Privacy Policy

Here at Ace of Iron Apparel®, we are committed to safeguarding and preserving the privacy of our visitors, and operate in accordance with The Data Protection Act 2018 (UK GDPR) and the ICO (Information Commissioner’s Office), to which we are registered members. This Privacy Policy explains what happens to any personal data that you provide to us, or that we collect from you whilst you visit our site. We do update this Policy from time to time so please do review it regularly.

Information we collect:
In running and maintaining our website we may collect and process the following data about you:

  • Information about your use of our site including details of your visits such as pages viewed and the resources that you access. 
  • Such information includes traffic data, location data and other communication data.
  • Information provided voluntarily by you. For example, when you register for information or make a purchase ( for reference, we cannot see your payment card information, and neither can anyone at Shopify. This is due to Shopify’s PCI compliance and security features).
  • Information that you provide when you communicate with us by any means.

    Use of cookies:
    Cookies provide information regarding the computer used by a visitor. We may use cookies where appropriate to gather information about your computer in order to assist us in improving our website (that's literally what cookies do - so we're not going off-piste here, we're not sat here giving it the Edward Snowdon either). We may gather information about your general internet use by using the cookie (relevant to our business - we're not spying on you). Where used, these cookies are downloaded to your computer and stored on your computer’s hard drive. Such information will not identify you personally. It is purely statistical data. This statistical data does not identify or share any personal details whatsoever.

    You can adjust the settings on your computer to decline any cookies if you wish (no bad feelings here). This can easily be done by activating the reject cookies setting on your computer. Our advertisers may also use cookies, over which we have no control. Such cookies (if used) would be downloaded once you click on advertisements on our website (through instagram/facebook adverts for example - we're a business, we gotta advertise).

    Use of your information:
    We use the information that we collect from you to provide our services to you. In addition to this we may use the information for one or more of the following purposes:

    1. To  provide information to you that you request from us relating to our products or services. For example, signing up to our email updates will allow us to send you product and promotional information. Including information about new products, restocks, business related information, new policies & procedures, any brand updates, abandoned cart recovery & other such marketing information. You may unsubscribe from any further emails by clicking the "unsubscribe" tab at the base of any email communication you receive from us.
    2. To provide information to you relating to other products that may be of interest to you. Such additional information will only be provided where you have consented to receive such information.
    3. To inform you of any changes to our website, services or goods and products.

    If you have previously purchased goods or services from us, we may provide to you details of similar goods or services, or other goods and services, that you may be interested in. Where your consent has been provided in advance we may allow selected third parties to use your data to enable them to provide you with information regarding unrelated goods and services which we believe may interest you. Where such consent has been provided it can be withdrawn by you at any time.

    Storing your personal data:
    In operating our website, it may become necessary to transfer data that we collect from you to locations outside of the UK for processing and storing, as dictated by Shopify due to their server locations. By providing your personal data to us, you agree to this transfer, storing or processing. We do our utmost to ensure that all reasonable steps are taken to make sure that your data is treated and stored securely. Unfortunately the sending of information via the internet is not totally and unquestionably secure, and on occasion such information can be intercepted (for example if your computer is infected with a virus or malware/phishing software). We cannot absolutely guarantee the security of data that you choose to send us electronically, like anywhere else on the internet. Sending such information is entirely at your own risk. Although the methods & services that we use to collect payments from you for goods ordered (i.e., Shopify Payments & PayPal) are incredibly secure (your card information is not stored nor visible by Ace of Iron Apparel Ltd or Shopify. We do take security very seriously, as do Shopify, and as such our Shopify powered store is certified level 1 PCI (Payment Card Industry) DSS (Data Security Standard) compliant. The 128-bit SSL encryption means that "Shopify Payments" is one of the most secure payment processors available. The only information we can visibly see regarding your payment details are the last 4 digits of your card number (like any other online website that accepts payment). This is unavoidable and necessary to ensure we can provide certain services, for example fraud protection and the ability to process refunds. For reference, this information is only visible to us in the following format example "Mastercard •••• •••• •••• 1234". The remaining card numbers are not visible to anyone at Ace of Iron Apparel Ltd or Shopify as per PCI compliance requirements. Additionally, PayPal is also considered one of the safest ways to send money online, and all PayPal transactions are powered by advanced data encryption. They also offer fantastic buyer protection features.

