Privacy and Cookie Policy

Privacy Policy

We are committed to protecting the privacy of our customers while at the same time providing a personalised and valuable service. While it is important for us to collect personal information about you all such information will be collected with your consent.

Who we are

This Privacy Policy explains our privacy practices in relation to Balance Box, The Pure Package and The Wellness Awards (“the Services”) which are provided by The Pure Package Limited, a company incorporated in England and Wales under company number 04907211 and with our registered office at Arch 39-40, New Covent Garden Market, London Sw8 5PP (“we”, “us”, “our”). Our websites are www.balancebox.com and www.purepackage.com and all associated sub-domains (“our Websites”).

In order to provide our Services and Websites to you and to promote our business, we will need to collect and process certain personal information about you. We are committed to protecting the privacy of our customers in accordance with applicable data protection laws, including the General Data Protection Regulation (together, “Data Protection Laws”).

Contacting us

If you have any questions at all about this Privacy Policy, our Services or Websites or about how we use and process your personal information, please contact us by email at hello@balancebox.com , alternatively, in writing to The Pure Package Limited, Arch 39-40, New Covent Garden Market, London Sw8 5PP, United Kingdom.

The person in charge of data protection at The Pure Package is Helen McCracken.

Changes to this Privacy Policy

Changes to this Privacy Policy will be posted on this page and/or elsewhere on our Websites as appropriate, so that you will be aware of the information we collect and how we use it at all times. You are asked to read this regularly so that you are satisfied with the privacy conditions under which we provide our Services and Websites to you.

Our role

We collect certain personal information about you as further described in this Privacy Policy, either in providing our Services or Websites to you or so that we may promote our Services to you.

Under applicable Data Protection Laws, we will be the “data controller” of the personal information that we collect about you in connection with your use of our Services or Websites.

When we collect information

We will collect personal information about you in these circumstances:

  • When you create an account or fill in forms on our Websites
  • When you contact us by phone, email or otherwise interact with us or provide information to us
  • When you order any Services from us
  • When you subscribe to notifications, emails, newsletters or other communications
  • When you redeem a benefit, enter a promotion, competition or survey
  • When you submit payment information to us
  • When you visit our Websites

What information we collect

We may collect the following types of personal information about you:

  • Your name
  • Telephone number
  • Email address
  • Delivery address
  • Personal information about your dietary needs, relevant medical conditions, allergies and other requirements, goals and preferences related to our Services
  • Some limited demographic information relevant to our Services
  • Payment card details (see below Credit and Debit Card Information)
  • We may also derive some information about you when you visit our Websites or open emails that we send to you, including general user information about your computer and your visits (including your IP address, location, browser, operating system, referral source, length of visit and the pages you visit). This information can be facilitated by cookies (see our Cookies policy below)

How we use your information

We may use the personal information we collect in a number of ways, including:

  • Identifying you and managing your account and relationship with us
  • Processing your orders
  • Discussing and advising you in relation to your requirements
  • Notifying you of changes to our Services and applicable legal terms, including this Privacy Policy
  • Better understanding who our customers are and what they want
  • Improving our Services and Websites
  • Promoting our similar goods and services to you
  • Managing our business, including for accounting and auditing purposes
  • Maintaining our Websites and IT systems
  • Dealing with any complaints or legal disputes involving you or our suppliers
  • Preventing fraud

Lawful basis on which we use your information

We will only ever use your personal information as permitted under Data Protection Law, which means one or more of the following will always apply:

  • To perform our contractual obligations
  • To comply with our legal and regulatory obligations
  • In pursuing our legitimate interests or those of a third party (for example, conducting our business in an efficient and compliant manner) and where your interests and fundamental rights do not override these interests
  • Where you have given clear and valid consent to such use.

We do not sell or share your personal information with third parties for their own marketing purposes.

When we share your information with others

We may work with others as part of providing our Services and Websites and may need to share your information with them as follows:

  • To our employees, officers, insurers, professional advisors and agents to the extent that it is reasonably necessary to do so for the above permitted purposes;
  • To our third party suppliers and subcontractors to help us provide our Services and Websites to you and for other legitimate business reasons. These third parties include:
    • our delivery team
    • our hosting service provider
    • our customer relationship management system (CRM) provider
    • our printers and PR team
    • other third party subcontractors and service providers involved in our business
  • To our regulators and law enforcement agencies
  • In the context of the possible sale or restructuring of our business

We require all third parties to respect the confidentiality of your personal information. All our service providers are required to take appropriate security measures to protect your personal information. We do not allow them to use your personal data for their own purposes, but only for specified purposes and in accordance with our instructions.

