Privacy Policy

This Privacy Policy describes Our policies and procedures on the collection, use, and disclosure of Your information when You use the Service and tells You about Your privacy rights and how the law protects You.

We use Your Personal Data to provide and improve the Service. By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy. This Privacy Policy was generated by TermsFeed and fine-tuned by Sharetribe.

Please read this Privacy Policy carefully before using Our Service.

1 - Interpretation and Definitions 1.1 - Interpretation The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in the singular or in the plural.

1.2 - Definitions For the purposes of this Privacy Policy:

Account means a unique account created for You to access our Service or parts of our Service.

Affiliate means an entity that controls, is controlled by, or is under common control with a party, where "control" means ownership of 50% or more of the shares, equity interest, or other securities entitled to vote for the election of directors or other managing authority.

Application means the software program provided by the Company or Operator downloaded by You on any electronic device, named PramTraders.

Business refers to the Company as the legal entity that collects Consumers' personal information and determines the purposes and means of processing it.

Company (referred to as "the Company", "We", "Us" or "Our") refers to PRAMTRADERS LTD, Springwell Court, Unit 1, LS12 1AL, United Kingdom, Company Number: 16578890. For the purpose of the UK GDPR, the Company is the Data Controller.

Consumer refers to You.

Cookies are small files that are placed on Your computer, mobile device, or any other device by a website, containing details of Your browsing history on that website.

Country refers to the United Kingdom.

Data Controller refers to the Company as the legal person which alone or jointly with others determines the purposes and means of the processing of Personal Data.

Device means any device that can access the Service such as a computer, a cellphone, or a digital tablet.

Do Not Track (DNT) is a concept promoted by regulatory authorities to allow internet users to control tracking of their online activities.

Operator refers to PRAMTRADERS LTD. For the purpose of the UK GDPR, the Company is the Data Controller.

Personal Data is any information that relates to an identified or identifiable individual.

Sale means selling, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating a Consumer's personal information to another business or third party for monetary or other valuable consideration.

Service refers to the Application or the Website or both.

Service Provider means any natural or legal person who processes the data on behalf of the Company.

Technical Identifiers means non-personal device and connection characteristics that We collect and store only in hashed (cryptographically transformed and non-reversible) form, including a hash of Your IP address and a hash of stable browser characteristics such as user agent, screen size, time zone, language, and platform.

Third-party Social Media Service refers to any website or social network through which a User can log in or create an account to use the Service.

Usage Data refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself.

Website refers to PramTraders, accessible from https://pramtraders.co.uk.

You means the individual accessing or using the Service, or the company on behalf of which such individual is accessing or using the Service.

2 - Contact Us If you have any questions about this Privacy Policy, You can contact us:

By email: info@pramtraders.co.uk

By visiting this page on our website: https://pramtraders.co.uk/contact

3 - Collecting and Using Your Personal Data 3.1 - Types of Data Collected 3.1.1 - Personal Data We may ask You to provide personally identifiable information, including:

Email address First name and last name Phone number Address, City, Postal code, Country Bank account information Credit card number and expiration date Usage Data 3.1.2 - Usage Data Collected automatically when using the Service, including IP address, browser type, pages visited, time spent, unique device identifiers, and mobile device information.

In addition, where We need to detect and prevent fraud, account-takeover, and ban evasion, We collect and store Technical Identifiers (as defined in §1.2). We never store Your raw IP address or raw browser characteristics for this purpose — only an irreversible cryptographic hash of them. The hash is computed using a server-side secret salt that We do not share. Section 4.6 describes this in more detail.

3.1.3 - Information from Third-Party Social Media Services We may collect data from accounts like Google, Facebook, Twitter, LinkedIn, and Apple.

3.1.4 - Tracking Technologies and Cookies We use Cookies, Web Beacons, and similar technologies for analytics, authentication, and personalized advertising.

3.2 - Use of Your Personal Data We may use Your Personal Data to:

Provide, maintain, and improve the Service Manage Your Account Contact You with updates, offers, or relevant information Deliver targeted advertising Prevent fraud, abuse, ban evasion, and other unlawful activity on the Service, and protect Our users, partners, and the integrity of the platform Conduct business transfers Other business purposes like analytics and service improvement 3.3 - Retention of Your Personal Data We retain Personal Data only as long as necessary for legal obligations, dispute resolution, and contractual enforcement.

