Privacy Policy

Last Updated: November 2025

1. Introduction

STELIMOLLOY LTD ("we," "us," or "our") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your personal information when you visit our website (stelimolloy.com) or use our services.

This policy complies with the UK General Data Protection Regulation (UK GDPR) and the EU General Data Protection Regulation (EU GDPR).

2. Data Controller

The data controller responsible for your personal data is:

STELIMOLLOY LTD

Company Number: NI683942

Email: info@stelimolloy.com

Address: 2 Montgomery Street, Belfast, BT1 4NX

For any questions about how we handle your personal data, please contact us at info@stelimolloy.com.

3. What Personal Data We Collect

We collect and process the following types of personal data:

3.1 Information You Provide Directly

- Contact Information: Name, email address, phone number, postal address

- Booking Information: Appointment details, service preferences, booking history

- Transaction Information: Payment details (processed securely by our payment providers)

- Communication Data: Information you provide when contacting us via forms, email, or phone

- Marketing Preferences: Your consent to receive marketing communications

3.2 Information We Collect Automatically

- Technical Data: IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform

- Usage Data: Information about how you use our website, products, and services

- Analytics Data: Website traffic, navigation patterns, and user behaviour through cookies and similar technologies

4. How We Collect Your Personal Data

We collect personal data through the following methods:

- Website Contact Forms: When you fill out enquiry or contact forms

- Newsletter Subscriptions: When you sign up to receive our marketing communications

- Online Booking System: Through our booking platform (Booksy) when you schedule appointments

- Purchase Transactions: When you buy products or services from us

- Website Cookies and Analytics: Through automated technologies when you visit our website

- Direct Communications: When you email, call, or message us directly

5. Legal Bases for Processing Your Data

We process your personal data under the following legal bases:

5.1 Contract Performance

Processing necessary to perform our contract with you when you:

- Book appointments or services

- Purchase products

- Enter into any agreement with us

5.2 Legitimate Interests

Processing necessary for our legitimate business interests, including:

- Improving our services and customer experience

- Website analytics and optimization

- Preventing fraud and ensuring security

- Managing our business operations

5.3 Consent

Where you have given explicit consent for:

- Marketing communications (email, SMS)

- Non-essential cookies

- Special categories of data (if applicable)

5.4 Legal Obligation

Where we must process data to comply with legal requirements, such as:

- Tax and accounting obligations

- Health and safety regulations

- Legal proceedings

6. How We Use Your Personal Data

We use your personal data for the following purposes:

6.1 Service Delivery

- Processing and managing your bookings and appointments

- Providing the services you have requested

- Processing payments and transactions

- Sending booking confirmations and reminders

6.2 Communication

- Responding to your enquiries and requests

- Providing customer support

- Sending service-related notifications

6.3 Marketing (with your consent)

- Sending promotional emails about our services, products, and special offers

- Newsletter communications

- SMS marketing messages (where you have opted in)

6.4 Business Operations

- Improving our website, products, and services

- Analysing website usage and customer behaviour

- Preventing fraud and abuse

- Maintaining security of our systems

7. Sharing Your Personal Data

We only share your personal data with trusted third parties who help us provide our services:

7.1 Service Providers

- Booksy: Online booking and appointment management system

- Stripe & PayPal: Secure payment processing

- Mailchimp: Email marketing and newsletter services

- Hostinger: Website hosting and infrastructure

- Google Analytics: Website analytics and performance monitoring

- Microsoft Clarity: User experience and website behaviour analysis

- Facebook: Marketing analytics and advertising (Facebook Pixel)

These service providers are contractually obligated to:

- Process data only on our instructions

- Implement appropriate security measures

- Comply with GDPR requirements

7.2 Legal Requirements

We may disclose your personal data where required by law, court order, or government regulation, or where necessary to:

- Prevent fraud or crime

- Protect our legal rights

- Protect the safety of any person

7.3 Business Transfers

If we sell, merge, or reorganize our business, your personal data may be transferred to the new owner, subject to the same privacy protections.

8. International Data Transfers

Some of our service providers are located outside the UK and European Economic Area (EEA), including the United States. When we transfer your data internationally, we ensure appropriate safeguards are in place:

- Standard Contractual Clauses (SCCs): Approved by the EU Commission and UK authorities

- Adequacy Decisions: Transfers to countries with adequate data protection laws

- Privacy Shield/Framework Programs: Where applicable and certified

The following services may involve international transfers:

- Google Analytics (US)

- Microsoft Clarity (US)

- Mailchimp (US)

- Stripe (US)

9. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance your experience and analyse website performance.

