Privacy Policy

IDRS

Effective Date: 03/03/2026

This Privacy Policy explains how IDRS (“we”, “our”, “us”) collects, uses, stores and protects your personal data when you visit our website, place an order, or interact with our brand.

We are committed to protecting your information in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

By using our website, you agree to the practices described in this policy.

1. Data Controller

IDRS is the data controller responsible for your personal data.

Contact details:
Email: [email protected]
Website: idrsclothing.com

If you have any privacy-related questions, you may contact us using the details above.

2. Information We Collect

We collect personal data in the following categories:

2.1 Identity & Contact Information

When you place an order or contact us, we may collect:

- Full name

- Billing address

- Shipping address

- Email address

- Telephone number

2.2 Transaction Information

- Products purchased

- Order value

- Date and time of purchase

- Payment confirmation status

- Delivery tracking information

2.3 Payment Information

All payments are processed securely via Stripe.

We do not store your full debit or credit card details. Stripe processes payment data in accordance with PCI-DSS security standards and its own privacy policy.

We may receive limited information from Stripe, such as:

- Payment confirmation

- Last four digits of card

- Card type

- Billing postcode

- Fraud risk indicators

This information is used for verification and dispute management.

2.4 Technical & Usage Data

When you visit our website, we may collect:

- IP address

- Device type

- Browser type

- Operating system

- Time zone setting

- Pages viewed

- Session duration

- Referring URL

- Cookies and tracking identifiers

This helps us monitor website performance and detect suspicious activity.

3. How We Use Your Data

We use your personal data for the following purposes:

3.1 Order Fulfilment

- Processing payments

- Arranging shipment via postal or courier services

- Providing order confirmations

- Providing delivery updates

- Managing returns where applicable

3.2 Fraud Prevention & Chargeback Protection

We may use personal and technical data to:

- Verify identity

- Prevent fraudulent transactions

- Respond to payment disputes or chargebacks

- Provide evidence to Stripe during disputes

This may include sharing delivery confirmation, IP logs, timestamps and transaction data with Stripe where required.

3.3 Customer Support

- Responding to enquiries

- Handling complaints

- Resolving order issues

3.4 Marketing Communications

If you opt in, we may send:

- Product updates

- Limited drop announcements

- Promotional offers

You may unsubscribe at any time via the link in our emails.

4. Legal Basis for Processing

We rely on the following lawful bases under UK GDPR:

- Contractual necessity – to fulfil your order

- Legal obligation – for tax and accounting compliance

- Legitimate interests – fraud prevention, business improvement

- Consent – for marketing communications

5. Sharing Your Data

We do not sell, rent or trade your personal data.

We may share data only where necessary with:

- Stripe (payment processing and dispute handling)

- Shipping providers (e.g. Royal Mail, DPD, courier services)

- Website hosting providers

- Analytics providers

- Email marketing platforms

These providers process data only to perform services on our behalf and are required to protect it.

6. Data Retention

We retain order and transaction records for as long as required to:

- Fulfil legal tax obligations

- Handle disputes or chargebacks

- Comply with accounting regulations

Financial transaction data may be retained for up to 6 years in line with UK tax law requirements.

7. International Data Transfers

Some third-party providers (such as Stripe or analytics services) may process data outside the UK.

Where this occurs, we ensure appropriate safeguards are in place, including standard contractual clauses where required.

8. Data Security

We implement reasonable technical and organisational measures to protect your personal data, including:

- SSL encryption

- Secure checkout processing

- Restricted access to customer data

- Monitoring for fraudulent activity

However, no system can guarantee absolute security.

9. Cookies & Tracking

We use cookies and similar technologies to:

- Enable shopping cart functionality

- Process checkout sessions

- Analyse website traffic

- Detect fraudulent behaviour

- Support future marketing campaigns

You may control cookies via your browser settings.

10. Your Rights

Under UK GDPR, you have the right to:

- Access your personal data

- Request correction

- Request deletion (where legally permitted)

- Restrict processing

- Object to processing

- Withdraw consent for marketing

- Lodge a complaint with the Information Commissioner’s Office (ICO)

To exercise your rights, please contact us via email.

11. Delivery & Third-Party Handling

Once your order is dispatched, delivery is handled by third-party courier services.

We may share your name, address and contact details with delivery providers strictly for the purpose of fulfilling your order.

12. Children’s Data

Our website is not directed at individuals under 16. We do not knowingly collect personal data from minors without parental consent.

13. Changes to This Policy

We may update this Privacy Policy to reflect changes in legal or operational requirements. The latest version will always be available on this page.

14. Contact

If you have any questions regarding this Privacy Policy or how we handle your data, please contact:

IDRS
Email: [email protected]
Website: idrsclothing.com