Privacy Policy

Last updated: 27th October 2025

At The Human Letter Co, we care deeply about your privacy. This Privacy Policy explains how we collect, use and protect your personal information when you visit our website, make a purchase or interact with us in any way.

We are committed to complying with the UK GDPR, the Data Protection Act 2018 and all other applicable data protection laws.

1. Who We Are

The Human Letter Co (“we”, “us”, “our”) is a small UK-based business that provides subscription and one-off letters, in both physical and digital form, designed to bring connection, comfort and kindness.

Data Controller:
The Human Letter Co
Unit 42177, PO Box 7169
Poole, BH15 9EL
Email: info@thehumanletter.co.uk

2. What Information We Collect

We collect and process the following personal data when you use our website or services.

a. Information you provide directly

  • Name, postal address and email address (for sending letters or digital content)

  • Payment details (processed securely by our payment provider)

  • Any personal notes or customisation details you choose to include when ordering

  • Contact details if you sign up to our mailing list, complete a survey or contact us

b. Information collected automatically

  • IP address, browser type, device information and pages visited

  • Cookies and similar technologies (see our Cookie Policy for details)

c. Information from third parties

  • Payment processor (Stripe)

  • Delivery provider (Royal Mail)

  • Analytics service (Google Analytics)

3. How We Use Your Information

We use your information to:

  • Process and deliver your order (physical and digital letters)

  • Communicate with you about your subscription or purchase

  • Send updates, offers or newsletters if you have opted in

  • Improve our website, products and customer experience

  • Comply with legal and accounting obligations

We will never sell or share your data with third parties for marketing purposes.

4. Lawful Bases for Processing

We rely on the following lawful bases:

  • Contract: to process and deliver your order or subscription

  • Consent: when you subscribe to our newsletter or agree to cookies

  • Legal obligation: for record keeping and compliance with UK law

  • Legitimate interests: to improve our services and communicate with customers

5. How Long We Keep Your Data

We retain your data only for as long as necessary.

  • Order and payment data: up to 6 years (for tax and accounting)

  • Mailing list subscriptions: until you unsubscribe

  • Enquiries and correspondence: up to 12 months after closure

After this, your data is securely deleted or anonymised.

6. How We Store and Protect Your Data

Your personal information is stored securely on password-protected systems and encrypted databases.
We use secure HTTPS connections, reputable UK or EU-based hosting and trusted third-party service providers that comply with GDPR.

If any data is transferred outside the UK or EEA (for example, through email or cloud storage providers), we ensure appropriate safeguards are in place such as Standard Contractual Clauses or equivalent protection measures.

7. Sharing Your Information

We share data only when necessary to deliver our services.
This includes:

  • Payment processor: to handle transactions securely

  • Postal service: to deliver physical letters

  • Email and marketing providers: for communications you have opted into

  • Professional advisers and legal authorities: if required by law

All partners are bound by confidentiality and data protection agreements.

8. Your Rights

Under the UK GDPR, you have the following rights:

  • Access: request a copy of your personal data

  • Rectification: ask us to correct any inaccurate information

  • Erasure: ask us to delete your data (the right to be forgotten)

  • Restriction: limit how we process your data

  • Objection: object to certain types of processing

  • Portability: request transfer of your data to another provider

  • Withdraw consent: unsubscribe or change preferences at any time

To exercise your rights, contact us at info@thehumanletter.co.uk.
We will respond within one month.

9. Cookies

We use cookies to enhance your browsing experience, analyse site traffic and improve our content.
You can manage or disable cookies in your browser settings.
See our separate Cookie Policy for full details.

10. Children’s Privacy

Our website and services are not directed at children under 16.
We do not knowingly collect personal data from anyone under this age.

If you believe a child has provided us with personal information, please contact us so that we can remove it from our records.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The most recent version will always be available on our website.
We will notify subscribers of any significant changes by email or by posting a notice on our website.

12. Contact Us

If you have any questions or concerns about this Privacy Policy or how your data is handled, please contact us at:

The Human Letter Co
Unit 42177, PO Box 7169
Poole, BH15 9EL
Email: info@thehumanletter.co.uk

If you remain unhappy, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO) at www.ico.org.uk.