Privacy Policy
(1) Introduction
This Privacy Policy explains how What’sInStore (“WIS”) collects, controls, processes and uses information about you (“Personal Data”) when you access www.whatinstore.co.uk (“the Website”), the WIS iOS and Android handheld device applications (“the Apps”), or speak with a member of our team, whether it be by email, on the telephone or in person. This Privacy Policy does not apply to any third-party applications or software that integrate with the WIS Website or Apps (‘Third-Party Website or Apps’), including the third-party payment portal provided by Square, or any other third-party products or services. Where you have access to Third-Party Website or Apps on the WIS Website or Apps, please consult the privacy policy issued by the publishers of that service.
(2) About us
WIS is a trading name of Appy Zebra Limited (“WIS”, “we”, “us” or “our”). This Policy therefore represents a legally binding agreement between you and WIS.
If you have any questions about this Policy, you can contact us by email at hello@whatinstore.co.uk. Our correspondence address is Midsummer Court, 314 Midsummer Boulevard, Milton Keynes, MK9 2UB. Appy Zebra is a company incorporated and registered in England and Wales with company number 09089351.
You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK regulator for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
(3) We may update this policy
The terms of this Policy may change as WIS evolves and grows, or as may be required from time to time, so please do check back regularly for any updates and changes. To facilitate this task, we will update the “Last updated” header after each update to this Policy. We will accompany this with a bullet-pointed summary of the contents of the update. Please note that in continuing to access or use WIS after we update the terms of this Policy, you acknowledge and agree to be bound by these revised terms.
(4) Your consent
Please read this policy carefully to understand our policies and practices regarding your information and how we will treat it. If you do not agree with our policies and practices, you must not use WIS or any part of the Website or Apps. By accessing or using the Website or Apps, you agree to the terms of this Privacy Policy.
Except as set forth in this Privacy Policy, your Personal Data will not be used by us for any other purpose without your consent.
You may withdraw your consent to our processing of your Personal Data at any time. However, withdrawing consent may result in your inability to continue using the Website or Apps.
(5) Children Under the Age of 13
The WIS Website or Apps is not intended for children under 13 years of age. The Website or Apps is therefore not designed, intended or safeguarded for use by any individuals under the age of 13. In practice, the minimum age of use to access the WIS Website or Apps is 16 years of age. If we learn we have collected or received personal information from a child under 13, we will delete that information. If you believe we might have any information from or about a child under 13, please contact us at hello@whatsinstore.co.uk.
(6) Data we may collect about you
We may collect the following Personal Data when you interact with the Website, Apps or with our team by email, telephone or in person.
(a) Authentication and identification information. This includes information such your name, email address and password. For companies registering to use the Website and/or Apps, this may include information such as your company name, company number and registered address. This information is necessary to log into your WIS account, but you do have the option to make purchases without creating a password. If you don’t provide this data, we may not be able to provide our full range of account services to you.
(b) Basic personal details. This includes information such as your name, date of birth and address. This information is necessary so that we can identify to whom the obligations under the WIS Terms and Conditions and this Privacy Policy apply. We also need to collect this information so that we may verify that you meet the minimum age to use the Website and/or Apps, and tailor any content so that it may be appropriate to you (where we are able, or have the resources to do so).
(c) Contact details. This includes your postal address, telephone number and email address. Your postal address is necessary so that that where you purchase a product directly from a seller on the Website and/or Apps, the seller may deliver the products to you. Your email address is needed so that we may send you communications relating to your orders, receipts and any notifications that may be required from time to time.
(d) Information about your communications with WIS. For administrative purposes, we may need to record information about your interactions with WIS, including such as where you telephone us, or communicate with a member of our staff by email. This is necessary so that we may keep a record of any requests or updates you have provided us with.
We will also automatically collect personal data when you interact with the Website or apps through your computer or handheld device, including the following:
We will also automatically collect personal data when you interact with the Website or apps through your computer or handheld device, including the following:
a) Profile inputs. When you interact with the Website or Apps, we collect data that provides additional context about your use of these services. For example, WIS may collect information as to product listings, page views, page clicks and links that you view, make or interact with during your session. This may include data about your location. With respect to geolocation information collected from your mobile device, we will only collect this where you have provided consent.