    Data Privacy: 
    Shopify (who power our online store and website) prioritise data privacy and security. Shopify uses encryption, firewalls, and conducts regular security audits to ensure your data provided is as secure as possible as per the latest GDPR guidelines and requirements. Customer payment information is also encrypted, stored securely by Shopify, and is PCI compliant (further detailed are provided in the "storing your personal data" section above). The Shopify platform focuses on data minimisation, transparency, control, and security. It is designed to provide transparency and control over personal data, ensuring compliance with global privacy and data protection laws (including GDPR). Our stores access is controlled, and requires the use of passwords with 2 step authentication as well as additional security measures such as VPN's (Virtual Private Networks) and "passkeys" - a more secure variant to passwords linked to facial recognition software. Any and all data is also, at a minimum, double password protected when accessed using our stores electronic hardware. The following steps are some others taken to help ensure that both Ace of Iron Apparel and our customers have control over shared data, and that all data is kept safe and secure:

    • Choice to participate: You 'the customer' have the ability to deactivate data sharing at any time, and the right to access any and all held data that is in reference to you. You 'the customer' are further eligible to know where and who your information is being shared with. If you wish to receive this information, we can provide this information as per the "Accessing Information" section below.
    • Confidential participation: To protect the confidential information of our business, no Shopify store can find out other stores confidential data. It's not possible for any merchant to create an audience list from another merchant's entire customer base.
    • Erasing of information: When we delete any customer’s personal information, such as when a customer requests to opt out, this information is also deleted from any data sharing by our store to the Shopify network.

    Disclosing your information:
    We will not disclose your personal information to any other party other than in accordance with this Privacy Policy, and in the circumstances detailed below:

    1. In the event that we sell any or all of our business to the buyer.
    2. Where we are legally required by law to disclose your personal information.
    3. To further fraud protection and reduce the risk of fraud.

    Third party links:
    On occasion we include links to third parties on this website (for example META, Facebook & Instagram). Where we provide a link, it does not mean that we endorse or approve that site’s policy towards visitor privacy. You should review their privacy policy before sending them any personal data. We also utilise Facebook & Instagram to allow us to advertise (we are a business after all). However, we do not, nor will we ever, sell your data. Data collection is via a third party 'cookie' called "Meta Mega Pixel - Advanced Matching & Conversions API", which collects our customers browsing behaviour in our shop, the cookie shares this data with the relevant advertising algorithms ("Facebook Ads Manager" is our primary method of advertising for Facebook & Instagram, which is accessed and managed by our Marketing team). The "Mega Pixel" collects data relevant to your experience with our website and social media pages, such data includes; page & product views; item(s) added & removed from cart; search terms; customer click ID's; customer agent ID's; initiated checkout(s); purchase(s) made a.k.a item(s) bought; customer name; customer email; customer phone number (optional); and payment information (not card payment details). For reference, payment information for example are data pertaining to whether a credit or debit card was used, or which payment gateways are commonly used to allow us to track trends e.g., are more of our customers using PayPal vs Shopify Payments (no card payment details are collected, stored or disclosed by the pixel, and such data remains encrypted as described in the "storing your personal data" section above. Browser-based ad blockers can stop this "Mega Pixel" from collecting your data, and you can also switch it off within your Facebook settings within your personal Facebook account (settings can be changed in the 'Off-Facebook Activity' section). Your experience using this site will not be impacted if you choose block the aforementioned "Pixel".

    Access to information:
    In accordance with the Data Protection Act 1998 (amended 2018 including GDPR) you have the right to access any information that we hold relating to you. Please note that we reserve the right to charge a fee of £10 to cover costs incurred by us in providing you with the information.

    Contacting us:
    Please do not hesitate to contact us regarding any matter relating to this Privacy Policy by using our 'contact us' page, or by emailing us at