Privacy Policy
Effective Date: May 13, 2018
Last Updated: Jun 11, 2025
1. Introduction
This Privacy Policy explains how Proprofit Worldwide Limited ("we," "our," or "us") collects, uses, stores, shares, and protects your personal data when you access or use any of the following websites (collectively referred to as the "Service"):
This policy is designed to comply with the United Kingdom General Data Protection Regulation (UK GDPR) and the European Union General Data Protection Regulation (EU GDPR), as well as other applicable data privacy laws.
By using our Service, you consent to the practices described in this Privacy Policy. If you do not agree with any part of this policy, please discontinue use of the Service.
We reserve the right to amend this Privacy Policy at any time. Material changes will be posted prominently on https://clubshop.com and will take effect upon publication. We recommend reviewing this policy periodically to stay informed about how we handle your data.
2. Data We Collect
When you use our Service, we collect and process personal data that may be used to identify you directly or indirectly. The categories of personal data we collect include:
2.1. Personal Identification Information
- Full Name
- Email Address
- Mobile Number
- Date of Birth
- Home or Shipping Address
- Social Media Profile (if connected)
- Payment Information (such as billing address or partial card details, not full card numbers)
2.2. Usage Data
We automatically collect certain data when you interact with our websites, including:
- Internet Protocol (IP) address
- Browser type and version
- Pages visited and time spent
- Referring/exit URLs
- Device type and operating system
- Date and time of access
2.3. Account and Transactional Data
If you register an account, subscribe to services, or make purchases, we may collect:
- Username and password (encrypted)
- Order history and payment records
- User preferences and settings
- Customer service interactions and feedback
2.4. Communications and Interactions
We may also collect:
- Messages sent via our website or support forms
- Testimonials or reviews you voluntarily submit
- Data collected from live chat or email conversations
3. How We Collect Your Data
We collect your personal data in the following ways:
3.1. Information You Provide Voluntarily
You may provide personal data directly to us when you:
- Register an account or subscribe to a service
- Complete a transaction or place an order
- Fill in contact or support forms
- Participate in surveys, contests, or promotional activities
- Submit testimonials, feedback, or public comments
- Communicate with us via email, live chat, or social media
3.2. Information We Collect Automatically
When you interact with our websites, we automatically collect certain data through cookies and tracking technologies (see Section 9). This includes:
- Your IP address
- Device information and browser type
- Date/time of access
- Pages visited and duration of visit
- Referring URLs or links clicked
3.3. Information Received from Third Parties
We may also receive your information from third-party sources, including:
- Social media platforms (when you connect your account)
- Payment processors (e.g., transaction confirmation)
- Affiliate or marketing partners who refer you to our services
All information we collect is used strictly for the purposes outlined in this Privacy Policy and handled in accordance with applicable data protection laws.
4. How We Use Your Data
We use the personal data we collect to provide, maintain, and improve our services, in line with lawful bases under the UK and EU GDPR. The purposes for which we process your data include:
4.1. Service Delivery and Account Management
- To create and manage your user account
- To provide access to the features and functionality of our websites
- To fulfill your orders and process payments
- To manage and track customer transactions and service usage
4.2. Communication and Customer Support
- To respond to your inquiries and provide support
- To send service-related notifications, such as updates, alerts, or administrative messages
- To request feedback or follow up on service quality
4.3. Marketing and Promotions (based on your consent or legitimate interest)
- To send newsletters, special offers, or promotional materials
- To personalize marketing based on your interests or behavior
- To conduct surveys, contests, or giveaways
4.4. Website Functionality and Analytics
- To monitor and analyze usage trends and performance
- To improve the structure, content, and user experience of our sites
- To detect and address technical issues
4.5. Legal and Regulatory Compliance
- To comply with applicable laws and regulations
- To fulfill contractual obligations
- To protect our legal rights, prevent fraud, and manage disputes
4.6. Consent-Based Use
Where we rely on your consent (e.g., for marketing or optional cookies), you may withdraw it at any time by contacting us or adjusting your browser/cookie settings.
5. How We Share Your Data
We do not sell your personal data. We may share your personal data only in the following circumstances, and only when such sharing is lawful, secure, and limited to the intended purpose:
5.1. With Your Consent
We may share your data when you have given us explicit permission to do so for a specific purpose.
5.2. With Our Affiliates and Subsidiaries
We may share data within the Proprofit Worldwide Limited group of companies and controlled entities, for internal administrative purposes or in support of services you request.