(b) Log data. As with most websites and technology service delivered over the Internet, our servers automatically collect information when you access or use the Website or Apps and record it in log files. This log data may include the Internet Protocol (IP) address, the address of the web page visited before using the Website Apps, browser type and settings, the date and time the Website or Apps was used, information about browser configuration and plugins, language preferences and cookie data.
(c) Analytics Details. This may include information about app downloads, app and web page histories, which may include details collected from other device identifiers.
(d) Device information. WIS collects information about devices accessing the Website or Apps, including type of device, what operating system is used, device settings, application IDs, unique device identifiers and crash data. Whether we collect some or all of this information often depends on the type of device used and its settings.
(e) Third-Party data. We may receive data about users of our Website or Apps, the success of any marketing campaigns we operate on our or our customers’ behalf, and other matters related to our business from third parties. Where we receive this data, we may use it to make our own information better or more useful. This data may be combined with other information that we collect and might include aggregate-level data, such as which IP addresses correspond to postcodes or countries. Or it might be more specific: for example, how well an online marketing or email campaign performed.
(7) How we collect this information
(8) How we use information
We create profiles about you based on the personal data you provide to us or that is collected about you, as described above and including Personal Data that we receive from third parties. We do this to market offers to you we think you would be interested in buying. The contents of that profile may include:
(a) Account details. For example, we may create a permanent URL to your account page which may include your name. We also generate a token or other identifier to record purchase histories, and the size of the transactions you’ve entered into.
(b) Marketing segment information. For example, if you purchase products or services related to wellness and beauty, we may infer that you are interested in these types of products, or if you purchase food and beverages, we may infer you are more interested in grocery categoories.
(c) Audience information. We create audiences based on parameters such as gender, age, and location (e.g. females aged 25-35 within a 10 mile radius of postcode SW1V 2PX), and if your Personal Data matches those audiences, you’ll be assigned to it. This is to help you receive relevant offers
(d) Activity information. Based on your interactions with communications, we’ll generate Personal Data about how many communications you like to receive, so that we don’t send you more than are useful to you.
We also use your Personal Data for a range of more general purposes that further our legitimate interests in operating our Website or Apps. These purposes include:
(a) To provide, update, maintain and protect our Website or Apps, and business. This includes use of Personal data to support delivery of the Website or Apps under the Contract, prevent or address service errors, security or technical issues, analyse and monitor usage, trends and other activities or at an Authorised User’s request.
(b) As required by applicable law, legal process or regulation.
(c) To communicate with you by responding to your requests, comments and questions. If you contact us, we may use your Personal Data to respond.
(d) To send emails and other communications. We may send you service, technical and other administrative emails, messages and other types of communications. We may also contact you to inform you about changes in our Website or Apps, our Website or Apps offerings and important Website or Apps-related notices, such as security and fraud notices. These communications are considered part of the Website or Apps and you may not opt out of them. In addition, we sometimes send emails about new product features, promotional communications or other news about WIS. These are marketing messages, with the result that you can control whether you receive them or not by accessing your account settings. If you have additional questions about a message that you have received from WIS, please get in touch through the contact mechanisms described below.
(e) For billing, account management and other administrative matters. WIS may need to contact you for invoicing, account management and similar reasons and we use account data to administer accounts and keep track of billing and payments.
(f) To investigate and help prevent security issues and abuse.
(g) To create your account when you sign up and log you in, which is necessary for us to provide our services to you in accordance with the Wis Terms and Conditions.
(h) Carry-out marketing, which may involve:
(i) Send you reminders, technical notices, updates, security alerts, support and administrative messages, service bulletins, and requested information. This is to meet our legitimate interests in managing our relationship with you effectively.
(j) Administer rewards, surveys, contests, or other promotional activities or events, in order to meet our contractual commitments to you set out in the terms and conditions of those promotional events (where applicable).
If Information is aggregated or de-identified so that it is no longer reasonably associated with an identified or identifiable natural person, WIS may use it for any business purpose.
(9) How we share and disclose your Personal Data
WIS may share and disclose your Personal Data as follows:
(a) According to your instructions or consent. WIS may share and disclose Information in accordance with your instructions and with appropriate consent.
(b) With unaffiliated third-party sellers who list their Products or Services on the Websites or Apps, so they can offer, sell, deliver, or provide their products or services to you.
