Your Information and Data Protection


Caroline Brown Online whose trading address is at 18 Bradford Road, Shipley, West Yorkshire, BD18 3NP. Our email address is and our website is

(1) Why we have a privacy policy

Your individual privacy is important to us, and this Privacy Policy is an overview to explain how we process (collect, use and hold) personal data (any information that identifies, or could reasonably be used to identify you) and comply with our legal obligations. Please read through the policy carefully and if you have any queries, email or look at section 2 below to find alternative ways to contact us.

We also use cookies on our website – see our separate Cookie Policy.

(2) Making changes to this Privacy Policy

The policy applies when you use our Website and our services.

This policy was last updated on 10 November 2023. 

We may make changes to the policy (for example to keep up with changes in the law) so we advise you to check the policy as you use the Website and our Services, although we will let you know about material changes. However, if we make a significant change (for example use your personal data in a way which you wouldn’t expect) then we will actively let you know, for example, by emailing you.

2          CONTACTING US

Who do I contact about personal data or if I change my mind about how you can use it?

The person responsible for our data protection is Caroline Brown, whom you can contact if you need any help or information about this policy or about how we collect and use personal data.

By Email:


Personal data is any information which could identify you, including your name, address and email address and IP address. Special category data is more sensitive, such as information about your health or ethnic origin.

Depending on how you use the Website and services and what we provide to you, we collect a range of personal data from you, including your name and contact information (such as your address, telephone number and email) as well as other information which you choose to give us as you use the Website and our services. You may also choose (consent) to give us special category personal information so that we can provide services to you as you require.

(1) What personal data do you collect?

We collect different types of personal data (any information that could identify you) but on the basis that we collect the minimum amount of data that we need. We may collect your personal data from you in the following ways:

If you choose not to provide us with personal data, we may be unable to provide some services to you. For example, without your email address we will not be able to email you.

(2) How do you collect personal data?

We may collect your personal data from you in the following ways:


(1) How do you use personal data?

We collect and use personal information in a variety of ways, including when we:

(2) What is the lawful basis for processing my personal data?

The law says that we cannot process (collect, use or store) your information unless we have a lawful basis for doing so. There are several lawful bases which we rely on, including:

(3) Who do you share personal data with?

There may be times when we must share your personal data with others, for example, where the law requires us or to enforce our rights or protect others. We may also share your data to:-

Otherwise, we will only share your personal information if you have consented to this.

Where relevant, we take all steps required by law to protect personal data such as, for example, having written agreements with those third parties.


(1) Your Rights

The law gives you certain rights in relation to your personal data and to exercise or discuss these rights contact Caroline Brown on

Your rights depend on our reason for processing your information but may include the following:

For more information about your rights, you can visit the Information Commissioner’s website where you can find detailed information about each of those rights

(2) Exercising Your Rights

We will deal with all personal data requests as soon as we are able and usually within one month of receipt. If there is going to be a delay (which could be up to 3 months) in dealing with your request or there is a reason why we can’t comply with your request, we will let you know and explain why within one month of receiving your request.

We will ask you for some information first (primarily identification and clarification).

You also have the right to lodge any data protection complaints with the Information Commissioner’s Office (ICO), the UK’s supervisory authority. Visit for more information including how to access their helpline.


Unless you have specifically agreed otherwise, we will only keep your personal data for as long as it is

Retention depends on our relationship with you and please see below:

Data SubjectHow long personal information/data is retained  
Potential ClientsWe will retain personal information for 12 months from the date of our last communication. 
ClientsWe will retain personal information for 7 years from the date that you ceased to be a client.
Potential employees who are not placed in employment using our servicesWe will retain personal information for 12 months from the date of our last communication, unless you agree otherwise.
Employees / workersWe will retain personal information for 7 years from the date that you ceased to be an employee/worked with us.
Potential SuppliersWe will retain personal information for 12 months from the date of our last communication. 
SuppliersWe will retain personal information for 7 years from the date that you ceased to be a supplier.


(1) What we do

We have implemented appropriate technology and operational security, including policies and measures to protect personal information under our control including from unauthorised access, improper use, alteration, unlawful or accidental destruction, and accidental loss on a “privacy by design and default” basis. This includes

(2) Your Role

Please ensure that

For more information, please contact


We may transfer some data outside the EU (which may not have the same data protection), but, if we do this, we ensure that we have procedural and technical safeguards to protect the privacy of your data and to comply with the law and our own obligations, including under GDPR.


You may visit or leave our Website by clicking a link to or from another website or platform operated by others (third parties) and we are not responsible for those websites or platforms – for example, you may use social media icons (such as LinkedIn). If you do this, please also take the time to read the relevant privacy information provided by other websites/platforms because they may be different. Your information will only be shared where you have agreed to allow this.


We also collect information which does not identify you (non-personal information). This includes the type of internet browser you use or the website from which you linked to our website.

We may also aggregate information which you have submitted to us (for example, your age and the town where you live) which is anonymous – you cannot be identified from this information. We share this aggregate information with third parties to help us run our Website and business effectively.

We use cookies – please read our Cookie Policy.


(1) Contacting us 

If you have a complaint, please contact Caroline Brown.

By Email:

(2) Contacting the Information Commissioner’s Office

You can also lodge any data protection complaints with the Information Commissioner’s Office (ICO) who is the UK’s supervisory authority. You can visit for more information including the best ways to contact them.

Last updated: 10 November 2023