Privacy Policy

ARTICLE 1 – PERSONAL INFORMATION COLLECTED
  • Transactional Data: When you purchase baby feeding essentials from our shop, we collect the personal information you provide, including your name, billing address, UK delivery address, and email address.
  • Browsing Data: When you browse our store, we automatically receive your computer's internet protocol (IP) address. This provides us with data that helps us learn about your browser type and operating system.
  • Email Marketing: With your explicit permission, we may send you emails about our shop, new product launches, and other updates.
  • SMS Marketing: By entering your mobile phone number at checkout, you agree to receive automated text messages for order tracking alerts and abandoned checkout reminders, alongside occasional promotional offers. SMS messages will not exceed 4 per month. You can unsubscribe at any time by texting STOP.
ARTICLE 2 – CONSENT
  • How Consent is Obtained: When you provide personal information to complete a transaction, verify your credit card, place an order, or arrange for a delivery/return, we process that data on the lawful basis of contractual necessity for that specific reason only.
  • Secondary Purposes: If we ask for your personal information for a secondary reason, such as marketing, we will either ask you directly for your express opt-in consent or provide you with a clear opportunity to decline.
  • Withdrawing Consent: If you change your mind after opting in, you can withdraw your consent for us to contact you or process your data at any time by emailing contact@baby-yourway.com.
ARTICLE 3 – DISCLOSURE
  • We may disclose your personal information only if we are strictly required by UK law to do so, or if you violate our official Terms of Sale.
ARTICLE 4 – SHOPIFY PLATFORM
  • Our shop is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products to you. Your data is stored through Shopify’s secure data storage systems, databases, and the general Shopify application behind an enterprise-grade firewall.
  • Payment Processing: If you complete your purchase through a direct payment gateway, Shopify temporarily stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is retained only as long as necessary to complete your order, after which it is deleted.
  • All direct payment gateways available on our store comply with PCI-DSS standards, managed jointly by brands like Visa, MasterCard, and American Express.
ARTICLE 5 – THIRD-PARTY SERVICES & UK DATA TRANSFERS
  • Generally, the third-party providers we use will only collect, use, and disclose your information to the extent necessary to allow them to perform their specific services for us (such as UK couriers and fulfilment partners).
  • However, certain providers (such as payment gateways and instalment systems) maintain independent privacy policies regarding the checkout data we are required to provide to them. We recommend reading their privacy policies directly.
  • International Transfers: Some third-party providers or data centres may be located outside the United Kingdom. If your transaction involves a provider located outside the UK, your data may become subject to the laws of that jurisdiction. We ensure all such transfers are protected by UK-approved Standard Contractual Clauses or International Data Transfer Agreements.
  • External Links: Once you leave our store website or are redirected to a third-party application, you are no longer governed by this Privacy Policy or our Terms of Sale.
ARTICLE 6 – SECURITY
  • To protect your personal information, we follow strict UK industry best practices to ensure it is not inappropriately lost, misused, accessed, or altered.
  • Credit card information is encrypted using Secure Sockets Layer (SSL) technology and stored with robust AES-256 encryption.
COOKIES IN USE
We use the following essential and analytical cookies to power our Shopify store:
  • _session_id: Unique session identifier; allows Shopify to store information about your session page visits.
  • _shopify_visit: No data held; persists for 30 minutes from your last visit. Used for internal traffic statistics.
  • _shopify_uniq: No data held; expires at midnight relative to your UK location. Counts unique customer visits.
  • cart: Unique identifier; persists for 2 weeks to safely store your shopping cart items.
  • _secure_session_id: Unique session identifier to protect checkout pathways.
  • storefront_digest: Unique identifier used to verify customer access permissions if the store is security-protected.
ARTICLE 7 – AGE OF CONSENT
  • By using this website, you represent that you are at least 18 years of age (the legal age to enter a binding retail transaction in the United Kingdom) or that you are a parent or legal guardian providing consent for your dependents to browse this site.
ARTICLE 8 – CHANGES TO THIS POLICY
  • We reserve the right to modify this privacy policy at any time to maintain regulatory compliance. Changes take effect immediately upon posting. If we make material updates, we will note here that it has been changed.
  • If our business, MERLINJOSEPH LTD, is acquired by or merged with another company, your information may be transferred to the new owners so that we can continue serving you.
QUESTIONS AND COMPLIANCE CONTACT INFORMATION
If you would like to access, correct, amend, or delete any personal information we hold about you, or if you wish to file a formal request regarding your UK GDPR rights, contact our Privacy Compliance Officer, Merlin Joseph, at contact@baby-yourway.com.
If you feel your data has been handled incorrectly, you have the statutory right to lodge a complaint directly with the UK Information Commissioner’s Office (ICO).
Business Registration Details
YOURWAY is owned and operated by MERLINJOSEPH LTD, a registered business in the United Kingdom.
  • Company Number: 16668090
  • Registered Office: 71–75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom.