Privacy policy for UK and EU customers

Last updated: May 17, 2026

This notice explains how Archiology processes personal data for visitors and customers in the United Kingdom and European Union. It should be read with our main Privacy Policy and is intended to reflect UK GDPR and EU GDPR requirements.

Who controls your personal data

Archiology is the controller for personal data collected through our store. You can contact us at hello@archiology.design.

Personal data we process

We process information you provide when you browse, place an order, contact us, create an account, join a mailing list, or interact with our marketing. This may include your name, email address, phone number, billing and shipping address, order details, payment confirmation details, customer service messages, marketing preferences, IP address, device data, cookie identifiers, and site usage information.

Purposes and lawful bases

We process order, payment, delivery, and customer service information because it is necessary to perform our contract with you. We process tax, accounting, compliance, fraud-prevention, and product-safety records because we have legal obligations or legitimate interests in operating a secure and accountable business.

We use analytics, site improvement, security monitoring, and limited business reporting where we have legitimate interests and those interests are not overridden by your rights. We send email or SMS marketing only where we have consent or another lawful basis permitted by applicable law, and you can opt out at any time.

Sharing personal data

We share personal data with service providers that help us run the store, including Shopify, payment processors, fraud-prevention tools, warehouses, shipping carriers, email and SMS providers, analytics and advertising platforms, customer support tools, professional advisers, and authorities where required by law.

International transfers

Archiology is based outside the UK and EU, and some service providers process data in the United States or other countries. Where personal data is transferred internationally, we use safeguards such as adequacy decisions, standard contractual clauses, the UK International Data Transfer Agreement or UK Addendum, and other technical and contractual protections where applicable.

Retention

We keep personal data only as long as needed for the purposes described in this notice, including order fulfilment, customer support, accounting, tax, legal, fraud-prevention, dispute resolution, and marketing-record management. Retention periods vary depending on the type of record and legal requirement.

Your rights

Depending on where you live and the circumstances, you may have rights to access, correct, delete, restrict, or receive a copy of your personal data, object to certain processing, and withdraw consent where processing is based on consent.

To exercise your rights, contact hello@archiology.design. You also have the right to complain to the UK Information Commissioner's Office or your local EU data protection authority.

Cookies and marketing technologies

We use cookies and similar technologies to operate the store, remember preferences, understand site performance, personalize content where allowed, and measure advertising. Where legally required, we request consent before using non-essential cookies.