9.1 Types of Cookies We Use

Essential Cookies (always active)

- Enable core website functionality

- Remember your session and security settings

- No consent required

Analytics Cookies (with your consent)

- Google Analytics: Track website traffic and user behaviour

- Microsoft Clarity: Understand user interactions and improve UX

- Help us improve our website and services

Marketing Cookies (with your consent)

- Facebook Pixel: Deliver relevant advertisements

- Track marketing campaign effectiveness

- Personalize your advertising experience

9.2 Managing Cookies

You can control and manage cookies through:

- Our cookie consent banner when you first visit the website

- Your browser settings (though this may affect website functionality)

- Your preferences at any time by contacting us

For more information about managing cookies, visit [www.aboutcookies.org](http://www.aboutcookies.org) or [www.allaboutcookies.org](http://www.allaboutcookies.org).

10. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy:

10.1 General Retention

- Active Customers: Until you request deletion of your data

- Inactive Accounts: We may contact you to confirm if you wish to continue receiving services/communications

- Transaction Records: Minimum 6-7 years for tax and accounting purposes (legal requirement)

- Marketing Data: Until you unsubscribe or request deletion

10.2 Your Right to Request Deletion

You can request deletion of your personal data at any time by contacting info@stelimolloy.com. We will comply unless we have a legal obligation to retain certain information.

11. Your Rights Under GDPR

Under UK and EU GDPR, you have the following rights:

11.1 Right of Access

You can request a copy of the personal data we hold about you.

11.2 Right to Rectification

You can request correction of inaccurate or incomplete personal data.

11.3 Right to Erasure ("Right to be Forgotten")

You can request deletion of your personal data where:

- It's no longer necessary for the purposes it was collected

- You withdraw consent (where consent was the legal basis)

- You object to processing and there are no overriding legitimate grounds

- It was unlawfully processed

- It must be erased to comply with a legal obligation

11.4 Right to Restrict Processing

You can request restriction of processing where:

- You contest the accuracy of the data

- Processing is unlawful but you don't want erasure

- We no longer need the data but you need it for legal claims

- You've objected to processing pending verification

11.5 Right to Data Portability

You can request to receive your personal data in a structured, machine-readable format and transmit it to another controller.

11.6 Right to Object

You can object to processing based on legitimate interests or for direct marketing purposes.

11.7 Right to Withdraw Consent

Where processing is based on consent, you can withdraw it at any time. This won't affect the lawfulness of processing before withdrawal.

11.8 Right to Lodge a Complaint

You have the right to lodge a complaint with the supervisory authority:

Information Commissioner's Office (ICO) - UK

Website: [ico.org.uk](https://ico.org.uk)

Telephone: 0303 123 1113

Your local Data Protection Authority (for EU residents)

### 11.9 Exercising Your Rights

To exercise any of these rights, please contact us at info@stelimolloy.com. We will respond to your request within one month.

12. Data Security

We implement appropriate technical and organizational measures to protect your personal data against:

- Unauthorized access or disclosure

- Accidental loss or destruction

- Malicious attacks

12.1 Security Measures Include:

- Secure Socket Layer (SSL) encryption for data transmission

- Secure payment processing through PCI-DSS compliant providers (Stripe, PayPal)

- Access controls and authentication

- Regular security updates and monitoring

- Staff training on data protection

12.2 Your Responsibility

Please keep your login credentials (if applicable) confidential and notify us immediately if you suspect unauthorized access to your account.

13. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of these external sites. Please review their privacy policies before providing any personal information.

14. Children's Privacy

Our services are not directed at children under 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in:

- Our practices

- Legal requirements

- Technology

We will notify you of significant changes by:

- Posting the updated policy on our website with a new "Last Updated" date

- Sending email notifications (where appropriate)

Your continued use of our services after changes indicates acceptance of the updated policy.

16. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please contact us:

Email: info@stelimolloy.com

Company: STELIMOLLOY LTD (Company Number NI683942)

Address: 2 Montgomery Street, Belfast, BT1 4NX

We will respond to your enquiry as soon as possible, typically within 1-2 business days.

STELIMOLLOY LTD - Committed to Protecting Your Privacy

Terms & Conditions

FAQs

What is GDPR?

GDPR is a regulation protecting personal data privacy in the EU.

How is data collected?

We collect only necessary data directly from you with consent.

Can I request data deletion?

Yes, you have the right to request deletion of your personal data anytime.

Is my data shared?

No, your data is never shared without your explicit permission.

How is data protected?

We use strong security measures to keep your information safe.

Who can I contact about privacy concerns?

You can contact us anytime using the form below

Contact Us

Reach out securely—your privacy is our promise when you contact us.