Technical Identifiers used for fraud prevention are retained for a maximum of twelve (12) months from the most recent use of Your Account, after which they are automatically considered expired and excluded from any future fraud-prevention matching. Hashes that are linked to an account banned or removed for suspected fraud may be retained beyond this period where necessary to protect Our users and the platform.

3.4 - Transfer of Your Personal Data Your data may be processed in the UK or other countries. We ensure adequate protections are in place.

3.5 - Delete Your Personal Data You can request deletion via Your Account settings or by contacting Us. When You delete Your account, We instruct Our marketplace platform to permanently remove Your personal data on Our behalf in line with the rules set out in this Policy and applicable law.

3.6 - Disclosure of Your Personal Data We may disclose Your data to service providers, business partners, affiliates, or for legal reasons as necessary.

3.7 - Security of Your Personal Data We use commercially acceptable methods to protect Your data, but cannot guarantee 100% security.

For Technical Identifiers collected for fraud prevention, We never store the raw underlying values (such as Your actual IP address or the actual properties of Your browser). We compute and store only a one-way cryptographic hash, salted with a server-side secret. This means the underlying values cannot practically be derived from Our records, even by Us, while still allowing Us to detect when the same device or connection is associated with a previously banned account.

4 - Detailed Information on the Processing of Your Personal Data 4.1 - Analytics Services like Google Analytics, Matomo, and Fathom are used for traffic analysis.

4.2 - Email Marketing We may send emails via providers such as Resend or Mailchimp. You can opt out of marketing emails at any time via the unsubscribe link in each marketing email or from Your Account settings. Transactional emails (such as order confirmations, shipping updates, and account-related notifications) are sent regardless of marketing preferences as they are necessary to provide the Service.

4.3 - Payments Payment processing is done through Stripe or PayPal.

4.4 - Behavioral Remarketing Third-party vendors may use cookies and other technologies to provide targeted ads.

4.5 - Usage, Performance and Miscellaneous Other third-party providers may include Intercom, Facebook Messenger, Zendesk, and Tawk.

4.6 - Fraud Prevention and Platform Safety To protect Our users and the integrity of the marketplace, We collect and process a limited set of Technical Identifiers when You sign in or use the Service. Specifically:

A salted hash of Your IP address, computed server-side. We do not store the raw IP address. A salted hash of stable browser and device characteristics (such as user agent, screen dimensions, time zone, language, and platform), computed in Your browser before transmission. We do not store the underlying values, only the resulting hash. These identifiers are used solely for the following purposes:

detecting attempts to evade an account ban, suspension, or removal by registering a new account; detecting account-takeover and other suspicious access patterns; preventing fraud, abuse, and other unlawful use of the Service. Where We detect a strong match between a newly created account's Technical Identifiers and those associated with a previously banned or removed account, We may automatically restrict that new account's ability to use the Service, pending review by a member of Our team. Weaker matches do not result in automatic restrictions; they are recorded so an authorised member of Our team can review them where appropriate.

Our legal basis for this processing is Our legitimate interest in protecting Our users, Our service providers (including payment partners), and the platform itself from fraud, abuse, and unlawful activity, balanced against Your right to privacy. You may at any time object to this processing by contacting us at info@pramtraders.co.uk.

5 - Links to Other Websites We are not responsible for third-party websites linked from our Service.

6 - GDPR Privacy You have rights under the UK GDPR including access, correction, deletion, data portability, and withdrawing consent.

The lawful bases on which We rely to process Your Personal Data are:

Performance of a contract — where the processing is necessary to provide the Service You have requested. Consent — for marketing communications and similar non-essential processing. You can withdraw consent at any time. Legal obligation — where We are required by law to process Your data (e.g. tax, anti-money-laundering). Legitimate interests — including, but not limited to, fraud prevention, abuse detection, account-takeover protection, ban evasion detection, and the safety and integrity of the Service. We have considered the impact of this processing on Your rights and freedoms and apply minimisation (such as hashing Technical Identifiers) to reduce the impact. You have the right to object to processing based on legitimate interests. To do so, please contact us at info@pramtraders.co.uk.

7 - CCPA, CalOPPA, and California Privacy Rights We comply with CCPA for California residents. You have rights to notice, request, deletion, and opting out of sale of your personal information.