Privacy Policy

Do Not Record Me Ltd
Last updated: January 2026

Do Not Record Me Ltd (“Do Not Record Me”, “we”, “us”, or “our”) operates this website and online store for the sale of physical apparel and accessories (the “Website”).

This Privacy Policy explains how we collect, use, disclose, retain, and protect personal data when you access the Website, place an order, or communicate with us.

We process personal data in accordance with the UK General Data Protection Regulation (“UK GDPR”), the Data Protection Act 2018, and other applicable data protection laws.

For the purposes of UK GDPR, Do Not Record Me Ltd is the data controller in relation to personal data processed through the Website.

1. Categories of Personal Data We Collect

We collect and process the following categories of personal data:

•Identity Data (such as your name)

•Contact Data (such as email address, billing address, and shipping address)

•Transaction Data (such as order details and payment confirmation information)

•Technical Data (such as IP address, browser type, device type, and session-related data required for security and functionality)

•Communications Data (such as messages sent to customer support)

We do not collect special category data.
We do not knowingly collect data relating to criminal convictions.
We do not knowingly collect personal data from children.

2. Lawful Bases for Processing

Under UK GDPR, we rely on the following lawful bases:

•Contractual Necessity – to process and fulfil your order, coordinate manufacturing and delivery, and provide customer support

•Legal Obligation – to comply with tax, accounting, and regulatory requirements

•Legitimate Interests – to operate, secure, and protect our Website and business, including fraud prevention and transaction security

We do not process personal data for direct marketing purposes.

3. How We Use Personal Data

We use personal data solely to:

•Process and fulfil orders

•Coordinate on-demand manufacturing and delivery

•Provide transactional communications

•Respond to enquiries

•Prevent fraud and maintain platform security

•Comply with legal and regulatory obligations

We do not use personal data for:

•Targeted advertising

•Behavioural profiling

•Retargeting

•Cross-site tracking

•Data brokerage

4. Payment Processing

Payment details are processed through secure, PCI-compliant third-party payment processors integrated with our store.

We do not store full payment card numbers on our systems.

Payment processors act under their own privacy and security frameworks and process payment data in accordance with applicable regulatory standards.

5. Data Sharing and Service Providers

We share personal data only where necessary to operate our business and fulfil orders. This includes:

•Shopify, which provides the e-commerce infrastructure and hosting

•Authorised payment processors to securely complete transactions

•Trusted third-party manufacturing and logistics providers to produce and deliver orders

•Professional advisers or regulatory authorities where required by law

These service providers:

•Receive only the data necessary to perform their function

•Are required to process data in accordance with applicable data protection laws

•May not use personal data for marketing, profiling, or independent commercial purposes

We do not sell, rent, or trade personal data.

6. International Transfers

Because our Website infrastructure and fulfilment partners operate internationally, personal data may be transferred outside the United Kingdom.

Where required, we rely on appropriate safeguards such as Standard Contractual Clauses or other lawful transfer mechanisms recognised under UK GDPR.

7. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected.

•Customer contact and shipping data is retained for order fulfilment and customer service purposes

•Transaction and accounting records are retained for up to six years in accordance with UK tax and accounting requirements

•Non-essential personal data is deleted once no longer required for operational purposes

8. Your Rights

Under UK GDPR, you have the right to:

•Access the personal data we hold about you

•Request correction of inaccurate data

•Request erasure of personal data

•Request restriction of processing

•Object to processing based on legitimate interests

•Request data portability where applicable

To exercise your rights, please contact us using the details below. We may require verification of identity before responding.

If you believe your rights have been infringed, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO).

9. Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, misuse, alteration, or disclosure.

These measures include secure hosting infrastructure, encryption in transit, access controls, and reliance on PCI-compliant payment processors.

No online system can guarantee absolute security.

10. Children’s Privacy

Our Website is not directed at children under the age of 16. We do not knowingly collect personal data from children.

11. Changes to This Policy

We may update this Privacy Policy to reflect operational, legal, or regulatory changes. The latest version will always be published on this page with an updated effective date.

Continued use of the Website constitutes acceptance of the updated policy.

12. Contact Information

Do Not Record Me Ltd
Email: hello@donotrecord.me
Registered Address: College House, Ruislip, England, HA4 7AE

For the purposes of UK GDPR, Do Not Record Me Ltd is the data controller.

You may also like

Have a coupon?