Privacy policy


Last updated: March 01, 2025

1. Introduction

IDA ACTIVE ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and share your personal data when you use our website https://www.idaactive.com ("Site") and services.

By using our Site, you agree to the collection and use of information in accordance with this policy.

2. How We Collect and Use Your Personal Data

We collect personal data to provide, improve, and secure our services. The types of data we collect include:

2.1 Information You Provide Directly

  • Contact details (name, email, phone number, billing and shipping addresses)
  • Order details (purchases, refunds, returns, exchanges)
  • Account information (username, password, security questions)
  • Payment details (processed securely by third-party providers)
  • Communications (emails, customer support requests)

2.2 Information We Collect Automatically

  • Device and browser data (IP address, browser type, operating system)
  • Usage data (pages visited, time spent, interactions)
  • Cookies and tracking technologies (see Section 6 for details)

2.3 Information from Third Parties

  • Payment processors (Shopify, Klarna, PayPal) for secure transactions
  • Shipping providers for order fulfillment
  • Analytics providers (Google Analytics, Hotjar) for website performance

3. Why We Collect Your Data

We process your personal data to:

  • Process orders, returns, and exchanges
  • Provide customer support and respond to inquiries
  • Send service-related notifications (e.g., order confirmations, updates)
  • Improve our website and services
  • Prevent fraud and ensure security
  • Comply with legal and regulatory obligations

We do not sell, rent, or trade your data.

4. Sharing Your Data

We share personal data with trusted third parties only when necessary:

  • Payment providers (Shopify, Klarna, PayPal) for secure transactions
  • Shipping and delivery services (Royal Mail, Evri) for order fulfilment
  • Marketing and analytics services (Google, Meta, Klaviyo, Hotjar) to improve our services
  • Legal and regulatory compliance when required by law

We ensure all partners comply with GDPR, CCPA/CPRA regulations.

5. Your Rights & Choices
Depending on your location, you have the following rights:

A. For U.S. Residents
California Residents (CCPA/CPRA)
Right to Know what data we collect.
Right to Delete personal data.
Right to Opt-Out of data sharing.
Right to Non-Discrimination for exercising rights.
To exercise your rights, email info@booklyte.com.

b. Your Rights Under GDPR

Under the UK/EU GDPR, you have the following rights:

  • Right to Access: Request a copy of your data.
  • Right to Rectification: Correct inaccurate or incomplete data.
  • Right to Erasure ("Right to be Forgotten"): Request data deletion.
  • Right to Restriction: Limit how we use your data.
  • Right to Object: Opt out of data processing for direct marketing.
  • Right to Data Portability: Request a copy of your data in a common format.

To exercise your rights, email us at https://www.idaactive.com. We will respond within 30 days as required by GDPR.

C. Marketing Preferences
Email Marketing: Click “Unsubscribe” in our emails.
SMS Marketing: Reply “STOP” to opt out.

6. Legal Basis for Processing (For EU Users)
If you are in the European Economic Area (EEA), UK, or Switzerland, we process your data based on:
Contractual Necessity (Processing orders)
Legitimate Interests (Fraud prevention, service improvements)
Legal Compliance (Regulatory obligations)
Consent (Marketing communications, cookies)

7. Cookies and Tracking Technologies

We use cookies and similar technologies to improve your experience.

You can manage cookie settings in your browser. For more details, visit our Cookie Policy.

8. Data Retention

We retain your data only as long as necessary for:

  • Order fulfillment and customer support
  • Legal and regulatory requirements
  • Preventing fraud and security threats

After this period, your data is securely deleted.

9. International Data Transfers

As we use Shopify and other global service providers, your data may be transferred outside the UK (e.g., to the EEA, US, or Canada).

We ensure compliance through:

  • UK GDPR-approved Standard Contractual Clauses (SCCs)
  • Data protection safeguards with our partners

10. Security Measures

We implement strict security measures to protect your data from unauthorised access, loss, or misuse.

  • Encrypted transactions
  • Secure servers and firewalls
  • Restricted data access

If you suspect unauthorised access, contact us immediately.

11. Contact Information

For privacy-related inquiries or to exercise your rights, contact us at:

Registered Company Name: IDA ACTIVE LIMITED
Business Address: 57 Sheppard Way, Leicester England LE7 7WG, United Kingdom
Email: hello@idaactive.com
Business Hours: 8 AM - 6 PM (Mon - Fri), (GMT) Greenwich Mean Time (London)

If you are not satisfied with our response, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at www.ico.org.uk.

12. Changes to This Policy

We may update this policy periodically. Any changes will be posted here with the last updated date.

Thank you for trusting IDA ACTIVE.