Skip to main content Skip to search Skip to navigation

Privacy

Data Controller

Controller: Wilson Automation and Home Solutions Ltd.
Bromborough CH62 3NX
Great Britain
Email: info@schartec.co.uk

We value your interest in our online store. Protecting your privacy is very important to us. The following information explains in detail how we process your personal data. All processing is carried out in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Access Data and Website Hosting

You can visit our website without providing any personal information. Each time you access the website, the web server automatically stores a so-called server log file that may include the name of the requested file, your IP address, the date and time of access, the amount of data transferred, and the requesting provider (access data).

These access data are processed solely for the purpose of ensuring the secure and reliable operation of the website and for improving our services. This processing is based on our legitimate interests in providing a properly functioning and optimized website, pursuant to Article 6(1)(f) UK GDPR. All access data are deleted no later than 30 days after your visit.

Hosting

The hosting and presentation services for this website are partly provided by our service providers acting on our behalf (processors). Unless otherwise specified in this Privacy Policy, all access data and any data collected through website forms are processed on their servers.

If you have any questions regarding our hosting providers or the legal basis for our cooperation with them, please contact us using the details provided in this Privacy Policy.

2. Data Processing for Contract Fulfilment and Contact

2.1 Contract Fulfilment

We collect personal data when you voluntarily provide it to us in the course of placing an order. This processing is necessary for the performance of a contract or to take steps prior to entering into a contract, pursuant to Article 6(1)(b) UK GDPR.

Mandatory fields are marked as such because we need the information to fulfil the contract and deliver your order. The specific data collected are shown in each form used.

Further details on the processing of your data, including the sharing of data with service providers for order, payment, and shipping purposes, can be found in later sections of this Privacy Policy.

Once the contract has been fully completed, your data will be restricted from further use and deleted after the applicable statutory retention periods under tax and commercial law, unless you have expressly consented to further use (Article 6(1)(a) UK GDPR) or we are legally permitted to retain them for other reasons described in this Policy.

2.2 Customer Account

If you have given your consent under Article 6(1)(a) UK GDPR by choosing to create a customer account, we will use your data to set up and manage that account, and to store your details for future orders.

You may request the deletion of your customer account at any time, either by contacting us using the details provided in this Policy or via the account settings on our website. Upon deletion, your data will be erased unless you have consented to further processing (Article 6(1)(a) UK GDPR) or we have another lawful basis for retaining it as described herein.

2.3 Contacting Us

When you contact us (for example via a contact form, live-chat tool, or email), we collect the personal data you provide voluntarily in order to handle your inquiry. This processing is based on Article 6(1)(b) UK GDPR, where it relates to pre-contractual or contractual communication.

Mandatory fields are marked as such because we need that information to respond to your query. The specific data collected are shown in the respective input forms. After your inquiry has been fully processed, your data will be deleted unless you have consented to further use (Article 6(1)(a) UK GDPR) or we are legally permitted to retain it as explained in this Policy.

3. Data Processing for the Purpose of Shipping

To fulfil our contractual obligations under Article 6(1)(b) UK GDPR, we share your personal data with the shipping company commissioned to deliver your order, to the extent necessary for delivery.

If you have any questions about our service providers or the legal basis of our cooperation with them, please contact us using the details provided in this Privacy Policy.

Sharing Data with Shipping Providers for Delivery Notifications

If you have provided your explicit consent during or after the ordering process, we may, based on your consent under Article 6(1)(a) UK GDPR, share your email address and phone number with the selected shipping provider. This allows the provider to contact you prior to delivery for the purpose of delivery notification or coordination.

You may withdraw your consent at any time by contacting us via the contact details provided in this Policy or directly with the shipping provider at the address provided below. Upon withdrawal, we will delete the data provided for this purpose unless you have explicitly consented to further processing, or unless we are legally permitted to retain it as set out in this Policy.

Shipping Providers:

  • DHL International (UK) Limited, Southern Hub, Unit 1, Horton Road, Colnbrook, Berkshire SL3 0BB

If you have questions about our shipping partners or the legal basis for our cooperation with them, please contact us using the information provided in this Policy.

