Book an Estimate

Privacy Policy

Last Updated: 5/02/2026—–

  1. Introduction

We are Wall Bros Carpets LTD, an established flooring retailer in the UK. We will refer to ourselves as ‘we’, ‘us’ or ‘our’ in this notice. We take the privacy and security of the personal information we hold about you seriously.

This privacy notice explains how we collect, hold, and use your personal information when you interact with our business—whether you are visiting our showrooms, booking an estimate over the phone, placing an order, or using our website. This notice is intended to supplement any other privacy notices we may issue and does not override them.

  1. Who We Are (Data Controller) and Contact Details

Wall Bros Carpets LTD is the Data Controller of the personal information we collect, hold and use about you under UK data protection law. This means we are responsible for deciding how your personal information is collected, stored, and used.

We do not have a dedicated Data Protection Officer, but the company directors are responsible for all data protection matters.

You can contact us in any of the following ways:

  • Address: 225-229 Tarring Rd, Worthing BN11 4HW
  • Email: sales@wallbroscarpets.co.uk
  • Phone (Worthing): 01903 503638
  • Phone (Storrington): 01903 744748
  1. Key Definitions
  • Data Controller: The organisation or person responsible for deciding how personal information is collected, stored, and used.
  • Data Processor: An organisation or person appointed by a Data Controller to carry out certain tasks in relation to the personal information on the Data Controller’s written instructions.
  • Personal Information: Any information from which a living individual can be identified. It does not apply to information that has been anonymised.
  • Special Information: Certain very sensitive personal information requiring extra protection under data protection law, including information relating to health, racial/ethnic origin, political opinions, religious/similar beliefs, trade union membership, sex life/sexual orientation, and genetic/biometric information.
  1. The Personal Information We Collect and Hold

The types of personal data we collect about you may differ depending on your relationship with us. We collect the following general categories of personal information and typically retain them for seven years:

General Category

Types of Personal Data in that Category

General Retention Period

Identity Information

Your name (including previous names and titles), gender, marital status, and date of birth.

Seven years

Contact Information

Email address, addresses (billing and delivery), and telephone numbers.

Seven years

Transaction & Payment Information

Details necessary to process payments and fulfil orders.

Seven years

Website, Device and Technical Information

Information about your use of our website and technical data (including your IP address, browser type and version, operating system, time zone, and location settings).

Seven years

Special Information: We do not collect or hold any Special Information about you. We also do not collect information from you relating to criminal convictions or offences.

  1. How We Collect Your Data

We primarily collect information directly from you to facilitate our business operations, which occurs when:

  • You contact us by telephone, email, or in writing (e.g., to book an estimate or place an order).
  • You visit our premises to arrange a service or purchase goods.
  • Technical information is collected automatically from technologies such as cookies when you use our website. (Please see our cookie policy for more details).
  1. How and Why We Use Your Information (Legal Grounds)

We only use your personal information where we have a lawful basis to do so, as set out in data protection law. Our main legal reasons for processing your data are:

  1. Contract Reason: To perform our obligations under a contract we have entered into with you (e.g., to supply goods).
  2. Legitimate Interests Reason: Where the use of your personal information is necessary for our (or a third party’s) legitimate interests, so long as that interest does not override your fundamental rights.
  3. Legal Obligation Reason: Where we have to use your personal information in order to perform a legal obligation by which we are bound.
  4. Consent Reason: Where you have given us your explicit consent to use your personal information for a specific reason.

For certain business purposes, we rely on these legal reasons:

Purpose

Legal Reason(s) for using the personal information

Our Legitimate Interest (where applicable)

To enrol you as a customer

Contract Reason and Legitimate Interests Reason

To offer you other goods, services, and/or digital content which helps us to develop our business.

To process your order (including taking payment, advising on updates, and recovering payment)

Contract Reason and Legitimate Interests Reason

To recover money that you owe us.