(c) to report or collect on debts owed by you to sellers.
(d) As necessary to perform contractual obligations towards you with sellers to the extent you have purchased, goods, or services offered by them or participated in an offer, rewards, contest or other activity or program sponsored or offered through us or the sellers.
(e) During a change to WIS’s business. If WIS engages in a merger, acquisition, bankruptcy, dissolution, reorganisation, sale of some or all of WIS’s assets or stock, financing, public offering of securities, acquisition of all or a portion of our business, a similar transaction or proceeding or steps in contemplation of such activities, some or all Information may be shared or transferred, subject to standard confidentiality arrangements.
(f) Aggregated or deidentified Data. We may disclose or use aggregated or de- identified Information for any purpose. For example, we may share aggregated or de- identified Information with prospects or partners for business or research.
(g) To comply with laws. If we receive a request for information, we may disclose Information if we reasonably believe that disclosure is in accordance with or required by any applicable law, regulation or legal process.
(h) To enforce our rights, prevent fraud and for safety. To protect and defend the rights, property or safety of WIS, its users or third parties, including enforcing its contracts or policies, or in connection with investigating and preventing illegal activity, fraud or security issues, including to prevent death or imminent bodily harm.
(10) Cookies and Automatic Data Collection Technologies
The Website uses cookies (small files placed on your device) or other automatic data collection technologies to distinguish you from other users. This helps us deliver a better and more personalized service when you browse our website. It also allows us to improve our website by enabling us to:
We also may use these technologies to collect information about your online activities over time and across third-party websites or other online Website or Apps (behavioural tracking).
You may refuse to accept browser cookies by activating the appropriate setting on your browser. However, if you select this setting, certain parts of our website may become inaccessible and certain features may not work correctly. Unless you adjust your browser settings to refuse cookies, our system will issue them.
Our website pages and e-mails may contain web beacons (small transparent embedded images or objects, also known as clear gifs, pixel tags, and single-pixel gifs) that permit us, for example, to count website page visitors or email readers, or to compile other similar statistics such as recording Website content popularity or verifying system and server integrity.
(11) Data Retention
Except as otherwise permitted or required by applicable law or regulation, we will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, as required to satisfy any legal, accounting, or reporting obligations, or as necessary to resolve disputes. To determine the appropriate retention period for personal data, we consider our statutory obligations, the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes we process your personal data for, and whether we can achieve those purposes through other means.
(12) Consent to Personal Data Transfer
We are based in the United Kingdom. We may process, store, and transfer the personal data we collect, in and to a country outside your own, with different privacy laws that may or may not be as comprehensive as your own. Where we transfer such data, WIS will ensure compliance with the applicable laws in the respective jurisdiction in line with WIS’s obligations. In particular, we offer the following safeguards as listed in Clause 13 of this Privacy Policy (“European Union Standard Contractual Clauses”).
By submitting your personal data or engaging with our Website or Apps, you consent to this transfer, storing, or processing.
(13) Transfer of data
Outside of the European Economic Area, Switzerland or UK – European Union Standard Contractual Clauses
If you are located in the EEA, Switzerland or UK we have implemented the authorised appropriate safeguard mechanisms provided for under Articles 46, 47 and 49 of EU/UK GDPR and, where applicable, additional Standard Contractual Clauses to secure the transfer of your personal data to jurisdictions that risk not providing the same levels of data privacy protection as your own country. You can learn about these safeguards or, as the case may be, obtain a copy by contacting us at hello@whatsinstore.co.uk
(14) Your Personal Data Rights
Residents of the EEA and UK
Where you have provided your consent to the collection, processing, or transfer of your personal data, you may have the legal right to withdraw your consent under certain circumstances. To withdraw your consent, please email hello@whatsinstore.co.uk. If you are a resident of the EEA or the UK, you can avail yourself of the following rights under EU and UK GDPR. These include:
(15) Accessing and Correcting Your Personal Data
You can access, review, and change your personal data by visiting your account page on our website.
(16) Data Security
We use physical, electronic, and administrative safeguards designed to protect your personal data from loss, misuse, and unauthorized access, use, alteration, or disclosure.
Where we have given you (or where you have chosen) a password for access to certain parts of our Website or Apps, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.