4. Data Processing for Payment Handling

We work with several partners to process payments in our online store, including technical service providers, banks, and payment processors.

4.1 Processing for Transaction Handling

Depending on the payment method you select, we transfer the necessary data for processing your payment to the relevant technical service providers (acting as processors), the appointed financial institutions, or the chosen payment service provider — insofar as this is required to complete the transaction.

This processing is necessary for the performance of a contract under Article 6(1)(b) UK GDPR.
 In some cases, payment service providers collect the required data themselves, for example through their own websites or via an integrated payment interface within the checkout process. The respective payment provider’s own privacy policy applies in such cases.

If you have any questions regarding our payment partners or the legal basis of our cooperation with them, please contact us using the details provided in this Privacy Policy.

4.2 Fraud Prevention and Payment Process Optimisation

We may also share certain data with our service providers, who process these as our processors for the purpose of fraud prevention and optimisation of payment processes (e.g., billing, dispute management, accounting support).

This processing is based on our legitimate interests under Article 6(1)(f) UK GDPR in protecting our business against fraud and ensuring efficient payment management.

4.3 Identity and Credit Checks for “Buy Now, Pay Later” Options

If you choose a “Buy Now, Pay Later” payment option offered through partners such as Ratepay GmbH or PayPal (Europe) S.à r.l. et Cie, S.C.A., we will ask for your explicit consent under Article 6(1)(a) UK GDPR to share the personal data necessary for payment processing and identity/credit checks with these providers.

Ratepay may use credit reference agencies (as specified in its Privacy Policy) to obtain credit and identity information. The information received is used by Ratepay to make an informed decision regarding the initiation, execution, or termination of the contractual relationship.

You may withdraw your consent at any time by contacting us via the details in this Policy. Please note that withdrawal of consent may result in certain payment options no longer being available.

For more information on how PayPal processes your data, please visit:
 https://www.paypal.com/myaccount/privacy/privacyhub

4.4 Instalment Payment Option

If you select an instalment payment plan and provide the necessary consent under Article 6(1)(a) UK GDPR, we will share your personal data (first and last name, address, email, telephone number, date of birth, IP address, and gender) along with transaction data (product, invoice amount, due dates, total amount, invoice number, taxes, currency, order date and time) with our partner PayPal (Europe) S.à r.l. et Cie, S.C.A., for the purpose of processing the payment option.

Our partner may carry out identity and credit checks using publicly available databases and credit reference agencies. Details about the credit agencies used and PayPal’s data processing can be found in its privacy documentation at:
 https://www.paypal.com/myaccount/privacy/privacyhub

The credit information obtained is used by PayPal to make a balanced decision about establishing, continuing, or terminating a contractual relationship. You may contact PayPal directly to present your position and contest a decision.

Your consent to share this data — given during the order process — may be withdrawn at any time with future effect, without providing a reason, by contacting us.

5. Marketing Communications by Email

5.1 Email Newsletter with Subscription

If you subscribe to our newsletter, we will use the personal data you provide (or that is required for subscription) to send you regular marketing emails, based on your consent under Article 6(1)(a) UK GDPR.

You can unsubscribe from our newsletter at any time, either by contacting us via the contact details provided in this Privacy Policy or by using the unsubscribe link included in each newsletter.

After unsubscribing, your email address will be removed from our mailing list unless you have explicitly consented to further use of your data (Article 6(1)(a) UK GDPR) or unless we are legally permitted to retain your data for other purposes as described in this Policy.

5.2 Email Marketing Without Subscription and Your Right to Object

If we obtain your email address in connection with the sale of a product or service and you have not opted out of receiving marketing communications, we may use your email address to send you information about similar products or services from our range.

This processing is carried out based on our legitimate interests under Article 6(1)(f) UK GDPR in promoting our business and maintaining customer relationships.

You may object to the use of your email address for marketing purposes at any time, free of charge, by contacting us using the details provided in this Privacy Policy or by using the unsubscribe link included in any promotional email.

