1. Who we are
In this Privacy Policy, references to:
You can find out how to contact us in Section 9 below.
2. Your Privacy
In the course of our dealings with You, we will collect and process personal information about You. Personal information includes any information allowing us to identify You as an individual, including, but not limited to, Your name, Your email address, or Your telephone number.
For the purposes of the General Data Protection Regulations (“GDPR”) and equivalent data protection laws, we are the data controller in respect of Your personal information that we collect and process, however, we may share Your personal information with other organisations that may further process Your personal information as a controller in their own right (see Section 7 for further details). We are committed to protecting Your privacy and will use Your personal information in accordance with all applicable laws and regulations that relate to data protection and privacy, including the GDPR.
This Privacy Policy outlines:
3. What information do we collect?
We collect the following types of information:
(a) Information we collect when You register with us
We may collect:
(b) Information we collect when You interact with us at our trade counters, via our customer service centre or a third party platform (such as X, Meta and/or other social media applications), or using our Digital Services or other organisations' websites where our adverts are shown
We may collect:
Where You register an account and/or shop online with us, we will be able to link Your personal information collected from You before registration and/or Your online purchase (such as Your online browsing behaviour) to Your account and personal information that we collect after registration and/or Your online purchase. You can browse our website without providing us with any of this information.
You may also provide us with Your personal information via our forums, product questions and reviews, customer service centre’s live chat, survey responses and competition entries.
4. Why do we ask for this information?
When You shop with us at our trade counters, we may request Your contact information and Your payment information. You can also shop at our trade counters without providing any contact information or, payment information, if you are using cash.
When You place an order through our customer service centre or our Digital Services, we will need Your contact and payment information to enable us to take payment and fulfil Your order. When You want to place an order via our Digital Services, we ask You to login or register so You can open a customer profile, save Your browsing information and Your preferences, and retrieve them from any of Your devices.
To ensure that Your payment details are not being used without Your consent, we will validate the name, address and any other personal information supplied by You (which may include further personal information being requested, such as Your date of birth, driving licence number or passport number) during the order process against appropriate third-party databases. By placing an order through our Digital Services or our customer service centre You consent to such checks being made.
We will ask for or collect Your personal information when You use our trade counters (if You have an account with us) and our customer support services, including telephone support and instant messaging via third party platforms.
When You use our Digital Services, we may collect information about Your location. With Your permission we may collect information about Your location using Your device specific API (which may include Wi-Fi, Bluetooth, magnetometer, barometer and cellular hardware) and GPS. This will enable an enhanced order collection experience, when You use the Screwfix click and collect facility. You can provide or withdraw Your permission at any time, by changing the settings on Your device.
We ask for Your permission to send You marketing and promotional material via post, telephone, email, and SMS so that we can send You free gifts, discount vouchers, invitations to events, special offers, and any other marketing material that we believe may be of interest to You. If You give permission, You will be able to withdraw it at any time:
Please note that, even if You choose not to receive this marketing information, we may still use Your personal information to provide You with important services communications, including communications in relation to any orders You submit or products You purchase. We may also offer You the opportunity to indicate the specific types of marketing communications You are particularly interested in receiving from us; where possible, we will tailor the communications You receive to reflect Your choices, but we may send You other communications that we believe may be of interest to You.
We ask for Your consent before using any user generated content on our website and/or on our social media channels. If You give us Your consent, You will be able to withdraw it at any time by messaging us on the platform we used to contact You requesting Your consent, or by contacting us using the contact details provided below in Section 9.
When You use Your payment card to make a purchase with us (either at our trade counters or via our Digital Services), we will link details of that purchase with other purchases made with the same payment card. (For security purposes, we do not keep Your payment card details for this purpose.) We use this information to better understand how our customers purchase from us. If You opt in to receiving marketing communications from us, we will link details of Your purchases with us with the other details that we hold about You, and we may use this information to make our communications with You more relevant.
5. How do we use your personal information?
We have set out below the purposes for which we use Your personal information. We are also required by law to state a "legal basis for processing", i.e., to tell You on what grounds we are allowed to use Your information, and this is also set out below. The legal basis for each purpose is that we have Your consent for the use of Your personal information, or that we need to use Your personal information to perform a contract with You, or to comply with legal obligation, or that the use of Your personal information is necessary for our legitimate interests (in which case we will explain what those interests are).
