Privacy Policy

This Privacy Policy explains how Storica (storica.co.uk) collects, uses, discloses and protects your personal information when you visit our website, contact us, or purchase our products. It is written to reflect the UK GDPR and the Data Protection Act 2018. This document is a helpful template and does not constitute legal advice.

1) Who we are (Data Controller)

MGBC SRL 
Grand'route de Mons, 64 
7334, Hautrage
Belgium

2) What data we collect

  • Identity & Contact Data – name, email address, telephone, billing and delivery addresses.
  • Order & Transaction Data – items purchased, order notes, prices, payment status, refunds, and delivery information.
  • Payment Data – processed securely by our payment providers (we do not store full card details).
  • Communications – messages you send us (email, forms, social media), product reviews and survey responses.
  • Technical Data – IP address, device and browser type, operating system, pages viewed, cookies and similar identifiers.
  • Marketing Preferences – your choices for receiving marketing emails or SMS.

3) How we use your data & legal bases

  • To process and deliver your orders (create account, take payment, provide invoices, arrange shipping) – performance of a contract.
  • Customer support and to respond to enquiries, returns and refunds – performance of a contract / legitimate interests.
  • Fraud prevention and securitylegitimate interests / legal obligations.
  • Website operation, analytics and improvementslegitimate interests (to run our business and improve our services).
  • Marketing messages (email/SMS) where permitted – consent or soft opt-in for existing customers; you can opt out at any time.
  • Legal compliance – tax, accounting and consumer law obligations – legal obligations.

4) Cookies & similar technologies

We use cookies to make our site work, remember your basket, analyse traffic and, where consented, personalise marketing. You can manage preferences via your browser settings and our cookie banner. For more information, see our Cookies Policy.

5) Sharing your data

We share data only with trusted providers necessary to run our shop, for example:

  • E-commerce platform & hosting (storefront, checkout, order management)
  • Payment processors (secure card and wallet payments)
  • Fulfilment & couriers (dispatch within 24–48 hours; delivery in 5–9 working days)
  • Email/SMS services (order updates and opted-in marketing)
  • Analytics & advertising partners (cookies/IDs where permitted)
  • Professional advisers (accountants, legal) and authorities where required by law

These partners act as processors or independent controllers. Where they act as processors, they are bound by contracts to protect your data.

6) International transfers

We are based in Hong Kong and some of our service providers are located outside the UK. When personal data is transferred internationally, we use appropriate safeguards such as the UK International Data Transfer Agreement (IDTA) or UK Addendum to the EU Standard Contractual Clauses, together with technical and organisational measures to protect your information.

7) Data retention

We keep your data only for as long as necessary for the purposes set out in this policy:

  • Orders and invoices: generally up to 7 years for tax/accounting.
  • Customer service records: up to 3 years after the last interaction.
  • Marketing data: until you opt out or your consent is withdrawn.
  • Cookies/analytics: as per our Cookies Policy and provider settings.

8) Your rights (UK GDPR)

Subject to conditions and exemptions, you have the right to:

  • Access your personal data
  • Rectify inaccurate or incomplete data
  • Erase data (“right to be forgotten”)
  • Restrict processing
  • Data portability
  • Object to processing based on legitimate interests or to direct marketing
  • Withdraw consent at any time where processing is based on consent
  • Lodge a complaint with the UK Information Commissioner’s Office (ICO) at ico.org.uk

To exercise your rights, email us at contact@storica.co.uk. We may need to verify your identity before responding.

9) Security

We implement appropriate technical and organisational measures to protect your data, including encryption in transit (HTTPS), access controls and staff awareness. No method of transmission or storage is 100% secure; we continually review our practices.

10) Children

Our website is not intended for children under 13. We do not knowingly collect data from children. If you believe a child has provided personal data, please contact us and we will delete it.

11) Third-party links

Our website may contain links to third-party sites. We are not responsible for their privacy practices. We encourage you to read their policies.

12) Changes to this Policy

We may update this Privacy Policy from time to time. The latest version will always be available at storica.co.uk with the date shown at the top. Significant changes may be notified by email or on-site notice.

13) Contact us

If you have any questions about this Policy or how we handle your data, please contact:
Email: contact@storica.co.uk