Description
Reviews
Price
FAQs

Privacy Policy

Effective Date: 01/01/2025
Last Updated: 01/01/2025

This Privacy Policy explains how Leafysale collects, uses, and protects your personal information when you visit our website leafysale.com or use our services.

Information We Collect

Personal Information

When you interact with our website or services, we may collect:

  • Contact Details: Name, email address, phone number, shipping address
  • Account Information: Username, password, purchase history
  • Payment Information: Since we use Cash on Delivery, we do not collect credit card or banking details online
  • Communication Data: Messages, emails, customer service interactions
  • Order Information: Products purchased, delivery preferences, order history
Technical Information

We automatically collect:

  • Device Information: IP address, browser type, operating system
  • Usage Data: Pages visited, time spent, clicks, search queries
  • Location Data: General location based on IP address
  • Cookies & Tracking: Website preferences, session data

How We Use Your Information

Primary Purposes
  • Order Processing: Fulfilling purchases, coordinating delivery, customer service
  • Account Management: Creating and maintaining your account
  • Communication: Order updates, delivery notifications, customer support
  • Payment Processing: Coordinating Cash on Delivery transactions with courier services
  • Legal Compliance: Meeting regulatory requirements, tax obligations
Marketing & Analytics
  • Personalization: Tailored product recommendations based on browsing history
  • Marketing Communications: Newsletters, special offers (with your consent)
  • Website Analytics: Improving user experience and site performance
  • Fraud Prevention: Protecting against unauthorized transactions and suspicious activity

Legal Basis for Processing (GDPR)

We process your personal data based on:

  • Contract Performance: Fulfilling orders and providing services
  • Legitimate Interest: Website analytics, fraud prevention, business operations
  • Consent: Newsletter subscriptions, marketing communications, non-essential cookies
  • Legal Obligation: Tax records, consumer protection compliance, regulatory requirements

Data Sharing

Third-Party Service Providers

We may share your data with:

  • Shipping Companies: Order delivery, tracking, and Cash on Delivery payment collection
  • Email Services: Transactional and marketing communications
  • Analytics Providers: Website performance and user behavior analysis (Google Analytics)
  • Advertising Platforms: Google Ads for remarketing and conversion tracking
  • Customer Support Tools: Help desk and communication services
  • Hosting Services: Website infrastructure and data storage
Legal Requirements

We may disclose information when required by:

  • Court orders or legal processes
  • Government authorities
  • Law enforcement agencies
  • Protection of our rights, property, or safety
  • Compliance with applicable laws and regulations
Business Transfers

In case of merger, acquisition, or sale of business assets, your information may be transferred to the new entity. You will be notified of any such change.

Data Security

Protection Measures
  • SSL Encryption: All data transmitted securely via HTTPS
  • Secure Servers: Industry-standard data centers with physical security
  • Access Controls: Limited employee access to personal data on need-to-know basis
  • Regular Audits: Security assessments and vulnerability testing
  • Password Protection: Encrypted storage of account credentials
  • Monitoring: Continuous monitoring for suspicious activity
Data Breach Protocol

In the event of a data breach affecting your personal information, we will:

  • Notify affected users within 72 hours as required by GDPR
  • Report to relevant data protection authorities
  • Take immediate steps to secure systems and prevent further breaches

Data Retention

  • Account Data: Retained while account is active and for 1 year after account closure
  • Order History: Kept for 7 years for tax and legal purposes
  • Marketing Data: Until you unsubscribe or withdraw consent
  • Technical Data: Typically retained for 2 years for analytics purposes
  • Communication Records: Retained for 3 years for customer service quality

Your Rights (GDPR)

Access & Control

You have the right to:

  • Access: Request copies of your personal data we hold
  • Correction: Update or correct inaccurate information
  • Deletion: Request removal of your data (“right to be forgotten”)
  • Portability: Receive your data in a structured, machine-readable format
  • Restriction: Limit how we process your data in certain circumstances
  • Objection: Opt-out of marketing communications and profiling
  • Withdraw Consent: Revoke consent for data processing at any time
Exercising Your Rights

To exercise these rights:

  1. Contact us at [email protected]
  2. Provide verification of your identity (for security purposes)
  3. Specify which rights you wish to exercise
  4. We will respond within 30 days
Right to Lodge a Complaint

If you believe your privacy rights have been violated, you can file a complaint with:

  • Your local data protection authority
  • Italy: Garante per la protezione dei dati personali (www.garanteprivacy.it)
  • EU: Your national supervisory authority

Cookies and Tracking Technologies

We use cookies and similar technologies. For detailed information about our cookie usage, please see our Cookie Policy at leafysale.com/cookies-policy.