PURPOSE OF PROCESSING
OUR LEGAL BASIS
to carry out our obligations under any contracts entered into between You and us. For example, we will use Your payment details and delivery address to process and fulfil Your order(s), and to communicate with You about Your order for a service or product;
Contractual necessity – we use Your personal information in order to meet our obligations under our contract with You.
in the event that You do not complete Your registration or order, we may use any contact information You have provided us to follow up on Your partial registration or order;
Legitimate interests – we use Your personal information in order to remind You of Your partial registration or order and so that You can (if You wish) complete the registration or order.
to contact You about leaving a review or providing feedback on a product or service once Your order has been completed or the service has been provided;
Legitimate interests - we use Your personal information to contact You so that we can ask You to provide feedback on the product or service You have ordered.
to share user generated content on our websites and/or social media channels
Consent - where we use Your user generated content (such as Your social media posts) we will ask for Your consent before processing Your personal information for this purpose.
to notify You about changes to our services and to otherwise communicate with You. For example, we will use Your contact details in order to respond to any queries that You submit to us;
Legitimate interests - we use Your personal information to keep You up to date with information about our services, and to respond to Your queries.
to provide You with information about products and services, including exclusive offers, vouchers, free gifts, deals, and information about products and events;
Legitimate interests – we use Your personal information to send You this information. In some cases (such as where we are required to do so by law) we will also ask for Your consent before sending You this information (in which case we rely on consent and not legitimate interests as our legal basis).
to review Your past purchases and viewing history on our Digital Services to provide You with special offers or to tailor Your experience online;
Legitimate interests - we use Your personal information to provide You with these offers and to tailor Your experience when using our online services.
to help us review, develop and improve the products and services we offer. For example, calls to our contact centres are monitored and recorded for quality control and training purposes. We may also send You market research requests via email (which You can opt out of via that email).
Legitimate interests – we use Your personal information to help us deliver the best quality of service to You and our other customers.
to monitor details of Your visits to our Digital Services, including page views, and conversions, whether cookies are accepted or rejected for business and data analysis purposes and to ascertain the products, services, promotions, special offers and discounts that are likely to be of particular interest to You and to use this to send tailored marketing information to You (where we are permitted to do so)
Legitimate interests – we use Your personal information to (i) help us deliver the best quality of service to You and our other customers; and (ii) provide You with tailored advertising and to tailor Your experience when using our Digital Services.
Consent – where cookies or similar technologies are accepted we rely on consent (unless otherwise provided in our cookie policy).
to improve and measure the effectiveness of our marketing communications, including online advertising.
We also share cookie and other data (including online and offline purchase data) with third party entities including, but not limited to, Google, X, Instagram, and Meta in order to make our advertising more relevant to You. This also includes when You accept and reject cookies, please see our Cookies Policy for full details of the cookies.
We require any such third parties to treat Your personal information as fully confidential and to fully comply with all applicable data protection legislation. We sometimes compare limited information that we hold about You (for example, Your email address or telephone number) with third parties that also hold Your information or have an existing online relationship with You in order to identify You as our customer and to enable us (or third parties on our behalf) to provide You with relevant marketing online.
Legitimate interests - we use Your personal information to deliver You a tailored experience when using such Digital Services, to help us understand the effectiveness of our advertising, and to make sure You see adverts that are most relevant to You.
Consent – where cookies or similar technologies are accepted, we rely on consent (unless otherwise provided in our cookie policy).
We share limited data (such as an email address) which is hashed and securely shared this with Google when You engage with our advertising and go onto make a purchase using our Digital Services where You are a Google account user and that account is logged into the service that You accessed our advertisement through. This is then reported within our conversion account.
Legitimate interests – we use Your personal information to help us deliver the best quality of service to You and our other customers.
to provide, enhance and personalise Your experience on our Digital Services;
Legitimate interests - we use Your personal information to deliver You a tailored experience when using our Digital Services.
to carry out security checks to protect against fraudulent transactions and to prevent and detect criminal activity;
Legitimate interests - we use Your personal information to protect against unlawful activities. In some cases, we may also be under a legal obligation to disclose Your personal information (for example, to law enforcement agencies).
to ensure the safety and security of customers, employees and third parties at our premises;
Legitimate interests - we use Your personal information to protect against unlawful activities.
to address any complaints or claims made against us.
