Privacy Policy for IT WORKS ORGANICS®

Last updated: 25/11/25

Welcome to IT WORKS ORGANICS®. We are committed to protecting your personal information and respecting your privacy. This Privacy Policy explains how we collect, use, store, and safeguard your data when you visit itworksorganics.com or make a purchase from our online store.

By using this website, you agree to the practices described in this Privacy Policy.

 

 

1. Who We Are

IT WORKS ORGANICS® is a UK-based natural wellness company producing topical creams and balms.
Our website address is: https://itworksorganics.com

If you have any privacy-related questions, you can contact us at:
Email: info@itworksorganics.com

 

 

2. Information We Collect

We collect information in the following ways:

 

2.1. Information You Provide Directly

When you engage with our website, you may provide:

 

    • Name

    • Billing and shipping address

    • Email address

    • Phone number

    • Payment information (processed securely by third-party payment gateways—we do NOT store card details)

    • Order details

    • Account login details (if you create an account)

    • Messages sent via contact forms or customer support

 

 

 

2.2. Information Automatically Collected

When you browse our site, we may automatically collect:

 

    • IP address

    • Browser type & version

    • Device information

    • Pages viewed

    • Time spent on pages

    • Referring URLs

    • Shopping cart activity (to ensure the cart functions correctly)

 

This data helps us improve site performance and user experience.

 

 

2.3. Cookies

We use cookies and similar tracking technologies to:

 

    • Keep your shopping cart active

    • Remember your preferences

    • Analyse website performance

    • Support marketing campaigns (e.g., Google Analytics, Meta Pixel)

 

You can manage cookie settings in your browser or via our cookie preference popup.

 

 

3. How We Use Your Information

We use your information to:

 

    • Process and fulfil orders

    • Provide customer support

    • Send transactional emails (order confirmation, shipping notifications)

    • Improve website performance and user experience

    • Prevent fraud and ensure secure transactions

    • Manage your account

    • Comply with legal obligations

 

With your consent, we may also use your email to:

 

    • Send newsletters

    • Provide product updates

    • Offer promotions or discounts

 

You can unsubscribe at any time.

 

 

4. Legal Bases for Processing (GDPR)

Under GDPR, we process your personal data using the following lawful bases:

 

    • Contract – to fulfil your order

    • Consent – for newsletter subscriptions and cookies

    • Legitimate interests – site analytics, improving services, fraud prevention

    • Legal obligation – tax, accounting, and regulatory requirements

 

 

 

5. How We Share Your Information

We only share your data with trusted partners necessary to operate our business, including:

 

5.1. Service Providers

 

    • WooCommerce (e-commerce platform)

    • Payment processors (Stripe, PayPal, or similar)

    • Shipping carriers (Royal Mail, courier services)

    • Email service providers (Mailchimp, Klaviyo, or similar)

    • Analytics tools (Google Analytics, Meta Pixel)

 

These providers are required to keep your data secure and use it only to perform services for us.

 

 

5.2. Legal Obligations

We may disclose information if required to:

 

    • Comply with UK/EU laws

    • Respond to lawful requests

    • Protect our business, customers, or legal rights

 

We do NOT sell or rent your personal data to third parties.

 

 

6. How We Store and Protect Your Information

We implement appropriate technical and organisational measures to safeguard your data, including:

 

    • SSL website encryption

    • Secure servers & databases

    • Restricted access controls

    • Encrypted payment processing

    • Regular security audits

 

Despite best practices, no system is 100% secure, but we take every reasonable step to protect your information.

 

 

7. Data Retention

We retain your data only as long as necessary:

 

    • Order records: 6 years (UK tax/legal requirement)

    • Customer accounts: Until you request deletion

    • Marketing emails: Until you unsubscribe

    • Analytics data: Typically 26 months (Google default)

 

 

 

8. Your Rights (UK GDPR)

You have the right to:

 

    • Access your personal data

    • Request correction of inaccurate data

    • Request deletion (“Right to be forgotten”)

    • Restrict processing

    • Object to processing (marketing, analytics, etc.)

    • Request data portability

    • Withdraw consent at any time

 

To exercise your rights, contact:
info@itworksorganics.com

 

 

9. Children’s Privacy

Our site is not intended for children under 16.
We do not knowingly collect data from minors.

 

 

10. Third-Party Links

Our website may include links to external sites.
We are not responsible for their privacy practices or content.

 

 

11. Changes to This Privacy Policy

We may update this policy to reflect business, legal, or regulatory changes.
The updated date at the top will reflect the most recent version.

 

 

12. Contact Us

For any questions about this Privacy Policy or your personal data, you can contact us at:

info@itworksorganics.com