Privacy Policy

Cheeky Mugs | www.cheekymugs.com | Last updated: 13 June 2026

1. Who We Are

This Privacy Policy explains how Cheeky Mugs ("we", "us", or "our"), operating at www.cheekymugs.com, collects, uses, and protects your personal data when you visit our website or purchase from our online store.

We are committed to protecting your privacy and handling your data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Our Contact Details

If you have any questions about this policy or wish to exercise your rights, please contact us:

• Website: www.cheekymugs.com

• Email: [cheekymugsni@gmail.com]

• Address: [Knockgorm Road,Katesbridge, Banbridge BT32 5QE]

3. What Personal Data We Collect

3.1 Data You Provide to Us

When you place an order or create an account, we collect:

• Name and contact details (email address, phone number)

• Delivery and billing address

• Order history and product preferences

• Payment information (processed securely — we do not store card details)

• Any messages or enquiries you send us

3.2 Data Collected Automatically

When you browse our website, we automatically collect:

• IP address and browser type

• Pages visited, time spent on site, and referring URL

• Device information (operating system, screen size)

• Cookie identifiers and analytics data (see Section 6)

4. How We Use Your Personal Data

We use your personal data for the following purposes and on the following legal bases:

Purpose          Legal Basis

• Processing and fulfilling your orders — Performance of a contract

• Sending order confirmations and updates — Performance of a contract

• Responding to your enquiries — Legitimate interests

• Improving our website and services — Legitimate interests

• Analysing website traffic and usage (via cookies) — Consent

• Complying with legal obligations — Legal obligation

5. Who We Share Your Data With

We do not sell your personal data. We may share it with trusted third parties only where necessary:

• Delivery and fulfilment partners — to ship your orders

• Payment processors — to securely handle transactions

• Website hosting providers — to operate our website

• Google Analytics — to understand how visitors use our site (see Section 6)

All third parties are required to handle your data securely and in accordance with applicable data protection law.

6. Cookies and Analytics

Our website uses cookies — small text files stored on your device — to improve your experience and analyse how our site is used.

6.1 Types of Cookies We Use

• Essential cookies: Required for the website to function (e.g. shopping cart). These do not require your consent.

• Analytics cookies: We use Google Analytics to collect anonymous data about how visitors use our site (pages visited, session duration, etc.). This helps us improve our website. These cookies are only set with your consent.

6.2 Managing Cookies

When you first visit our site, you will be asked to consent to analytics cookies. You can change your cookie preferences at any time via our Cookie Settings link in the website footer, or by adjusting your browser settings. Please note that disabling certain cookies may affect website functionality.

For more information on how Google uses data collected via Google Analytics, please visit: policies.google.com/privacy

7. How Long We Keep Your Data

• Order and transaction records: 7 years (to comply with HMRC requirements)

• Account information: For as long as your account is active, plus 2 years

• Analytics data: Up to 26 months (Google Analytics default)

• Enquiries and correspondence: Up to 3 years

When data is no longer required, it is securely deleted or anonymised.

8. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

• Right of access: Request a copy of the personal data we hold about you

• Right to rectification: Ask us to correct inaccurate or incomplete data

• Right to erasure: Request deletion of your data where we no longer have a legal basis to hold it

• Right to restrict processing: Ask us to limit how we use your data

• Right to data portability: Receive your data in a structured, machine-readable format

• Right to object: Object to processing based on legitimate interests

• Right to withdraw consent: Where processing is based on consent (e.g. analytics cookies), you may withdraw it at any time

To exercise any of these rights, please contact us using the details in Section 2. We will respond within one month. If you are unhappy with how we handle your data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at www.ico.org.uk.

9. Data Security

We take the security of your personal data seriously and use appropriate technical and organisational measures to protect it against unauthorised access, loss, or disclosure. These include:

• SSL/TLS encryption for all data transmitted via our website

• Secure, access-controlled hosting environments

• Regular review of our data handling practices

No method of transmission over the internet is 100% secure. If you have concerns about the security of your data, please contact us.

10. Children's Privacy

Our website and services are not directed at children under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us and we will delete it promptly.

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of those sites and encourage you to read their privacy policies before providing any personal data.

12. Changes to This Policy

This Privacy Policy was last updated on 13 June 2026. We may update it from time to time to reflect changes in our practices or legal requirements. We will post any updates on this page, and where appropriate, notify you by email. Please check back periodically.