Free UK Delivery on Orders Over £100*

Toggle Nav
Products

Privacy Policy

Who we are
Lever-ES Ltd (trading as Lever-ES or “we” / “us”) — registered at: [Insert registered address], United Kingdom.
For any questions about this Privacy Policy or your personal data, you can contact us at: [contact email / phone].

This Privacy Policy applies to all visitors, users and customers of our website https://lever-es.com/ (the “Website”), and applies whenever you browse, register, or place orders on our Magento 2 eCommerce store.

1. What personal data we collect

We may collect and process the following types of personal data when you use our Website:

a) Data you provide directly

  • Identity / contact: name, email address, telephone number, billing and shipping address.

  • Order and payment data: when you place an order — e.g. order details, shipping preferences. Note: we do not store raw payment card data ourselves — payment processing is handled by our payment provider.*

  • Account credentials: if you register an account on our store (username, password — stored in hashed/encrypted form).

  • Communication data: any messages, contact-form submissions or support requests you send us.

b) Technical & usage data (automatically collected)

  • IP address, browser type, device type, operating system.

  • Usage data: pages visited, time spent on pages, referral source, clickstreams.

  • Cookies and tracking data (see section 4).

c) Other data (where applicable)

  • Marketing / newsletter preferences (if you subscribe).

  • Any data you choose to submit (e.g. product reviews, feedback, support requests).

2. Why we collect personal data & lawful basis

We collect and process your data for the following purposes:

Purpose Lawful basis
To process and fulfil your orders (billing, shipping, order management) Contractual necessity
To communicate with you — order confirmations, shipping updates, customer support Contractual / legitimate interest
To manage your account (if you create one) — login, password, order history Contractual
To improve and maintain the Website, detect misuse, fraud prevention and security Legitimate interest
To perform analytics and understand site usage — help us improve user experience Legitimate interest (e.g. aggregated analytics / non-intrusive profiling)
To send marketing communications (where you have given consent) Consent

If you have provided explicit consent (e.g. subscribing to newsletters), you have the right to withdraw consent at any time.

3. Cookies & other tracking technologies

We use cookies, web beacons, analytics scripts and similar technologies to collect technical and usage data.

  • Some cookies are strictly necessary for checkout, login, cart etc. — these run regardless of consent.

  • Other cookies (analytics, marketing, tracking) are only used with your consent.

You can manage your consent preferences via our cookie consent banner or your browser settings. For more details, please see our Cookie Policy (or, if you don’t yet have one, we will provide this soon).

4. Who we share personal data with

We may share personal data with:

  • Payment processors / gateways — to complete payment and order processing.

  • Shipping and delivery providers — to dispatch and deliver your orders (i.e. courier companies), using necessary identity & address information.

  • Third-party service providers (processors) — such as hosting providers, analytics services, email / newsletter providers, payment and fraud-prevention tools, if used.

  • Legal or regulatory authorities, where required by law (e.g. fraud prevention, tax / customs, compliance).

We ensure that third-party processors act under contractual obligations, only process data as instructed, and safeguard personal data appropriately in line with UK GDPR requirements.

5. International transfers

Because some of our third-party providers may be located outside the UK (e.g. hosting, analytics, payment processors), your data may be transferred internationally. We will only do so when there are adequate protections in place — e.g. standard contractual clauses, data-processing agreements, or other safeguards permitted under UK GDPR.

6. Data retention / how long we keep your data

We retain personal data for as long as necessary to fulfil the purposes for which it was collected, including:

  • To complete any order you place (including returns, refunds, after-sales support).

  • To maintain your account (if applicable).

  • For legitimate business needs — e.g. fraud prevention, compliance with legal obligations (tax, accounting) for the legally required period.

  • For as long as you have consented to marketing communications (unless you withdraw consent).

After these periods, we will delete or anonymise personal data, unless we are legally required to keep certain information (e.g. for tax / accounting).

7. Security

We take the security of your personal data seriously. We implement appropriate technical and organisational measures to protect your data against unauthorised access, disclosure, loss or damage. This includes — but is not limited to — encryption, secure server configurations, access limitations, and regular audits.

8. Your rights under UK GDPR

Under UK GDPR, you have certain rights regarding your personal data:

  • Right to access — you can request a copy of the data we hold about you.

  • Right to rectification — you can request correction of inaccurate or incomplete data.

  • Right to erasure (“right to be forgotten”) — in certain circumstances, you can request that we delete your data.

  • Right to restriction of processing — you can ask us to limit how we use your data.

  • Right to object — you can object to some processing (e.g. marketing, profiling).

  • Right to data portability — where applicable (e.g. if we process data based on consent or contract).

  • Right to withdraw consent — at any time (for processing based on consent) without affecting lawfulness of prior processing.

To exercise any of these rights, contact us via [contact email]. We may require proof of identity before fulfilling requests.

If you have a complaint about how we handle your data, you have the right to lodge a complaint with the UK’s data protection authority, the Information Commissioner's Office (ICO).

9. Changes to this Privacy Policy

We may update this Privacy Policy from time to time (e.g. when our store processes change, we add new services or third-party integrations). The “Effective date” will be updated accordingly.

We encourage you to check this page periodically.

10. Children & under-age users

Our Website is not intended for users under the age of 16. We do not knowingly collect personal data from minors. If you believe we have collected data from a minor, please contact us at [contact email] — we will delete it as soon as possible.

11. Additional / Optional Clauses (Add if relevant)

You may need to include additional clauses depending on your operations:

  • Automated decision-making or profiling (if you use such features). 

  • Cookie consent banner and preference-management details (if using analytics/adverts). 

  • Data transfers outside UK / international customers. (see section 5) 

  • Third-party marketing / affiliate tracking (if applicable).

  • Use of third-party payment gateways — disclaim disclaiming card-data storage if you do not store card data.