This Privacy and Cookie Policy outlines how The Fitting Mill, a trading name of Newtons Ski Ltd, collects, uses, stores, shares and protects personal data. Newtons Ski Ltd is registered in England and Wales under company number 16187194, with a trading address at Studio 5, Bakersgate Courtyard, Pirbright, Surrey, GU24 0NJ. This policy is intended to ensure transparency and compliance with the United Kingdom General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR). It applies whenever you interact with us, including through our website, in-store consultations, email communications, appointment booking platforms, and online or in-person purchases. The policy explains what personal data we collect, the basis for processing it, how long we retain it, and your rights in relation to your data.
We are committed to protecting your privacy and ensuring that any personal information you provide is handled securely, lawfully and transparently. Your trust matters to us, and we want you to feel confident that your data is in safe hands, whether you are booking a ski boot fitting, making a payment, subscribing to our newsletter, or simply browsing our website.
Newtons Ski Ltd, trading as The Fitting Mill, is the controller of the personal data you provide to us. This means we are responsible for determining the purposes for which and the manner in which your personal data is processed. If you have any questions about how your data is collected or used, you can contact us at sam@thefittingmill.com.
We collect personal data when you interact with us directly or indirectly. This includes when you book an appointment via our online scheduling system (LatePoint), when you make a purchase or payment through Square (whether online or in-store), when you send us an enquiry via email or contact form, and when you sign up to receive marketing communications. We may also collect data when you browse our website, particularly once cookies and analytics features are enabled.
The types of personal data we collect include your name, email address, phone number, appointment details, service history, limited payment information, and your marketing preferences. If you choose to communicate with us, we will collect any additional information you provide in your messages. Once analytics tools are in place, we may also collect technical information such as IP address, device type and browsing behaviour.
We collect and process your personal data to provide you with the services you have requested, to manage our operations effectively, and to comply with our legal obligations. Under the UK GDPR, we are required to identify a legal basis for each type of processing we undertake.
We process your personal data when it is necessary for the performance of a contract, such as when you book an appointment or make a purchase. We also process data under our legitimate interests, for example, to improve our services, respond to customer queries, and maintain business records. In some cases, such as marketing communications and non-essential cookies, we rely on your explicit consent. You can withdraw this consent at any time. Additionally, we process personal data where we are under a legal obligation to do so, such as for accounting and taxation purposes.
We use your personal data to manage bookings and provide personalised ski boot fitting and related services. Your data allows us to send appointment confirmations and reminders, issue invoices, and handle payments securely. We use the information you provide to deliver excellent customer service and to follow up on enquiries or support requests.
If you have opted in to receive marketing communications, we may send you occasional emails with information about our services, seasonal updates, or booking availability. You may unsubscribe at any time by following the link in the email or contacting us directly.
We may also analyse usage trends and website performance once cookies and analytics are active, helping us understand how customers engage with our site and where improvements can be made. This information, once collected, will be anonymised and used solely to improve our user experience.
We only share your personal data with third parties when it is necessary for providing our services or meeting legal obligations. Your booking data is processed through LatePoint, while all online and in-store payments are processed securely via Square. Our accountants may access customer transaction records solely for tax and financial reporting purposes. These third parties are bound by strict data processing agreements, and they are only permitted to use your data to deliver the specific services we require from them.
We do not sell or share your personal information with third parties for their own marketing purposes. In circumstances where data may be transferred outside the UK or the European Economic Area, we ensure appropriate safeguards are in place, such as the use of Standard Contractual Clauses or equivalent legal protections.
We retain personal data only for as long as it is needed to fulfil the purposes for which it was collected, including any legal, accounting or reporting requirements. Booking and transaction records are generally retained for up to six years to meet financial and legal obligations. If you subscribe to our newsletter, your data will be retained for as long as you remain subscribed or until you request its deletion.
Data is securely stored on systems that are regularly monitored and updated. We follow industry-standard security measures, including encryption, password protection, and access controls to minimise the risk of unauthorised access, alteration or deletion of your data.
Under the UK GDPR, you have the right to request access to the personal data we hold about you. You may also ask us to correct inaccurate information, erase data that is no longer necessary, restrict processing under certain circumstances, or transfer your data to another service provider. You have the right to object to direct marketing and to withdraw consent where processing is based on consent.
To exercise any of your rights, please email us at sam@thefittingmill.com.
If you believe your data rights have been violated, you have the right to file a complaint with the UK Information Commissioner’s Office at www.ico.org.uk.
We may update this Privacy and Cookie Policy from time to time to reflect changes to our services, legal requirements, or the technologies we use. When we make significant changes, we will post the updated version on our website and update the effective date shown above. We encourage you to review this policy periodically to stay informed about how we protect your data.
If you have any questions about this policy, your personal data, or how it is processed, please contact:
The Fitting Mill
Studio 5, Bakersgate Courtyard
Pirbright, Surrey, GU24 0NJ
Email: sam@thefittingmill.com
For further guidance on your rights, you may also contact the Information Commissioner’s Office (ICO) via their website at www.ico.org.uk.