PRIVACY NOTICE BLOOM ESSENCE LP
This Privacy Notice explains how BLOOM ESSENCE LP collects, uses, stores, shares and protects personal information in connection with its website, customer communications and the sale of goods.
| Business details | Information |
|---|---|
| Data controller | BLOOM ESSENCE LP |
| Legal form | Limited partnership registered in England & Wales |
| Company number | LP024565 |
| Registered office | International House, 101 King's Cross Road, London, United Kingdom, WC1X 9LP |
| Website | https://bloomessencelp.com/ |
| Privacy contact email | info@bloomessencelp.com |
| Effective date | May 08, 2026 |
In this Privacy Notice, “we”, “us” and “our” mean BLOOM ESSENCE LP. “You” and “your” mean any customer, website visitor, prospective customer, supplier contact or other person whose personal information we process.
1. Our role
For the purposes of the UK General Data Protection Regulation, the Data Protection Act 2018 and other applicable data protection laws, BLOOM ESSENCE LP is the data controller of the personal information described in this notice.
This means that we decide why and how personal information is processed, unless another party is clearly identified as a separate controller.
2. When this notice applies
This notice applies when you:
- visit or use our website;
- place an order or attempt to place an order;
- create or use an online account, where available;
- contact us by email, form, telephone, post or other method;
- subscribe to marketing communications;
- interact with our customer support, returns or refund processes;
- take part in a promotion, survey or review feature;
- otherwise provide personal information to us.
This notice does not cover third-party websites, platforms, payment services, delivery services or social media pages that operate under their own privacy notices.
3. Personal information we may collect
Depending on your interaction with us, we may collect and use the following types of personal information.
3.1 Identity and contact information
This may include your name, billing address, delivery address, email address, telephone number, account identifier, username and other information needed to identify or contact you.
3.2 Order and transaction information
This may include products ordered, order number, payment status, delivery details, returns, refunds, customer service records, complaints and correspondence about your order.
3.3 Payment-related information
Payment details may be processed by payment service providers. We may receive limited payment information such as payment confirmation, transaction reference, payment status, fraud screening result, billing details and refund information.
Unless expressly stated otherwise, we do not store full card details ourselves.
3.4 Website and device information
This may include IP address, browser type, device type, operating system, approximate location derived from technical data, pages viewed, time spent on the website, referral source, cookie identifiers and log data.
3.5 Account and preference information
Where account features are available, this may include login credentials, saved addresses, preferences, wish lists, basket activity, communication choices and account settings.
3.6 Marketing and communication information
This may include your marketing preferences, email engagement information, unsubscribe status, survey responses, product reviews and records of communications with us.
3.7 Business contact information
If you deal with us on behalf of a company, supplier, service provider or other organisation, we may process your business contact details and communications with us.
4. Sensitive information
We do not intentionally request special category personal data through ordinary website purchases or customer enquiries.
Special category data may include information about health, racial or ethnic origin, religious beliefs, political opinions, trade union membership, genetic data, biometric data used for identification, sex life or sexual orientation.
Please do not send us this type of information unless it is specifically required for a lawful and clearly identified reason.
If you provide such information voluntarily, we may delete it where it is not needed or process it only where a lawful basis and any required condition apply.
5. How we collect personal information
We may collect personal information:
- directly from you when you submit information to us;
- automatically when you use the website or interact with emails, cookies or similar technologies;
- from payment, fraud-prevention, delivery, fulfilment, analytics or technical service providers;
- from public sources, where lawful and relevant;
- from another person placing an order on your behalf, such as where you are the delivery recipient.
6. Why we use personal information
We use personal information for purposes connected with operating the website and fulfilling customer orders.
These purposes may include:
- processing and delivering orders;
- taking payments and issuing refunds;
- handling returns, complaints and customer enquiries;
- managing customer accounts, where available;
- providing service messages about orders or website changes;
- detecting fraud, misuse, security threats or unlawful activity;
- complying with tax, accounting, customs, sanctions, consumer protection and other legal obligations;
- improving the website, products, customer experience and internal business processes;
- sending marketing communications where permitted by law;
- measuring advertising, website performance and customer demand;
- protecting our rights, business, property, customers and suppliers.
7. Lawful bases we rely on
We process personal information only where we have a lawful basis to do so.
| Purpose | Typical lawful basis |
|---|---|
| Taking and fulfilling orders | Performance of a contract |
| Payment processing and refunds | Performance of a contract; legal obligation; legitimate interests |
| Delivery and logistics | Performance of a contract; legitimate interests |
| Customer support and complaints | Performance of a contract; legitimate interests; legal obligation |
| Fraud prevention and website security | Legitimate interests; legal obligation |
| Tax, accounting and legal records | Legal obligation; legitimate interests |
| Website analytics and improvement | Legitimate interests or consent, depending on the technology used |
| Marketing to customers or subscribers | Consent or legitimate interests, where permitted by law |
| Business administration and supplier communications | Legitimate interests; performance of a contract |
| Legal claims or dispute handling | Legitimate interests; legal obligation |
Where we rely on legitimate interests, our interests may include running and improving our business, protecting the website, preventing fraud, understanding customer demand, maintaining records, communicating with customers and promoting our goods in a lawful way.