Once you opt out, we will remove your email address from our marketing list unless you have consented to further use of your data (Article 6(1)(a) UK GDPR) or unless we are legally entitled to retain it for other specified purposes.

6. Cookies and Other Technologies

General Information

To make your visit to our website enjoyable and to enable certain functions, we use various technologies including cookies.
 Cookies are small text files that are automatically stored on your device. Some cookies are deleted when you close your browser (session cookies), while others remain stored on your device and allow us to recognize your browser upon your next visit (persistent cookies).

Protecting Your Privacy on Devices

We use technologies that are strictly necessary to provide the online services you have explicitly requested.
 Storing or accessing information on your device for these essential services does not require consent.

For non-essential functions (such as analytics or personalised marketing), we will only use cookies or similar technologies if you have given your consent.
 If you do not consent, certain parts of the website may not function properly. Your consent remains valid until you adjust or reset your preferences in your device or browser settings.

Subsequent Data Processing via Cookies and Other Technologies

We use technologies necessary for the functionality of our website (e.g. shopping cart features). These technologies may collect and process your IP address, time of visit, device and browser information, and information about your website usage (e.g. cart content).

This is based on our legitimate interests under Article 6(1)(f) UK GDPR in ensuring the optimal presentation and operation of our online services.

We also use cookies and similar technologies to fulfil legal obligations (e.g. documenting consent for data processing) and for analytics and marketing purposes.
 Further information, including the specific legal bases for such processing, can be found in the relevant sections of this Privacy Policy.

Types of Cookies We Use

Essential Cookies
 These cookies are necessary for the operation of our website — for example, to enable you to log into your account or to manage your shopping cart.

Analytical / Performance Cookies
 These cookies allow us to collect anonymised data on website usage, helping us to improve functionality and offer relevant content.

Functional Cookies
 These cookies support specific website functions, such as improved navigation or personalised content recommendations (e.g. interest-based advertising).

Targeting Cookies
 These cookies record your visit to our website, the pages you view, and the links you follow. We use this information to tailor our website and advertising to your interests.

Third-Party Cookies
 Some cookies are placed by our advertising or technology partners to enhance your browsing experience and to display relevant offers. These temporary cookies are automatically deleted after a predefined period (typically between several days and 24 months).
 No personal data is stored in these cookies; only pseudonymised user IDs are collected and are never combined with identifiable data.

Cookie Settings

You can adjust your browser settings to manage or block cookies at any time.
 Browser-specific instructions can be found here:

  • Microsoft Edge™

  • Safari™

  • Google Chrome™

  • Mozilla Firefox™

  • Opera™

If you have consented to the use of cookies and other technologies under Article 6(1)(a) UK GDPR, you may withdraw your consent at any time by contacting us using the details provided in this Privacy Policy.

7. Use of Cookies and Other Technologies

We use the following cookies and third-party technologies on our website. Unless otherwise stated for individual technologies, processing is based on your consent under Article 6(1)(a) UK GDPR. Once the purpose of the respective technology has been fulfilled and its use ends, any related data collected will be deleted.

You may withdraw your consent at any time with future effect. For more details on how to withdraw consent, please refer to the section “Cookies and Other Technologies” above. Further information, including the legal basis for our cooperation with each provider, can be found in the descriptions of the individual technologies below. If you have any questions about our service providers or the legal basis for our cooperation with them, please contact us using the details provided in this Privacy Policy.

7.1 Use of Google Services

We use the following services provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).
 Information automatically collected through Google technologies about your use of our website is generally transmitted to a server of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and stored there.

Unless stated otherwise, data processing is based on a joint controller agreement pursuant to Article 26 UK GDPR.
 Further details on Google’s data processing can be found in Google’s Privacy Policy.

Our service providers may be located in or use servers in countries outside the UK for which no adequacy decision exists. In such cases, our cooperation with these providers is based on Standard Contractual Clauses approved by the UK Information Commissioner’s Office (ICO).

Google Analytics

We use Google Analytics for website analytics. The tool automatically collects and stores data (such as IP address, time of visit, device and browser information, and usage details) to create pseudonymised user profiles. Cookies may be used for this purpose.

If you access our website from the UK or EU, your IP address is first stored on an EU-based server to determine location data and is then anonymised before further processing by Google. Data processing is based on a data processing agreement with Google.

For marketing optimisation, we have activated the “Google Products and Services Data Sharing” setting, allowing Google to access and use the collected data to improve its own services. This data sharing is based on a joint controller arrangement. We have no control over Google’s subsequent data processing.

We also use the User-ID feature of Google Analytics to link interaction data from different sessions and devices using a unique, persistent ID, enabling cross-device analysis.

Through the Google Signals extension, cross-device tracking is possible. If your devices are linked to your Google Account and you have enabled personalised advertising, Google can generate aggregated reports on cross-device usage. We receive only anonymised statistics — no personal data is processed by us in this context.

The DoubleClick cookie extension enables recognition of your browser when visiting other websites, allowing for advertising analytics and remarketing. Google uses this information to compile activity reports and provide related online services.

If you do not provide consent under Article 6(1)(a) UK GDPR for the use of Google Analytics, no cookies will be stored or accessed on your device. In this case, no data processing described above will take place.
 To fill analytical gaps, pings containing limited technical information (user agent, consent status, screen resolution, IP address) may still be sent to Google.

Google Ads

We use Google Ads for advertising in Google search results and on third-party websites. When you visit our website, a Google Remarketing Cookie may be placed to enable interest-based advertising using a pseudonymous cookie ID based on the pages you visit.

Further processing occurs only if you have enabled personalised advertising in your Google Account. If you are logged into Google during your visit, Google may combine this data with Google Analytics information to create cross-device remarketing lists.

We also use Google Ads Conversion Tracking to measure interactions following clicks on our ads. This may involve cookies and the collection of data (IP address, time of visit, device/browser details, and site usage based on defined events such as page visits or newsletter sign-ups) to create pseudonymised usage profiles.

If you do not consent under Article 6(1)(a) UK GDPR, no cookies will be set, and no related processing will take place. For limited behavioural and conversion modelling, pings containing minimal data (user agent, consent info, screen resolution, IP address, page URL, ad click parameters) may still be sent to Google, with the IP address used only for determining country-level location.

Google Tag Manager

We use Google Tag Manager to manage website scripts and services. When implementing tags, Google may process certain personal data (e.g. IP address, online identifiers such as cookies). Data processing is based on a data processing agreement with Google.

The Tag Manager allows us to integrate and control various tools efficiently.
 If you have deactivated individual tracking services, this deactivation will remain effective for all related tags implemented through the Tag Manager.

YouTube Video Plugin

We embed third-party content using the YouTube Video Plugin in extended privacy mode. When you play a video, data (IP address, time of access, device and browser information) is transmitted to and processed by Google.

7.2 Use of Microsoft Services

We use technologies provided by Microsoft Ireland Operations Ltd., One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland (“Microsoft”).
 Data processing is based on a joint controller agreement under Article 26 UK GDPR. Information automatically collected through Microsoft technologies may be transmitted to Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA, and stored there.

Our service providers may be located in or use servers outside the UK in countries without an adequacy decision. In these cases, cooperation is based on Standard Contractual Clauses approved by the UK ICO.

We use Microsoft Advertising Universal Event Tracking (UET) for website analytics and event tracking. If you reach our site through a Microsoft Advertising ad, we can measure your subsequent activity (e.g. page visits, sign-ups). Cookies may be used to collect data (IP address, time of visit, device and browser information, and predefined user events), from which pseudonymised usage profiles are created.

If your devices are linked to your Microsoft account and you have not disabled interest-based advertising in your Microsoft account settings, Microsoft can generate aggregated, cross-device activity reports (cross-device tracking).
 We do not process personal data ourselves in this context — we only receive anonymised statistics derived from Microsoft UET data.

8. Integration of the Trusted Shops Trustbadge / Other Widgets

To display Trusted Shops services (such as trust badges, collected reviews, or buyer protection offers) and to make Trusted Shops products available to customers after completing an order, our website integrates Trusted Shops widgets.

This processing is carried out based on our legitimate interests in providing a secure shopping experience and promoting our business effectively, in accordance with Article 6(1)(f) UK GDPR.
 The Trustbadge and related services are provided by Trusted Shops SE, Subbelrather Str. 15C, 50823 Cologne, Germany (“Trusted Shops”), with whom we act as joint controllers under Article 26 UK GDPR.
 Below, we inform you of the key contents of this joint controllership agreement, as required under Article 26(2) UK GDPR.

For questions regarding data protection or to exercise your rights, you may contact Trusted Shops directly using the contact details provided in their privacy policy. You may also contact us, and we will forward your request to Trusted Shops where necessary for processing.

8.1 Data Processing in Connection with the Trustbadge / Widgets

The Trustbadge is provided by a U.S.-based Content Delivery Network (CDN) provider. An adequate level of data protection is ensured either by an adequacy decision issued by the UK Government or through the provider’s certification under the EU-U.S. Data Privacy Framework (DPF) or the UK Extension to the DPF.
 Where a provider is not certified under the DPF, Standard Contractual Clauses (SCCs) are used as appropriate safeguards.

When the Trustbadge is accessed, the web server automatically stores a server log file that contains your IP address, date and time of access, the amount of data transferred, and the requesting provider (access data). The IP address is anonymised immediately after collection, making it impossible to link the data to any specific individual.
 These anonymised data are used solely for statistical analysis and troubleshooting purposes.

8.2 Data Processing After Order Completion

After you complete an order, order-related information (such as order amount, order number, and purchased item, if applicable) and your hashed email address (processed via one-way cryptographic hashing) are transmitted to Trusted Shops.

This processing is based on Article 6(1)(f) UK GDPR and serves to verify whether you are already registered for Trusted Shops services. This verification supports both our and Trusted Shops’ legitimate interests in providing the buyer protection and transactional review services linked to your specific order.

If you are already registered, further processing will take place in accordance with your contractual relationship with Trusted Shops.
 If you are not yet registered, you may be invited to do so after completing your order. Further processing in that case will also be based on your agreement with Trusted Shops.
 If you choose not to register, all transmitted data will be automatically deleted by Trusted Shops, ensuring no personal data remains.

Trusted Shops uses service providers for hosting, monitoring, and logging. This processing is carried out based on Article 6(1)(f) UK GDPR to ensure the reliable operation of their services.

Processing may occur in third countries (including the United States, the United Kingdom, and Israel).
 An adequate level of protection is ensured either through adequacy decisions by the UK Government or the use of Standard Contractual Clauses where no such decision exists.
 Service providers in the U.S. are generally certified under the EU-U.S. Data Privacy Framework or the UK Extension to the DPF.

9. Social Media

Our Online Presence on Facebook (by Meta), Instagram (by Meta), YouTube, and LinkedIn

Where you have granted your consent to the respective social media platform in accordance with Article 6(1)(a) UK GDPR, your data may be automatically collected and stored for marketing and analytical purposes when you visit our company pages on these platforms.
 Pseudonymised usage profiles may be created and used to display advertising both within and outside these platforms that is tailored to your interests. Cookies are typically used for this purpose.

For detailed information about how each provider processes and uses your data, as well as your rights and options to protect your privacy, please refer to the respective providers’ privacy policies linked below.
 You may also contact us directly for assistance in this matter.

Facebook (by Meta)

Our Facebook page is provided by Meta Platforms Ireland Ltd., Block J, Serpentine Avenue, Dublin 4, Ireland (“Meta Ireland”).
 Data collected by Meta Ireland about your use of our Facebook page is generally transferred to Meta Platforms, Inc., 1601 Willow Road, Menlo Park, California 94025, USA, and stored there.
 Processing of data in connection with your visit to our Facebook page is based on a joint controller agreement under Article 26 UK GDPR (see details about Insights Data here).

