Privacy Policy — Medici Books

This Privacy Policy explains how Medici Books collects, uses, and protects your personal information when you visit our website or make a purchase.

We are committed to complying with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR).

1. Who We Are

Medici Books is an independent bookstore based in the United Kingdom and is the data controller for your personal information.

Contact: medicibooks.mail@gmail.com

2. Information We Collect

We may collect:

  • Name
  • Billing and shipping address
  • Email address
  • Phone number (if provided)
  • Order history
  • Payment details (processed securely through Shopify and payment providers; we do not store full card details)
  • Website usage data, including cookies and analytics information

3. How We Use Your Information

We use your information to:

  • Process and deliver orders
  • Provide customer support
  • Send order updates
  • Improve our website and services
  • Prevent fraud and abuse
  • Comply with legal obligations

We do not sell your personal information to third parties.

4. Lawful Basis for Processing

We process personal data under one or more of the following lawful bases:

  • Contract fulfilment (processing and delivering orders)
  • Legal obligations (tax, accounting, and regulatory requirements)
  • Legitimate interests (website improvement, customer service, and fraud prevention)
  • Consent (marketing communications and non-essential cookies)

5. Cookies Policy

Our website uses cookies to operate correctly and improve your browsing experience.

Essential Cookies

Required for website functionality such as:

  • Shopping cart operation
  • Checkout functionality
  • Security features

Analytics Cookies

Used to understand website performance and visitor behaviour (e.g. Shopify analytics). These are only used with consent where required.

Marketing Cookies

Used for advertising or remarketing and only activated with your consent.

Cookie Consent

In accordance with PECR, we request consent before placing non-essential cookies. You can accept, reject, or change preferences at any time.

6. Sharing Your Information

We only share personal information with trusted service providers, including:

  • Shopify (ecommerce platform)
  • Payment providers (Stripe, PayPal, Shopify Payments)
  • Delivery and logistics providers
  • Analytics and marketing providers (where consent is given)

These providers may only use your data to perform services on our behalf.

7. Data Storage and Security

Your information is stored securely through Shopify and protected using appropriate technical and organisational measures.

Your information may be processed or stored outside the United Kingdom, including by Shopify and other service providers. Where this occurs, appropriate safeguards are used.

While no system is completely secure, we take reasonable steps to protect your data.

8. Your Rights

You have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion where legally applicable
  • Object to certain processing
  • Withdraw consent at any time

To exercise these rights, contact: medicibooks.mail@gmail.com

9. Data Retention

We retain personal data only as long as necessary to:

  • Fulfil orders
  • Meet legal obligations
  • Resolve disputes
  • Enforce agreements

10. Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page.

11. Contact Us

Medici Books
Email: medicibooks.mail@gmail.com
Telephone: 07575343053