Kester Brewin

Privacy Policy

Last updated: January 2026

This Privacy Policy explains how Kester Brewin (“we”, “us”, “our”) collects, uses, stores, and protects your personal information when you visit kesterbrewin.com (the “Website”), purchase books, or sign up for updates.

We are committed to protecting your privacy and handling your personal data in a transparent and secure way in accordance with the UK GDPR and the Data Protection Act 2018.

1. Who we are (Data Controller)

Data Controller: Kester Brewin
Website: kesterbrewin.com
Email: info at vaux dt net

2. What personal data we collect

We may collect and process the following types of personal data:

a) Information you provide to us

When you place an order, contact us, or sign up for information, you may provide:

  • Full name
  • Email address
  • Phone number
  • Billing address
  • Delivery address
  • Order details (items purchased, quantity, price)

b) Communications

If you email us or contact us through the Website, we may keep records of:

  • Your messages and correspondence
  • Information you choose to share with us

c) Website usage data

We may automatically collect limited technical information, such as:

  • IP address
  • Browser type and device information
  • Pages visited and time spent
  • Referring website links

(If you use cookies/analytics tools, this should be reflected in a Cookie Policy too.)

3. How we use your personal data

We use your personal data to:

  • Process and fulfil orders (including shipping and customer support)
  • Contact you about your order (e.g., delivery issues, order confirmations)
  • Provide customer service
  • Send updates or information you have opted in to receive
  • Maintain business records for accounting and tax purposes
  • Improve the Website and understand how visitors use it

4. Our lawful bases for processing (UK GDPR)

We only process personal data when we have a lawful basis to do so. These include:

a) Contract

To fulfil our contract with you, such as:

  • processing payment and delivering books
  • sending order-related messages

b) Legal obligation

To meet legal requirements, including:

  • tax and accounting obligations

c) Legitimate interests

To operate and improve our business, such as:

  • preventing fraud
  • maintaining website security
  • responding to customer enquiries

d) Consent

Where required (e.g., marketing emails/texts), we will rely on your consent. You can withdraw consent at any time.

5. Marketing and communications

If you sign up for information, we may send you:

  • newsletters
  • updates about new books or releases
  • events or related announcements

You can opt out at any time by:

  • clicking “unsubscribe” in any email (if included), or
  • contacting us at: info at vaux dt net

We will never sell your personal data to third parties for marketing.

6. Who we share your data with

We only share your personal data where necessary, including with:

  • Payment processors (to take payments securely)
  • Delivery/shipping providers (to deliver your books)
  • Website hosting / ecommerce platform providers
  • Professional advisers (accountants, legal advisers where necessary)

All third parties are required to respect your data and handle it in accordance with data protection law.

7. International data transfers

Some of the service providers we use may store or process data outside the UK.

Where this happens, we ensure appropriate safeguards are in place, such as:

  • UK GDPR-approved international transfer mechanisms
  • Standard Contractual Clauses (SCCs) or UK Addendum

8. How long we keep your data

We retain personal data only for as long as needed for the purposes described above.

Typical retention periods include:

  • Order records: kept for accounting/tax purposes (usually up to 6 years in the UK)
  • Marketing subscriptions: until you unsubscribe or ask us to delete your information
  • Customer enquiries: for as long as necessary to respond and maintain records

9. Your data protection rights

Under UK GDPR, you have rights including:

  • Right of access – request a copy of your data
  • Right to rectification – correct inaccurate data
  • Right to erasure – request deletion of your data
  • Right to restrict processing – limit how we use your data
  • Right to data portability – request transfer of your data
  • Right to object – object to processing based on legitimate interests
  • Right to withdraw consent – where processing is based on consent

To exercise your rights, contact: [Insert contact email]

10. Security

We take appropriate security measures to protect your data, including:

  • secure website hosting
  • limiting access to personal data
  • using trusted payment providers
  • maintaining safeguards against unauthorised access

However, no system is completely secure, and we cannot guarantee absolute security of data transmitted online.

11. Cookies

We may use cookies and similar technologies to improve your experience.

You can control cookies through your browser settings.

(Recommended: link this section to a dedicated Cookie Policy page if you use analytics, embedded content, ads, etc.)

12. Children’s privacy

This Website is not intended for children under 16, and we do not knowingly collect personal data from children.

13. Changes to this policy

We may update this Privacy Policy from time to time. Updates will be posted on this page with a revised “Last updated” date.

14. Complaints

If you have concerns about how we handle your data, please contact us first at info at vaux dt net

You also have the right to lodge a complaint with the UK regulator:

Information Commissioner’s Office (ICO)
Website: ico.org.uk