The website customshirtsandmore.co.uk is owned and operated by Rob Gaffney trading as Custom Shirts and More (“we”, “us”, “our”). For data protection purposes, Rob Gaffney trading as Custom Shirts and More is the data controller responsible for your personal information.
1. Introduction
We’re committed to protecting and respecting your privacy in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
This policy explains (hopefully in plain English) how and why we use information you have given us and how we keep it secure. Data protection law also gives you rights and more control over your personal data. We’ll tell you about this below as well.
2. How we collect information from you
We collect basic information about you when you contact us about products and services — for example your name and email address so that we can get back to you.
We also store your details if you sign up to our site for shopping purposes. These are normally limited to your name, address (for shipping), email address and phone number.
We collect limited information when you visit our website via cookies. These help us improve and personalise our site. We’ve explained more about cookies in section 3 below.
3. What are cookies and how do we use them?
Most websites use cookies in some way. Cookies are small pieces of code that work in the background to help website owners measure how visitors interact with website content. Here are examples of cookies that may be set when you use our site:
- YouTube (e.g. SSID, PREF, YSC, SID and similar cookies set by Google/YouTube). These cookies enable visitors to watch embedded video clips on our site.
- Facebook (e.g. PRESENCE). This helps you interact with our Facebook presence from our site where we use Facebook features.
We may also use essential cookies to run the shop (for example, keeping your basket or session working) and, where you agree, analytics or similar tools. You can manage non-essential cookies through our cookie banner where provided.
If you prefer, you can turn cookies off in your browser settings, although this could affect your experience on some websites. Here are links to popular browsers’ instructions on how to disable cookies:
- Firefox: support.mozilla.org
- Chrome: support.google.com/chrome
- Opera: opera.com/help
- Microsoft Edge: privacy.microsoft.com
- Microsoft Internet Explorer: support.microsoft.com
4. How we handle information collected when you contact us about products or services
UK GDPR requires businesses to have a lawful basis to process personal data about a customer or prospective customer. The law sets out six lawful bases. We have to explain how and when we process your data and the legal basis for each purpose. Currently our processing fits into three of the six bases:
‘Contract’ basis — when processing your data is necessary to take steps at your request or to perform a contract, for example you submit an enquiry and ask us to get back to you, or you order a product. We will only use this data for the purpose for which you gave it.
‘Legitimate interests’ basis — if you buy something from us we may contact you again after we have delivered your goods. For example we might email you in the future to remind you about our services or show you similar products. We won’t bombard you. We will always give you the opportunity to opt out of further marketing.
‘Legal obligation’ basis — some processing is necessary because we must comply with the law. For example, when you make purchases, HMRC require us to keep records for up to 5 years after the 31 January submission deadline of the relevant tax year.
5. Security of your data
When you give us personal information, we take steps to ensure that it’s treated securely. We will absolutely not share your information with third parties for their own marketing purposes.
a) When you call, email or contact us via our website or social media, any personal information you give is processed and stored safely. Typically, to process an enquiry, personal information will include names, email addresses and phone numbers.
b) When you buy something from us we may also generate a paper copy for preparation of our annual accounts and tax return. UK GDPR doesn’t prohibit keeping personally identifiable information on paper, but we must take all reasonable steps to make sure it’s stored securely. We adhere to safe storage of your personal data whether electronic or paper, including lockable cabinets for paper records and password-protected, appropriately secured storage for electronic records.
c) When you use our website, information you send via our web forms is handled securely and communications between your browser and the website are encrypted by default (SSL/HTTPS). Our website is hosted by Bright Spark Solutions; they provide the server infrastructure on which the site runs.
d) When you buy something from our website we use Square (Squareup Europe Ltd) as our payment services provider so you can pay online securely. Square uses industry-standard security measures to protect payment data. Read more in Square’s privacy notice: squareup.com/gb/en/legal/general/privacy.
e) If you buy something from us you will enter your details into WooCommerce, our e-commerce platform. Automattic (the company behind WooCommerce) provides information about GDPR and privacy here: automattic.com — GDPR and automattic.com/privacy.
We only use third parties if they take your privacy and security as seriously as we do. Bright Spark Solutions may process limited technical data (such as server logs) strictly to host and secure the site, under appropriate arrangements with us.
6. Access to your personal information
UK GDPR provides rights for individuals. They don’t apply in every circumstance, but if you wish to exercise any of these rights please contact us using the details in section 9 and we’ll be happy to help.
- The right to be informed about the processing of your personal information.
- The right to have your personal information corrected if it is inaccurate and to have incomplete personal information completed.
- The right to object to processing of your personal information.
- The right to restrict processing of your personal information.
- The right to have your personal information erased (the “right to be forgotten”) where applicable.
- The right to request access to your personal information and to obtain information about how we process it.
- The right to move, copy or transfer your personal information (“data portability”) where applicable.
- Rights in relation to automated decision-making that has a legal or similarly significant effect on you.
After receiving a request, we will tell you when we expect to provide the information, and whether we require any fee. We are expected to provide a copy of your information free of charge in many cases; we may charge a reasonable fee if a request is manifestly unfounded or excessive.
7. Data retention period
We shouldn’t retain your data for longer than is necessary. We’ll only hold your personal information:
a) For as long as we have reasonable business needs — such as delivering products you’ve ordered and supporting you.
b) To comply with our legal obligations to HMRC — we must keep records for at least 5 years after the 31 January submission deadline of the relevant tax year.
c) For as long as we have a legitimate interest, for example to meet guarantees on goods sold and your statutory rights.
d) If you sign up to our website to buy products we will keep your account data for as long as you want to remain signed up. You have control: if you’d like us to remove your account or certain data, please email orders@customshirtsandmore.co.uk.
8. How you can complain
If you are not happy with how we handle your data or you have a complaint, please tell us by email at orders@customshirtsandmore.co.uk.
If you remain dissatisfied about how we process your personal information, you have the right to lodge a complaint with the Information Commissioner’s Office: ico.org.uk/concerns.
9. Contact details
You can contact us:
a) by post, to 5 Dashwood Close, Alton, Hampshire, GU34 1RS
b) by telephone, on 01420 88623
c) by email, using orders@customshirtsandmore.co.uk
© Custom Shirts and More 2026. All rights reserved.
Why not try our free online designer? Create custom T-Shirts, Hoodies, Jackets & Stickers in minutes.