The Herbie Boxby Holistic Herbal Selections

Privacy Policy

for The Herbie Box

This Privacy Policy explains how The Herbie Box (we) collect, use, store and protects your personal information when you visit our website, make a purchase, or interact with our services. We are committed to respecting your privacy and complying with all relevant data protection laws, including the UK GDPR and Data Protection Act 2018.

1. Information We Collect

We may collect the following types of personal data:

a) Information You Provide Directly

  • Name
  • Email address
  • Postal/billing address
  • Phone number
  • Payment information (processed securely by third-party providers such as Stripe; we do not store card details)
  • Messages or enquiries submitted through contact forms

b) Information Collected Automatically

  • IP address
  • Browser type
  • Device information
  • Pages visited and time spent on the site
  • Cookies and tracking data (see our Cookies Policy)

c) Information From Third Parties

  • Email subscription data from Mailchimp
  • Payment confirmations from Stripe
  • Analytics from website platforms (e.g., Subbly)

2. How We Use Your Information

We use personal information to:

  • Process and fulfil orders
  • Communicate with you about purchases or enquiries
  • Send email updates, promotions, or newsletters (only if you've opted in)
  • Improve website functionality and user experience
  • Deliver personalised content or product recommendations
  • Fulfil legal, financial, and record-keeping obligations

3. Legal Basis for Processing

We process your data under the following lawful bases:

  • Contract – to fulfil orders and provide services
  • Consent – for marketing emails and newsletters
  • Legitimate interests – improving our website and customer experience
  • Legal obligation – for tax, accounting, and compliance reasons

4. How We Store and Protect Your Data

We take appropriate security measures to protect your information, including:

  • Encrypted payment processing
  • Secure servers and firewalls
  • Access controls for internal systems
  • Regular monitoring for security vulnerabilities

Your data is stored only as long as necessary to fulfil the purposes outlined in this policy.

5. Sharing Your Information

We do not sell your data.

However, we may share necessary information with trusted third-party providers:

  • Subbly – website hosting and e-commerce platform
  • Stripe – payment processing
  • Mailchimp – email marketing and subscriber management
  • Analytics services – to analyse website performance

These providers have their own privacy and data-protection procedures.

6. Your Data Rights

Under the UK GDPR, you have the right to:

  • Access your personal data
  • Request corrections to inaccurate information
  • Request deletion of your data (“right to be forgotten”)
  • Restrict how we process your data
  • Object to certain processing activities
  • Request data portability
  • Withdraw consent at any time

To exercise these rights, contact us using the details below.

7. Email Marketing & Communications

If you opt into receiving emails, we may send:

  • Promotions
  • Discounts
  • Product updates
  • Newsletters

You can unsubscribe at any time by clicking the link in any email or contacting us directly.

8. Cookies & Tracking

We use cookies to improve website performance and personalise your experience. For full details, please see our Cookies Policy.

9. Children's Privacy

Our website and products are not intended for individuals under the age of 16. We do not knowingly collect personal data from children.

10. Changes to This Policy

We may update this Privacy Policy periodically. Any changes will be posted on this page with an updated “Last Updated” date.

11. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, you can contact us at:

The Herbie Box
Email: contact@herbiebox.com