Legitimate interests - we use Your personal information to address any claims You make against us. In some cases, we may also be under a legal obligation to disclose Your personal information (for example, in connection with legal proceedings).
Legal proceedings – where the personal information constitutes special categories of personal data (for instance, health information), we will process the information on the basis that it is necessary for the establishment, exercise or defence of legal claims (as the case may be).
to comply with any legal obligation (including in connection with a court order);
Compliance with legal obligation – we process Your personal information in order for us to comply with our legal obligations.
Our Digital Services are not intended for children, and we do not knowingly collect data relating to children.
6. How long do we keep your personal information?
We are required by law to keep Your personal information only for as long as is necessary for the purposes for which we are using it. The period for which we keep Your personal information will be determined by a number of criteria, including the purposes for which we are using the information, the amount and sensitivity of the information, the potential risk from any unauthorised use or disclosure of the information, and our legal and regulatory obligations.
7. Who do we share your personal information with?
We may use automated decision-making when we make decisions by technological means without significant human involvement, and non-automated processes, to help generate business insights based on the customer experience and evaluate or predict customer purchasing preferences.
We may disclose Your personal information to third parties, including in the following circumstances:
Links to external sites
From time to time, we may also establish relationships with third parties that will enable You to access the websites or applications (such as video players) of such third parties directly from our Digital Services. Each third party operates its own policy regarding the processing of Your personal information and the use of cookies on its websites or through its applications and You are advised to read the third party's privacy policy and cookies policy.
Please note that third party websites and applications are not under our control. When You access these websites or applications You leave the area controlled by us. Similarly, where You have contacted us or shared user-generated content with us using a third-party platform (for example a social media platform), the third party(ies) that provide these platforms will use Your information in accordance with their own privacy notices. We do not accept responsibility or liability for any issues arising in connection with the third party's use of Your data (including Your personal information).
Where will Your personal information be processed?
Your personal information may be transferred to, and stored and processed in, one or more countries outside the country in which we are established (see Who we are, above), including countries which do not provide equivalent protection for personal information. In these circumstances, we will take reasonable steps and implement appropriate measures to ensure that Your personal information is adequately protected in accordance with the law.
These measures include either:
Please contact us using the details below if You want further information on the specific safeguards used by us when transferring Your personal information out of the country in which we are established.
8. Your rights
You have the right to ask us to:
Our security procedures mean that we may request proof of identity before we are able to disclose Your personal information to You or comply with other requests.
We want to make sure that the personal information we hold about You and Your preferences as to how we contact You are accurate and up to date. If any of the details are incorrect, please let us know (details below) and we will amend them.
If you are unhappy about the way we have handled your data and we have been unable to resolve your complaint you have the right to lodge a complaint with the data protection supervisory authority in your country of residence.
In the UK this is the Information Commissioner’s Office (ICO). For further details, see https://ico.org.uk.
9. How to contact us?
To update Your details, object to data processing, request data is erased or ask for a copy of Your personal information, or to contact our Data Protection Officer, You can:
10. Protecting your personal information
The transmission of information via the internet is not completely secure; this risk is common across the internet and not specific to our services. We cannot guarantee the security of Your data (including Your personal information) transmitted to our services; any transmission is at Your own risk.
It is important for You to protect against unauthorised access to Your password and to Your computing device. Be sure to sign off and close Your browser when You have finished Your session. This will help to ensure that others do not access Your personal information if You share Your computing device or use a computing device in a public place such as a library or cafe.
We would recommend that You do not use the same password and e-mail address combination for Your Screwfix account as You use on other websites. Using the same password and e-mail address combination for multiple accounts puts Your personal data at risk. Should Your details be subject to a cyber-attack on another website, this can lead to Your personal data being compromised in credential stuffing attacks.
11. Updates to this notice
We may update this notice from time to time. The latest version of this notice will be posted on our website.
©Copyright. All rights reserved.
We need your consent to load the translations
We use a third-party service to translate the website content that may collect data about your activity. Please review the details in the privacy policy and accept the service to view the translations.