Service providers used by Meta may operate in countries with an adequacy decision (e.g. the USA, Canada, Japan, South Korea, New Zealand, the United Kingdom, and Argentina).
 For service providers outside these regions (e.g. Australia, India, Singapore, Brazil, Mexico), processing is safeguarded by Standard Contractual Clauses.

Instagram (by Meta)

Our Instagram page is also provided by Meta Platforms Ireland Ltd.
 Data collected during your interaction with our Instagram profile may be transferred to Meta Platforms, Inc., Menlo Park, California, USA, and stored there.
 Processing is based on a joint controller agreement under Article 26 UK GDPR (see details about Insights Data here).

The same data transfer safeguards apply as for Facebook: adequacy decisions for recognised countries, and Standard Contractual Clauses for all others.

YouTube

Our YouTube presence is provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).
 Data automatically collected by Google regarding your use of our YouTube channel may be transmitted to Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and stored there.

Where data processing occurs in third countries without an adequacy decision, Standard Contractual Clauses approved by the UK Information Commissioner’s Office are used to ensure an appropriate level of protection.

LinkedIn

Our LinkedIn profile is provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn”).
 Information automatically collected by LinkedIn regarding your use of our profile may be transferred to LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA, and stored there.

As with other platforms, where no adequacy decision applies, data transfers are safeguarded through Standard Contractual Clauses in compliance with UK GDPR requirements.

10. Contact Options and Your Rights

10.1 Your Rights

As a data subject under the UK General Data Protection Regulation (UK GDPR), you have the following rights regarding your personal data processed by us:

  • Right of access (Article 15 UK GDPR) – You have the right to obtain confirmation as to whether we process your personal data and, if so, to request access to that data and information about how it is processed.

  • Right to rectification (Article 16 UK GDPR) – You have the right to request the correction of inaccurate or incomplete personal data we hold about you without undue delay.

  • Right to erasure (Article 17 UK GDPR) – You have the right to request the deletion of your personal data, unless the processing is necessary

    • for exercising the right of freedom of expression and information;

    • for compliance with a legal obligation;

    • for reasons of public interest; or

    • for the establishment, exercise, or defence of legal claims.

  • Right to restriction of processing (Article 18 UK GDPR) – You have the right to request restriction of processing of your personal data where:

    • you contest the accuracy of the data;

    • the processing is unlawful but you oppose the deletion of the data;

    • we no longer need the data, but you require it for the establishment, exercise, or defence of legal claims; or

    • you have objected to processing under Article 21 UK GDPR and verification of overriding legitimate grounds is pending.

  • Right to data portability (Article 20 UK GDPR) – You have the right to receive the personal data that you have provided to us in a structured, commonly used, and machine-readable format, and to have those data transmitted to another controller, where technically feasible.

  • Right to lodge a complaint (Article 77 UK GDPR) – You have the right to lodge a complaint with a supervisory authority, in particular with the Information Commissioner’s Office (ICO) in the United Kingdom (www.ico.org.uk), or with the supervisory authority in your habitual residence, place of work, or where the alleged infringement occurred.

Right to Object

Where we process your personal data based on our legitimate interests (as outlined in this Privacy Policy), you have the right to object to such processing at any time with effect for the future.

If your objection relates to direct marketing, you may exercise this right at any time and without providing reasons.
 If your objection relates to processing for other purposes, we will only stop processing your data if we are unable to demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or if the processing is necessary for the establishment, exercise, or defence of legal claims.

If you object to processing for direct marketing purposes, we will cease processing your personal data for such purposes immediately.

10.2 Contact Options

If you have any questions about the collection, processing, or use of your personal data, or if you wish to exercise your rights to access, rectification, restriction, erasure, withdrawal of consent, or objection to specific data uses, please contact us directly using the contact details provided in our legal info or at:

Wilson Automation and Home Solutions Ltd.
Email: info@schartec.co.uk
Address: Unit 8 The Gateway, Old Hall Road, Bromborough CH62 3NX, Great Britain