To manage our contract and notify you of any changes

Contract Reason and Legal Obligation Reason

N/A

To comply with audit and accounting matters

Legal Obligation Reason

N/A

For record keeping (including guarantees/warranties)

Contract Reason and Legal Obligation Reason

N/A

To improve the goods, services, and/or digital content that we supply

Legitimate Interests Reason

To improve the goods, services, and/or digital content for future customers and to grow our business.

To understand how customers and visitors use the website

Legitimate Interests Reason

To improve and grow our business, including our website, and to understand our customer’s needs, desires and requirements.

Failure to Provide Information: We require your personal information to provide you with our services. If you do not provide the required personal information, we may be prevented from supplying the services or goods to you. It is also important that you keep your personal information up to date.

Withdrawal of Consent: Where we rely on Consent Reason for processing, you have the right to withdraw your consent at any time. If you wish to withdraw consent, please contact us using the details in Section 2.

  1. Sharing Your Personal Information

We do not sell or trade your personal information. However, to run our business effectively, we may need to share your data with other organisations or people. These include:

  • Suppliers: Such as IT support services, payment providers, administration providers, and marketing agencies.
  • Professional Advisors: Such as lawyers, accountants, auditors, and insurance companies.
  • Regulatory Bodies: Government bodies such as HMRC and fraud prevention agencies.
  • Credit Reference Agencies.
  • Email platforms.
  • Any organisations that propose to purchase our business and assets, in which case we may disclose your personal information to the potential purchaser.

When we share your personal information with a Data Processor, we ensure that we have contracts in place that set out the responsibilities and obligations, including in respect of security of personal information.

  1. International Transfers

If your personal information is transferred outside of the European Economic Area (EEA), we will ensure that safeguards are in place to ensure a similar degree of protection is given to your personal information as is given to it within the EEA. The transfer will be made in compliance with data protection laws.

Safeguards may include:

  • Transfer to a country or territory that the EU Commission has approved as ensuring an adequate level of protection.
  • Having a standard set of clauses approved by the EU Commission in place.
  • Compliance with an approved code of conduct or certification mechanism.
  1. Data Retention

We will only hold your personal data for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, or tax requirements. How long is necessary depends on the purpose of collection and any legal obligations.

We typically retain Identity, Contact, and Technical information for seven years. We may also need to keep personal information in case of any legal claims, including in relation to any guarantees or warranties that we have provided with the services. You can contact us to request a copy of our full retention policy.

  1. Your Rights Under Data Protection Law

Under UK data protection laws, you have specific rights in relation to your personal information. These rights include:

  1. Right to request access (Subject Access): The right to obtain a copy of the personal information we hold about you.
  2. Right to correction: The right to request that any incorrect or incomplete personal data is corrected.
  3. Right to erasure (Right to be Forgotten): The right to request us to erase all of your personal information, though this right only applies in certain circumstances.
  4. Right to restrict processing: The right to request us to suspend the processing of your personal information, though this right only applies in certain circumstances.
  5. Right to data portability: The right to request us to transfer your personal information to someone else.
  6. Right to object: You have the right to object to us processing your personal information for direct marketing purposes. You also have the right to object to processing where our legal reason is the Legitimate Interests Reason, and there is something about your particular situation that means you want to object.

To exercise any of these rights, please contact us using the details in Section 2. We generally do not charge a fee for this unless your request is unfounded or excessive.

  1. Marketing

We may send you marketing communications about similar goods and services where either you have consented to this or we have another legal reason (Legitimate Interests) to contact you for marketing purposes.

In any email we send, we provide a link to either unsubscribe/opt out or to change your marketing preferences. Opting out of marketing will not prevent us from sending communications to you that are service-related (e.g., regarding an active order).

We do not pass your personal information on to any third parties for their marketing purposes.

  1. Complaints

If you are unhappy about how we have handled or used your personal information, please contact us first so we have the opportunity to discuss and resolve the issue.

You also have the right to lodge a complaint with the UK supervisory authority for data protection, which is the Information Commissioner’s Office (ICO).

  1. Third-party Websites

Our website may contain links to third-party websites. If you click on those links, they will take you to the third-party website. Those third-party websites may collect personal information from you, and you will need to check their privacy notices to understand how your personal information is collected and used by them.