Privacy Policy

At Ace of Iron Apparel®, we are committed to protecting and preserving the privacy of our visitors in accordance with The Data Protection Act 2018 (UK GDPR) and guidelines from the ICO (Information Commissioner’s Office), to which we are registered members. This Privacy Policy explains how we collect, use, and protect your personal data when you visit our website. We update this Policy periodically, so please review it regularly.

1. Information we collect:
In the course of operating our website, we may collect and process the following data about you:

  • Information about your use of our site, including pages visited and resources accessed. This may include traffic data, location data, and other communication data.
  • Information you voluntarily provide, such as when you register for information or make a purchase. Please note, we do not have access to your payment card information, which is securely processed by Shopify in accordance with PCI compliance standards.
  • Information provided when you communicate with us through any means.

    2. Use of cookies:
    Cookies are small text files that are placed on your computer by websites that you visit. They are widely used to make websites work more efficiently, as well as to provide information to the owners of the site.

    At Ace of Iron Apparel®, we use cookies where appropriate to gather information about your computer for the purpose of improving our website's functionality and user experience. These cookies collect information about your general internet usage, such as pages visited and resources accessed, but they do not identify you personally. The data collected is purely statistical and does not contain any personal details.

    By using our website, you consent to the use of cookies in accordance with this Privacy Policy. You can adjust your browser settings to decline cookies if you prefer. This can typically be done by activating the reject cookies setting in your browser. Please note that rejecting cookies may affect the functionality of our website.

    Additionally, we use cookies provided by Facebook and Instagram to enable us to advertise effectively. These cookies, often referred to as "pixels," allow us to track the performance of our advertisements and understand how users interact with our website after seeing an advertisement. The data collected by these cookies is used in accordance with Facebook's and Instagram's privacy policies and is not accessible to us beyond aggregated statistical reports.

    It's important to note that we do not sell your data to third parties, and any data collected by these cookies is used solely for advertising purposes and to improve our marketing efforts.

    Third-party advertisers, such as those on Instagram, Facebook, TikTok, or our discount partner 'Publicard', may also use cookies when you click on their advertisements or page links on our website. We do not control these cookies, and they are subject to the privacy policies of the respective advertisers.

    3. Use of your information:
    We use the information that we collect from you to provide our services and enhance your experience with Ace of Iron Apparel®. In addition to this primary purpose, we may use the information for one or more of the following purposes:

    1. To Provide Information: We may use your information to send you updates and information that you request from us relating to our products or services. For example, signing up for our email updates allows us to send you product announcements, promotional offers, and information about new products, restocks, business updates, new policies & procedures, and other relevant marketing information. You can unsubscribe from these communications at any time by clicking the "unsubscribe" link at the bottom of any email communication you receive from us.

    2. To Recommend Products: Based on your purchase history and preferences, we may provide you with details of similar goods or services that may be of interest to you. This helps us personalize your shopping experience and provide tailored recommendations.

    3. To Notify You of Changes: We may use your information to inform you about any changes to our website, services, or goods and products that may affect you.

    4. Marketing Purposes: With your consent, we may allow selected third parties to use your data to provide you with information about goods or services that we believe may be of interest to you. You can withdraw this consent at any time.

    Please note that we do not sell your personal information to third parties for their marketing purposes.

    4. Data Storage, Data Security, and Payment Methods:
    In operating our website, it may be necessary to transfer data that we collect from you to locations outside of the UK (United Kingdom) for processing and storing, as required by Shopify's server locations and the server locations of the plugins we utilise in order to operate our Shopify hosted website. Please note, all plugins are obtained through Shopify's "App Store". All Shopify App developers must adhere to the terms of Shopify Partner Program Agreement, and every app in the Shopify App Store has to meet a strict list of requirements before it can be listed and available for install by shop owners such as ourselves (Ace of Iron Apparel Ltd). By providing your personal data to us, you consent to this transfer, storing, or processing as needed to operate our Shopify store. We take all reasonable steps to ensure that your data is treated securely and in accordance with this Privacy Policy.

    Please be aware that transmitting information over the internet is not completely secure, and data can occasionally be intercepted (for example, by malicious software). While we strive to protect your personal information, we cannot guarantee the security of data transmitted to us electronically. Any transmission is at your own risk.

    However, we use highly secure methods and services to collect payments for goods ordered. For instance, Shopify Payments and PayPal are both recognised for their robust security measures. Your card information is not stored or visible to Ace of Iron Apparel Ltd or Shopify. Our Shopify-powered store complies with the Payment Card Industry Data Security Standard (PCI DSS) as a Level 1 certified provider. Shopify Payments employs 128-bit SSL encryption, one of the most secure methods available for online transactions. We can only view the last 4 digits of your card number (e.g., "Mastercard •••• •••• •••• 1234"), which is necessary for fraud protection and refund processing. The rest of your card details are encrypted and not accessible to us or Shopify.

    PayPal transactions are also safeguarded by advanced data encryption and offer comprehensive buyer protection features.

    We also accept Apple Pay and Google Pay as secure payment methods on our website. These services are designed with strong security measures to protect your payment information:

    • Apple Pay: When you use Apple Pay, your card details are not stored on your device or Apple servers. Instead, a unique Device Account Number is assigned, encrypted, and securely stored in the Secure Element on your device. Each transaction is authorized with a one-time unique dynamic security code.

