may collect and process:
Identity Data: name, username, title, date of birth, gender.
Contact Data: billing address, delivery address, email address, phone number.
Financial Data: bank details, payment card details.
Transaction Data: details of payments and purchases.
Technical Data: IP address, browser type, time zone, device type, operating system.
Profile Data: account logins, purchase history, preferences, feedback.
Usage Data: how you use our website, products, and services.
Marketing Data: your marketing preferences.
We do not collect special category data (e.g., health, beliefs) or criminal records.
If we require data by law or contract and you do not provide it, we may not be able to provide the service requested.
3. How We Collect Data
We collect your data in three ways:
Direct interactions – when you:
place an order,
create an account,
subscribe to our newsletter,
request marketing,
enter a competition,
provide feedback.
Automated technologies – cookies, server logs, analytics tools (see Cookie Policy for details).
Third parties:
Analytics: Google Analytics (outside UK)
Email marketing: Mailchimp (USA)
Payment and delivery services: Squarespace, PayPal, Braintree (USA)
Public records: Companies House, Electoral Register (UK)
Our store is hosted on Squarespace. They securely store your data. Payments via Braintree are encrypted under PCI-DSS standards.
4. How We Use Your Data
We process personal data only when lawful under UK GDPR:
Contract: to fulfil an order or provide a service.
Legitimate interests: to run our business, provided your rights are not overridden.
Legal obligation: to comply with UK law.
Consent: for marketing communications (can be withdrawn at any time).
We use your data to:
process orders,
manage payments,
provide customer support,
send marketing (if opted in),
improve our website and services,
comply with legal duties.
Marketing will only be sent if you have opted in or purchased from us and not opted out.
5. Sharing Your Data
We may share your personal data with:
IT and hosting providers,
professional advisers,
HMRC and UK regulators,
third parties in the event of a sale or merger.
All parties must keep your data secure and process it only under our instructions.
6. International Transfers
Some service providers are outside the UK (e.g., USA). We ensure appropriate safeguards such as:
UK adequacy regulations, or
International Data Transfer Agreements (IDTAs), or
Standard Contractual Clauses (SCCs).
7. Data Security
We protect your personal data with security measures to prevent loss, misuse, or unauthorised access. Payment data is encrypted with SSL and stored to PCI-DSS standards.
8. Data Retention
We retain your personal data only as long as necessary. By law, we keep basic customer data for six years after you stop being a customer (for tax purposes).
We may anonymise data for research, which is then not treated as personal data.
9. Your Rights
Under UK GDPR, you have the right to:
access your personal data,
correct inaccuracies,
request deletion,
object to processing,
restrict processing,
request data transfer,
withdraw consent.
See the ICO’s guide: https://ico.org.uk/your-data-matters/
To exercise your rights, email rich@richardlister.com.
10. Third-Party Links
Our site may include links to other sites. We are not responsible for their privacy policies.
11. Cookies
We use cookies. See our Cookie Policy for details.
Last updated: [Insert Date]
Cookie Policy – RichardLister.com
1. What Are Cookies?
Cookies are small text files placed on your device to store information and improve your browsing experience.
2. Types of Cookies We Use
Strictly Necessary – required for the site to function (e.g., basket, login).
Performance/Analytics – help us understand how the site is used (e.g., Google Analytics).
Functionality – remember your preferences (e.g., location, language).
Marketing/Advertising – track browsing to display relevant ads.
3. Examples of Cookies We Use
Cookie NamePurposeProviderExpiryTypeXSRF-TOKENSession securitySquarespaceSessionNecessary_ga, _gidAnalytics trackingGoogle Analytics2 years / 1 dayAnalyticsss_cidVisitor ID trackingSquarespace2 yearsAnalyticsmailchimp_landing_siteTracks newsletter sign-up originMailchimp1 monthMarketing
(Your actual list may vary — you should confirm via Squarespace or a cookie scan.)
4. Managing Cookies
When you first visit, you’ll see a cookie banner asking for consent to non-essential cookies.
You can control cookies in your browser:
Chrome: Manage cookies
Firefox: Manage cookies
Safari: Manage cookies
Edge: Manage cookies
Blocking cookies may affect site functionality.
5. Third Parties That Set Cookies
Squarespace – hosting and e-commerce
Google Analytics – site analytics
Mailchimp – email marketing
Braintree / PayPal – payment processing
6. Changes to This Policy
We may update this policy. Please check regularly for updates.
Last updated: 15-8-2025