Credit and Debit Card Information:

We need your credit or debit card information (card number, expiry date, billing address & postcode, name on card & CSV number) to process your payments. All such information will only be transmitted using secure servers according to industry protocols. We will not use this information for any purpose other than to process your payments. Your CSV number will not be stored once payment has been successful.

Anonymous Information

This type of information cannot be linked to an individual customer. We may share aggregated anonymous information with our partners, clients and advertisers. This is not linked to any personal information that can identify any individual person.

Cookies

We may use a “cookie” or your IP Address to recognise your computer via our website. Cookies are small pieces of information that are stored by your browser on your hard drive. They can inform us of the pages you visit, and your preferences, which enables us to provide you with a better online experience.

You have the ability to accept or decline cookies by modifying the settings in your browser. However, you may not be able to use all the interactive features of our site if cookies are disabled. To find out how to enable/disable cookies see www.allaboutcookies.org

Third Party Sites and Services

Our Websites may contain links to third party websites. Please be notified that we cannot be held responsible for the privacy practices of other websites. We encourage all visitors to be aware and read the privacy statements of each and every website that collects personally identifiable information.

Where your information is stored

Your information will be held at our offices in London and our main hosting data centres for our Websites are located in the United kingdom.

Transfers to third countries and safeguards

In the unlikely event that we need to transfer any of your information to other countries or international organisations, we would only do so if they are deemed by Data Protection Laws to have adequate privacy protection or recognised legal mechanisms are in place to ensure adequate protection of your information (e.g. EU Model Contract Clauses or EU-US Privacy Shield or Swiss-US Privacy Shield frameworks). Any international transfers of your personal information will also be subject to binding privacy and confidentiality terms enabling us to ensure compliance with this Privacy Policy. You may request further information on any such international transfers from our Data Protection Officer at any time.

How we keep your personal information safe

We will safeguard your information in our custody. We have developed and will maintain adequate security procedures to safeguard personal information against loss, theft, copying, and unauthorised disclosure, use or modification. Access to personal information is restricted to employees and authorised service providers who need it to perform their work. We also regularly review our information collection, storage and processing practices, including physical security measures, to guard against unauthorised access to systems

Retention of Records

We will do our best not to keep your personal information for longer than necessary to facilitate your use of the Services and Websites, other than as required by law. We will regularly review the information that we hold and delete unnecessary information from our systems.

Unless you request otherwise, we may retain information that will make providing our Services and Websites to you more convenient and safer, such as your dietary preferences and requirements and important allergy and health information in relation to previous orders, but you have the right to ask us to delete any information that we hold about you – see the Your Rights section below.

When your personal information is no longer required, it will be destroyed either by shredding or other approved destruction methods to prevent unauthorised parties from gaining access to the information during and after the process.

Your rights

You have several rights as a data subject as summarised below:

  • Access: You have the right to obtain confirmation as to whether your personal information is being processed by us and, if it is, to access your information and details of how we process it, as long as this does not adversely affect the rights and freedoms of others.
  • Rectification: We will rectify any errors in the personal information we hold on request.
  • Erasure: You may ask us to erase your personal information from our systems in the following situations:
    • The information is no longer necessary in relation to the purpose for which it was collected;
    • You withdraw your consent on which the processing is based and where there is no other legal ground for the processing;
    • You object to the processing and there are no overriding legitimate grounds for the processing;
    • The information has been unlawfully processed;
    • The information has to be erased for compliance with a legal obligation to which we are subject.
  • Right to restrict processing: You have the right to restrict our processing on specified grounds.
  • Notification: Where you have asked us to rectify, erase or restrict processing of your information, we shall communicate the same to each recipient to whom your information has been disclosed, unless this proves impossible or involves disproportionate effort, in which case we shall let you know.
  • Data portability: You have the right in specific circumstances where processing is based on consent to receive your information in a structured, commonly used and machine-readable format and have the right to transmit the information to another controller without hindrance, provided that our processing is carried out by automated means.
  • Right to object: In certain circumstances you have the right to object to our processing of your information, including in relation to profiling, direct marketing or scientific or historical research purposes.
  • Right to complain to a supervisory authority: You are entitled to lodge a complaint with the Information Commissioner’s Office (ICO) at ico.org.uk in relation to our use of your personal data.

You also have the right to object to automated decision-making, including profiling, but we do not use your information for these purposes.

