Privacy Policy

Data Controller and Scope

BizBeeper Limited is the data controller for personal data processed through this website for ecommerce, account administration, shipping coordination and customer support functions.

Categories of Personal Data

We may process identity and contact data, billing and delivery data, order and transaction records, support correspondence, device/browser logs, fraud screening indicators and payment references. Full card credentials are processed by Stripe and are not stored in full on our servers.

Lawful Bases Under GDPR

Processing is based on one or more lawful bases, including contract performance, legal obligation, legitimate interests, and consent for optional processing where required. GDPR principles of lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, storage limitation and integrity are applied.

Purposes of Processing

Data is used to provide products and services, verify and fulfill orders, coordinate logistics, provide support, prevent abuse and fraud, maintain records, comply with legal obligations, and improve service reliability and security.

Automated Processing and Fraud Controls

Certain transactions may be screened using automated risk indicators to detect suspicious activity. Such controls are used for fraud prevention and service security and are subject to appropriate safeguards.

Data Sharing and Processors

We share data strictly as needed with payment providers, logistics partners, infrastructure vendors, analytics providers (where permitted), and professional advisers. Third parties are bound by contractual and legal data protection obligations.

International Data Transfers

If personal data is transferred across borders, we implement recognized transfer safeguards such as adequacy decisions, standard contractual protections, or equivalent lawful mechanisms required by applicable law.

Retention and Deletion

Data is retained only for as long as necessary for contractual, operational, legal, accounting, dispute and security purposes. When retention is no longer required, data is deleted, anonymized or securely archived as appropriate.

Security Measures

We apply technical and organizational security controls including least-privilege access, transport security, audit logging and administrative safeguards designed to reduce unauthorized access, alteration or disclosure.

Your GDPR Rights

Where GDPR applies, you may have rights to access, rectification, erasure, restriction, objection, portability, consent withdrawal, and rights relating to automated decision-making. We may request identity verification before fulfilling rights requests.

Children's Data

This website is intended for business and general adult purchasing use. We do not knowingly collect personal data from children in a manner requiring parental consent under applicable law.

Policy Updates and Contact

This policy may be updated periodically to reflect legal or operational changes. For privacy requests, contact [email protected]. If unresolved and GDPR applies, you may contact your relevant supervisory authority, including the UK ICO where applicable.