Privacy Policy

Last Updated: 17 May 2026

This Privacy Policy explains how Ecom Mate (“Ecom Mate”, “we”, “us”, or “our”) collects, uses, stores, and protects your personal information when you visit our website at ecommate.co.uk, request our services, or interact with us in any other way.

We are committed to protecting your privacy and handling your personal data in a transparent, fair, and lawful manner in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, the EU GDPR, and other applicable international data protection laws including the California Consumer Privacy Act (CCPA).

Please read this policy carefully. By using our website or services, you acknowledge that you have read and understood this Privacy Policy.

 

1. Who We Are

Ecom Mate is an e-commerce growth agency. We provide Amazon account management, PPC & sponsored ads management, listing SEO, product launch strategy, A+ content, brand registry support, eBay and Etsy management, graphic design, web design & development, and digital marketing services (SEO, GEO, AEO).

For the purposes of data protection law, Ecom Mate Ltd is the data controller of the personal data we collect about you.

Website: https://ecommate.co.uk
Contact Email: info@ecommate.co.uk

 

2. What Personal Data We Collect

We may collect and process the following categories of personal data:

 

a) Information You Provide Directly

  • Full name
  • Email address
  • Phone number
  • Business name and website URL
  • Amazon ASIN links or other marketplace identifiers you share with us
  • Messages, enquiries, or other content you submit via forms or email
  • PPC data, ad reports, or files you upload for audit purposes

 

b) Information Collected Automatically

  • IP address and approximate geographic location
  • Browser type and version
  • Device type and operating system
  • Pages visited, time spent on pages, and navigation paths
  • Referring website or source
  • Cookie identifiers and tracking data (see Section 6)

 

c) Information from Third Parties

  • Data from analytics platforms such as Google Analytics
  • Information from social media platforms (LinkedIn, Facebook) if you interact with our profiles
  • Publicly available business information relevant to service delivery


3. How We Use Your Personal Data

We use the personal data we collect for the following purposes:

  • Service delivery: To provide, manage, and improve the e-commerce and marketing services you have engaged us for.
  • Free audits and quotes: To carry out the free Amazon audit or fast quote you have requested and to deliver findings to you.
  • Communication: To respond to your enquiries, provide updates on your account or project, and send service-related notifications.
  • Marketing: To send you relevant information about our services, case studies, and updates — only where you have given consent or where we have a legitimate interest to do so. You can opt out at any time.
  • Analytics and improvement: To analyse how visitors use our website and to improve our content, user experience, and services.
  • Legal compliance: To comply with our legal and regulatory obligations, including record-keeping and fraud prevention.
  • Contract performance: To fulfil our contractual obligations when you become a client.

 

4. Legal Basis for Processing (UK & EU GDPR)

We rely on the following legal bases to process your personal data:

  • Contract: Processing is necessary to perform a contract with you or to take steps prior to entering into a contract (e.g. responding to a service enquiry or delivering an audit).
  • Legitimate Interests: We process certain data based on our legitimate interests in operating and growing our business, provided these interests are not overridden by your rights and freedoms.
  • Consent: Where we send marketing communications or use non-essential cookies, we rely on your freely given consent. You may withdraw consent at any time.
  • Legal Obligation: Where we are required to process your data to comply with applicable laws or regulations.

 

5. Who We Share Your Data With

We do not sell, rent, or trade your personal data. We may share it only in the following circumstances:

  • Service providers and tools: We use trusted third-party platforms to operate our business, including CRM tools, email platforms, project management software, and analytics services. These providers are contractually bound to process your data only on our instructions and in accordance with applicable data protection law.
  • Professional advisors: Accountants, lawyers, or auditors where necessary for legal or financial compliance.
  • Business transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the acquiring entity, subject to the same privacy protections.
  • Legal requirements: Where we are required by law, court order, or governmental authority to disclose your information.

We ensure that any third parties with whom we share data are subject to appropriate data protection agreements and safeguards.

 

6. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience and analyse website performance. Cookies are small text files stored on your device.

 

Types of cookies we use:

  • Essential cookies: Necessary for the website to function correctly. These cannot be disabled.
  • Analytics cookies: Help us understand how visitors interact with our website (e.g. Google Analytics). These are only set with your consent.
  • Marketing cookies: Used to deliver relevant advertisements and track campaign performance. These are only set with your consent.
  • Preference cookies: Remember your settings and preferences to improve your experience on return visits.

You can manage or withdraw your cookie consent at any time through our Cookie Settings panel or by adjusting your browser settings. Please note that disabling certain cookies may affect website functionality.

For full details, please refer to our Cookie Policy.

 

7. International Data Transfers

If we transfer your personal data outside the UK or European Economic Area (EEA), we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses (SCCs) approved by the relevant authorities
  • Transfers to countries recognised as providing an adequate level of data protection
  • Other lawful transfer mechanisms as required by applicable law

 

8. How Long We Retain Your Data

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, or reporting requirements. Specifically:

  • Enquiry and audit data: Retained for up to 12 months after the last contact, unless converted to a client relationship.
  • Client data: Retained for the duration of our contract and for up to 7 years thereafter in line with UK financial and legal record-keeping obligations.
  • Marketing data: Retained until you withdraw consent or opt out.
  • Website analytics data: Typically retained for 26 months in anonymised or aggregated form.

When data is no longer required, it is securely deleted or anonymised.

 

9. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

 

Under UK & EU GDPR:

  • Right to access: Request a copy of the personal data we hold about you.
  • Right to rectification: Request correction of inaccurate or incomplete data.
  • Right to erasure: Request deletion of your personal data (“right to be forgotten”), subject to legal obligations.
  • Right to restrict processing: Request that we limit how we use your data in certain circumstances.
  • Right to data portability: Receive your data in a structured, machine-readable format.
  • Right to object: Object to processing based on legitimate interests or for direct marketing purposes.
  • Rights related to automated decision-making: We do not make solely automated decisions that significantly affect you.

 

Under CCPA (California Residents):

  • Right to know what personal information is collected, used, shared, or sold.
  • Right to delete personal information held about you.
  • Right to opt out of the sale of personal information (we do not sell personal data).
  • Right to non-discrimination for exercising your privacy rights.

To exercise any of these rights, please contact us at privacy@ecommate.co.uk. We will respond within 30 days. We may need to verify your identity before processing your request.

 

10. Data Security

We take the security of your personal data seriously. We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss, destruction, or alteration. These include:

  • Encrypted data transmission (SSL/TLS)
  • Access controls and role-based permissions
  • Secure storage with reputable cloud providers
  • Regular internal reviews of data handling practices

While we take all reasonable steps to protect your data, no method of transmission over the internet is 100% secure. If you believe your data has been compromised, please contact us immediately.

 

11. Children’s Privacy

Our website and services are intended for business owners and professionals. We do not knowingly collect personal data from individuals under the age of 16. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.

 

12. Third-Party Links

Our website may contain links to third-party websites, including Amazon, eBay, Etsy, Shopify, LinkedIn, and Facebook. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

 

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. The most current version will always be available on this page with the “Last Updated” date shown at the top.

We encourage you to review this policy periodically. Where changes are significant, we will take reasonable steps to notify you.

 

14. How to Complain

If you have concerns about how we handle your personal data and are not satisfied with our response, you have the right to lodge a complaint with the relevant supervisory authority:

  • UK: Information Commissioner’s Office (ICO) — ico.org.uk
  • EU: Your local Data Protection Authority
  • USA (California): California Attorney General’s Office

 

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or the way we handle your personal data, please contact us:

Ecom Mate
Email: info@ecommate.co.uk
Website: https://ecommate.co.uk