    • Google Pay: Google Pay protects your payment information with multiple layers of security, including tokenization. When you add a card to Google Pay, it generates a virtual account number representing your account information. This number is used for transactions instead of your actual card details, providing an additional layer of security.

    Both Apple Pay and Google Pay use industry-standard encryption and security protocols to safeguard your payment data during transactions. These methods help ensure that your payment information remains private and secure when using our website.

    5. Data Privacy: 
    At Ace of Iron Apparel, we prioritise the privacy and security of your data, powered by Shopify, our online store provider. Shopify employs robust measures including encryption, firewalls, and regular security audits to ensure compliance with the latest GDPR guidelines and global privacy laws. Your payment information is encrypted and stored securely by Shopify, adhering to PCI DSS standards, as detailed in our "Data Storage, Data Security, and Payment Methods" section above.

    Key Security Measures

    • Data Minimisation: Shopify focuses on minimising data collection and ensures transparency, control, and security over personal data.

    • Access Control: Our store access is strictly controlled, requiring passwords with 2-step authentication, VPNs (Virtual Private Networks), and "passkeys" linked to facial recognition software for added security. Apple Passkeys are also employed for enhanced security measures.

    • Double Password Protection: All data accessed using our store's electronic hardware is double password protected, ensuring heightened security.

    Your Rights

    • Choice to Participate: You have the right to deactivate data sharing at any time and to access all information held about you. Details on how to access this information are provided in the "Accessing Information" section below.

    • Confidential Participation: We uphold strict confidentiality, ensuring that no Shopify store can access another store's confidential data or create audience lists from another merchant's customer base.

    • Erasing Information: Upon request, we promptly delete personal information, ensuring it is also removed from any data sharing within the Shopify network.

      6. Disclosing your information:
      We will not disclose your personal information to any third party except as outlined in this Privacy Policy and under the following circumstances:

      1. Business Transfers: In the event that we sell or transfer all or a portion of our business assets to a buyer or successor, your personal information may be disclosed and transferred as part of the transaction. Any such transfer will be conducted in compliance with applicable privacy laws.

      2. Legal Obligations: We may disclose your personal information when required to do so by law, regulation, legal process, or governmental request.

      3. Fraud Prevention: To protect against fraud and reduce the risk of fraudulent activities, we may disclose personal information to third parties, including, but not limited to law enforcement agencies, credit reporting agencies, Shopify (and connections therein) as part of our internal investigations procedure, and other fraud prevention entities.

        7. Third party links:
        From time to time, we may include links to third-party websites (including, but not limited too; Publicard, META, Facebook, Instagram, and TikTok) on our website. Please note that the inclusion of these links does not imply endorsement or approval of their privacy practices or terms of service. Before providing any personal data to these websites, we recommend reviewing their respective privacy policies.

        We use Facebook, Instagram, and TikTok for advertising purposes to promote our business. However, we do not and will never sell your data. Our advertising involves the use of a third-party cookie called "Meta Mega Pixel - Advanced Matching & Conversions API." This cookie collects browsing behaviour data from our website and shares it with relevant advertising algorithms. Our primary advertising platforms for Facebook, Instagram, and TikTok are managed through Facebook Ads Manager and TikTok Ads Manager by our Marketing team. The "Mega Pixel" collects data relevant to your interaction with our website and social media pages, including, but not limited to, page & product views, items added & removed from the basket, search terms, customer click IDs, customer agent IDs, initiated checkouts, purchases made (items bought), customer name, customer email, customer phone number (optional), and payment information (excluding card details). Payment information refers to whether a credit or debit card was used and which payment gateways are commonly used, helping us analyse trends (no card payment details are collected, stored, or disclosed by the pixel; such data remains encrypted as described above in Section 4 "Data Storage, Data Security and Payment Methods"). Browser-based ad blockers can prevent the "Mega Pixel" from collecting your data. Additionally, you can disable this feature within your Facebook settings under the 'Off-Facebook Activity' section. Blocking the "Pixel" will not affect your experience using our site.

        In reference to our discount provider "Publicard", by using the Publicard ID discount feature, you acknowledge and agree to comply with Publicard's Terms of Use (https://www.publicard.co.uk/terms) and Privacy Policy (https://www.publicard.co.uk/privacy). Publicard's terms and privacy policies are solely governed by Publicard and are not endorsed, approved, or in any way controlled by Ace of Iron Apparel Ltd. You further agree that Ace of Iron Apparel Ltd assumes no responsibility or liability for any security breaches, issues, or other consequences arising from your use of the Publicard service. Any information you share with Publicard is done so entirely at your own risk, and you accept full responsibility for any potential consequences.

        8. Access to information:
        In accordance with the Data Protection Act 1998 (amended 2018 including GDPR), you have the right to access any information that we hold relating to you. Please note that we reserve the right to charge a fee of £10 to cover costs incurred by us in providing you with the information.

        9. Contacting us:
        Please do not hesitate to contact us regarding any matter relating to this Privacy Policy by using our 'contact us' page, or by emailing us at info@aceofironapparel.com

        We may update our privacy policy from time to time to reflect changes to our practices or for other operational, legal, or regulatory reasons. Your continued use of our services and website following the changes to our privacy policy indicates your acceptance of those changes.

        Last Amended: 9th November 2024