8. Marketing
We may send marketing communications where you have consented or where the law allows us to contact you about similar products or services.
You can opt out of marketing at any time by using the unsubscribe link in our emails, changing your preferences where account tools are available, or contacting us using the details in this notice.
Opting out of marketing does not stop us sending non-marketing messages, such as order confirmations, delivery updates, legal notices, refund information or customer service replies.
We do not intend to sell your personal information to third parties for their own independent direct marketing.
9. Cookies and similar technologies
Our website may use cookies and similar technologies for website operation, security, preferences, analytics, performance measurement and, where applicable, marketing.
Further details should be provided in our separate Cookie Notice.
Where consent is required for non-essential cookies, we will seek consent through the cookie banner, cookie settings tool or other consent mechanism used on the website.
10. Who we may share personal information with
We may share personal information with selected third parties where necessary and lawful.
These may include:
- payment processors and payment service providers;
- banks, card issuers and fraud-prevention providers;
- delivery, fulfilment, warehousing, customs and logistics partners;
- website hosting, IT, cloud, email, security and technical support providers;
- analytics, advertising and marketing service providers;
- customer support, review, form or communication tool providers;
- professional advisers, including lawyers, accountants, auditors and insurers;
- tax authorities, customs authorities, regulators, courts, law-enforcement bodies or public authorities;
- prospective buyers, investors or business partners in connection with a restructuring, sale, financing or transfer of business assets.
We require service providers acting on our behalf to process personal information only for authorised purposes and with appropriate confidentiality and security measures.
11. International use of personal information
Because website, payment, delivery, fulfilment, IT and customer support services may involve providers or customers in different countries, personal information may be processed outside the United Kingdom.
Where we transfer personal information outside the United Kingdom, we will do so only where permitted by law.
This may involve:
- transferring data to a country covered by applicable adequacy regulations;
- using the UK International Data Transfer Agreement;
- using the UK Addendum to the EU Standard Contractual Clauses;
- relying on another lawful safeguard or exception available under data protection law.
12. How long we keep personal information
We keep personal information only for as long as reasonably needed for the purposes for which it was collected.
The exact period depends on the type of information, the reason it is used, legal requirements, accounting and tax obligations, dispute risks, fraud-prevention needs and whether there is an ongoing customer relationship.
As a general working position, customer order and transaction records may be kept for up to six years after the relevant transaction or the end of the customer relationship, unless a longer or shorter period is appropriate or required by law.
Marketing preference records may be kept for as long as needed to respect your opt-out request.
Technical logs and analytics data are usually kept for shorter periods unless needed for security, troubleshooting or legal reasons.
When personal information is no longer needed, we will delete, anonymise or securely retain it only where we have a lawful reason to do so.
13. Security
We use appropriate technical and organisational measures designed to protect personal information against unauthorised access, loss, misuse, alteration or disclosure.
These measures may include access controls, secure systems, confidentiality obligations, service provider checks, security monitoring and internal procedures.
No website, email system or internet transmission can be guaranteed to be completely secure. You should take care when sending information online and keep any account login details confidential.
14. Automated decisions and profiling
We may use limited automated tools for ordinary business purposes, such as fraud prevention, website security, analytics, marketing segmentation or payment risk checks.
Unless we clearly state otherwise, we do not make decisions based solely on automated processing that produce legal effects or similarly significant effects for you.
If this changes, we will provide additional information where required by law.
15. Your data protection rights
Depending on the circumstances, you may have the right to:
- request access to your personal information;
- request correction of inaccurate or incomplete information;
- request deletion of personal information;
- request restriction of processing;
- object to processing based on legitimate interests;
- object to direct marketing;
- request portability of information you provided to us;
- withdraw consent where processing is based on consent;
- complain to the Information Commissioner’s Office or another competent supervisory authority.
These rights are not absolute and may be subject to legal limits, exemptions or verification requirements.
16. How to exercise your rights
To exercise your rights, contact us using the privacy contact details stated at the beginning of this notice.
We may need to confirm your identity before responding to a request.
We will respond within the time required by applicable law.
If your request is unclear, excessive, repetitive or affects the rights of another person, we may ask for clarification or deal with it in accordance with applicable legal rules.
17. Complaints
We would prefer the opportunity to address any privacy concern directly.
Please contact us first using the details in this notice if you have a question or complaint about how we handle personal information.
You also have the right to complain to the Information Commissioner’s Office, which is the UK supervisory authority for data protection matters, or to another competent supervisory authority where applicable.
18. Third-party websites and services
The website may link to third-party websites, payment pages, delivery tracking pages, social media platforms or other external services.
We are not responsible for the privacy practices of third parties. You should read their privacy notices before providing personal information to them.
19. Changes to this notice
We may update this Privacy Notice from time to time to reflect changes in law, our website, business operations, service providers or how we process personal information.
The latest version will be made available on the website.
The effective date above shows when this notice was last updated.
20. Contact
If you have any questions about this Privacy Notice or the way we use personal information, please contact us at:
BLOOM ESSENCE LP
International House, 101 King's Cross Road, London, United Kingdom, WC1X 9LP
Email: info@bloomessencelp.com