How to exercise your rights

To exercise any of your other data subject rights, please contact us (see Contacting Us):

  • You may request a copy of information undergoing processing, subject to evidence of your identity (normally a certified copy of your passport plus an original copy of a utility bill showing your current address). The first copy shall be provided without charge, but reasonable administration fees shall be charged for additional or subsequent copies.
  • We shall respond to your requests without undue delay and in any event within one month unless we need to extend such period by up to two further months in specific circumstances.
  • Please note that if you delete or restrict your account or required information, this may prevent you from making full use of our Services or Websites.

What happens if a data breach occurs

Whilst we endeavour to keep your personal information safe, we have an internal investigation procedure in case of data protection security breaches.

In the event of data theft, we may suspend access to our servers, emails and online systems and take other urgent steps to prevent further unauthorised access to information.

If we believe that our data has been compromised, we will report the issue to the Information Commissioner’s Office (ICO) at www.ico.org.uk.

We will notify you without delay if we believe a data breach is likely to result in a significant risk to your rights and freedoms. Any notification will describe in clear and plain language the nature of the personal data breach and contain all required information.

Cookie Policy

Cookies and how they benefit you
Our website uses cookies, as almost all websites do, to help provide you with the best experience we can. Cookies are small text files that are placed on your computer or mobile phone when you browse websites.

Our cookies help us:

  • Make our website work as you’d expect
  • Improve the speed/security of the site
  • Continuously improve our website for you
  • Make our marketing more efficient (ultimately helping us to offer the service we do at the price we do)

We do not use cookies to:

  • Collect any personally identifiable information (without your express permission)
  • Collect any sensitive information (without your express permission)
  • Pass personally identifiable data to third parties

You can learn more about all the cookies we use below.

Granting us permission to use cookies
If the settings on your software that you are using to view this website (your browser) are adjusted to accept cookies we take this, and your continued use of our website, to mean that you are fine with this. Should you wish to remove or not use cookies from our site you can learn how to do this below, however doing so will likely mean that our site will not work as you would expect.

More about our Cookies – Website Function Cookies

Our own cookies
We use cookies to make our website work including:

  • Making our shopping basket and checkout work
  • Allowing you to add comments to our site

There is no way to prevent these cookies being set other than to not use our site.

Anonymous Visitor Statistics Cookies
We use cookies to compile visitor statistics such as how many people have visited our website, what type of technology they are using (e.g. Mac or Windows which helps to identify when our site isn’t working as it should for particular technologies), how long they spend on the site, what page they look at etc. This helps us to continuously improve our website. These so called “analytics” programs also tell us if , on an anonymous basis, how people reached this site (e.g. from a search engine) and whether they have been here before helping us to put more money into developing our services for you instead of marketing spend.

We use:

Advertising Cookies
Cookies are widely used in online advertising. Neither us, advertisers or our advertising partners can gain personally identifiable information from these cookies.

You can learn more about online advertising at http://www.youronlinechoices.com. You can opt-out of almost all advertising cookies at http://www.youronlinechoices.com/uk/your-ad-choices although we would prefer that you didn’t as ultimately adverts help keep much of the internet free. It is also worth noting that opting out of advertising cookies will not mean you won’t see adverts, just simply that they won’t be tailored to you any longer.

We use:

  • DoubleClick – owned by Google
  • Admeld
  • Right Media owned by Yahoo!

Re-marketing Cookies
You may notice that sometimes after visiting a site you see increased numbers of adverts from the site you visited. This is because advertisers, including ourselves pay for these adverts. The technology to do this is made possible by cookies and as such we may place a so called “remarketing cookie” during your visit. We use these adverts to offer special offers etc to encourage you to come back to our site. Don’t worry we are unable to proactively reach out to you as the whole process is entirely anonymised. You can opt out of these cookies at anytime as explained above.

Affiliate Cookies
We have a number of partners who promote our service on a success-only basis (i.e. instead of paying for advertising, we pay them commissions on sales). Cookies are required to allow us to reward these partners and these cookies are usually provided by specialist companies (known as affiliate networks). Neither us, the networks, or the partner advertising or recommending our services are able to identify you personally. We ask you to support us by allowing these cookies which ultimately help us to offer you the service we do at the price we do. Our affiliate cookies are provided by:

Turning Cookies Off
You can usually switch cookies off by adjusting your browser settings to stop it from accepting cookies. Doing so however will likely limit the functionality of our’s and a large proportion of the world’s websites as cookies are a standard part of most modern websites

It may be that you concerns around cookies relate to so called “spyware”. Rather than switching off cookies in your browser you may find that anti-spyware software achieves the same objective by automatically deleting cookies considered to be invasive.