Cookie Categories
  • Essential Cookies: Required for website functionality
  • Analytics Cookies: Help us understand website usage
  • Marketing Cookies: Used for advertising and personalization
  • Preference Cookies: Remember your settings and preferences

International Data Transfers

European Economic Area (EEA)
  • We primarily process data within the EEA
  • Transfers outside EEA are protected by appropriate safeguards
  • Standard Contractual Clauses (SCCs) used where applicable
  • Adequacy decisions recognized for certain countries
Data Protection Measures
  • Security Standards: All data transfers use encryption
  • Contractual Protections: Binding agreements with third parties
  • Regular Reviews: Ongoing assessment of transfer mechanisms
  • Compliance Monitoring: Verification of third-party compliance

Third-Party Services

Google Services

We use Google services that may collect and process data:

  • Google Analytics: Website analytics and performance tracking
  • Google Ads: Advertising, remarketing campaigns, conversion tracking
  • Google Privacy Policy: https://policies.google.com/privacy
  • Opt-out: You can opt out of Google Analytics at https://tools.google.com/dlpage/gaoptout
Courier Services

We share delivery information with courier services for Cash on Delivery fulfillment. These services are bound by their own privacy policies and data protection obligations.

Children’s Privacy

  • Our website is not intended for children under 18 years old
  • We do not knowingly collect data from minors
  • Parents should monitor their children’s online activities
  • If you believe we have collected data from a minor, contact us immediately at [email protected]
  • We will delete such data promptly upon verification

Marketing Communications

Email Marketing
  • We send promotional emails only with your consent
  • Every marketing email includes an unsubscribe link
  • You can opt-out at any time without affecting your account or orders
  • Transactional emails (order confirmations, shipping updates) are not affected by unsubscribe
Preferences

You can manage your communication preferences by:

  • Clicking “unsubscribe” in any marketing email
  • Contacting us at [email protected]
  • Updating preferences in your account settings

Automated Decision Making

We may use automated processing for:

  • Fraud Detection: Identifying suspicious orders or activity
  • Product Recommendations: Suggesting products based on browsing history
  • Pricing: Dynamic pricing based on location and demand

You have the right to object to automated decision-making that significantly affects you. Contact us at [email protected] to exercise this right.

Updates to This Policy

  • We may update this policy periodically to reflect changes in practices or legal requirements
  • Material changes will be communicated via email or prominent website notice
  • Continued use of our services after changes constitutes acceptance
  • Check this page regularly for updates
  • Previous versions available upon request

Data Protection Contact

For specific GDPR requests, privacy concerns, or data protection inquiries:

  • Email: [email protected]
  • Subject Line: “Data Protection Inquiry” or “Privacy Request”
  • Response Time: Within 30 days as required by GDPR

Legal Compliance

This Privacy Policy complies with:

  • General Data Protection Regulation (GDPR) – EU Regulation 2016/679
  • Italian Privacy Code (D.Lgs. 196/2003 as amended by D.Lgs. 101/2018)
  • ePrivacy Directive (Directive 2002/58/EC)
  • EU Consumer Rights Directive (2011/83/EU)
  • Other applicable privacy and data protection laws

Contact Information

For questions about your privacy rights or this policy:

Email: [email protected]
Website: leafysale.com

We are committed to protecting your privacy and will respond to all inquiries promptly.

© 2025 Leafysale – All rights reserved

We bring you dependable deals and recommendations to make shopping effortless.

Legal Informations

Policies

Contact Us

  • +44 20 7946 8235
  • [email protected]
  • Mon: 09:00 - 18:00
    Tue: 09:00 - 18:00
    Wed: 09:00 - 18:00
    Thu: 09:00 - 18:00
    Fri: 09:00 - 18:00

About Us

  • LEAFYSALE S.R.L.
  • Operating Office: 82 Highfield Road, Manchester, M14 6LT, England
  • Registered Office: 14 Rosewood Lane, Brighton, BN2 5TX, England

Copyright 2025, Leafysale. All Rights Reserved.