5.3. With Service Providers and Partners
We work with trusted third parties to operate, enhance, and market our services. These may include:
- Payment processors
- Email marketing and newsletter platforms
- Live chat and customer service software
- Analytics and website performance services
- Advertising and social media platforms
Each third party is contractually obligated to:
- Process data only for the specified purpose
- Maintain confidentiality and security
- Comply with applicable data protection laws
5.4. In User-to-User Interactions
If you post comments, testimonials, or interact with public forums on our platform, your name, username, or other visible data may be publicly accessible.
5.5. During Business Transfers
In the event of a merger, acquisition, asset sale, or corporate restructuring, your data may be transferred to the new entity. You will be notified of any such change.
5.6. For Legal or Regulatory Purposes
We may disclose your information if required to:
- Comply with laws, court orders, or legal process
- Respond to lawful requests from public authorities
- Enforce our Terms or investigate potential violations
- Prevent fraud, security threats, or harm to individuals
6. Third-Party Data Sharing
We engage third-party service providers ("data processors") to perform specific business functions on our behalf. When we share your personal data with them, we do so under legally binding agreements that meet the standards of the UK GDPR, EU GDPR, and other applicable data protection laws.
6.1. Purposes for Third-Party Sharing
Your data may be shared with third parties for purposes including, but not limited to:
- Website analytics and usage tracking (e.g., Google Analytics, Taboola)
- Marketing and advertising services (e.g., email campaigns, retargeting ads)
- Live chat and support software (e.g., Zendesk/Zopim)
- Payment processing (e.g., Stripe, PayPal)
- Order fulfillment and logistics
- Cookie consent and preference management tools
6.2. Obligations of Third Parties
All third parties with whom we share data must:
- Only use the data for the purpose specified in the contract
- Not retain the data longer than necessary
- Not sell or reuse the data
- Implement appropriate technical and organizational security measures
- Assist us in fulfilling our obligations regarding data subject rights
We regularly review third-party relationships to ensure ongoing compliance with applicable privacy regulations.
7. Data Retention and Storage
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
- Delivering and maintaining the services you request
- Complying with legal, regulatory, and tax obligations
- Resolving disputes and enforcing our agreements
7.1. Standard Retention Period
Unless a longer retention period is required by law or justified by our legitimate business interests, we store personal data for up to 365 days after it is no longer needed to provide our services to you.
7.2. Extended or Permanent Storage
In some cases, we may retain certain non-identifiable data (aggregated or anonymized) indefinitely for statistical, research, or business reporting purposes. This data cannot be used to identify you personally.
7.3. Criteria for Retention Duration
We determine appropriate retention periods based on:
- The nature and sensitivity of the data
- The purpose of processing
- Applicable legal requirements
- User account status (active/inactive/deleted)
7.4. Data Deletion and Archiving
Once your data is no longer required and no legal obligation applies, it will be:
- Securely deleted from our active systems
- Anonymized where deletion is not feasible
- Archived in encrypted backup systems with restricted access
You may request deletion of your personal data at any time by using our "Remove My Data" procedure (see Section 10)
8. Your Rights Under GDPR
If you are located in the United Kingdom, European Union, or another jurisdiction that enforces GDPR-equivalent protections, you have the following rights with respect to your personal data:
8.1. Right to Access
You have the right to request a copy of the personal data we hold about you and how it is being processed.
8.2. Right to Rectification
You may request correction of any inaccurate, incomplete, or outdated personal data.
8.3. Right to Erasure ("Right to be Forgotten")
You can request deletion of your personal data where there is no valid legal or contractual reason for us to retain it.
8.4. Right to Restrict Processing
You can ask us to limit the processing of your personal data in certain situations, such as when the data's accuracy is in question or when you object to our use of it.
8.5. Right to Data Portability
Where applicable, you may request that we provide your personal data in a structured, commonly used, and machine-readable format so you can transfer it to another data controller.
8.6. Right to Object
You have the right to object to processing of your data for direct marketing or on grounds relating to your particular situation, unless we have compelling legitimate reasons to continue.
8.7. Right to Withdraw Consent
Where processing is based on your consent, you may withdraw it at any time. Withdrawal does not affect the lawfulness of processing before the withdrawal.
8.8. Right to Lodge a Complaint
If you believe your data has been handled improperly, you have the right to file a complaint with your local data protection authority:
9. Cookies and Tracking Technologies
We use cookies and similar tracking technologies on our websites to improve functionality, enhance user experience, analyze site traffic, and support targeted advertising. Cookies are small text files placed on your device by your browser when you visit a website.
9.1. Types of Cookies We Use
Strictly Necessary Cookies
Essential for core website functionality, such as login, navigation, and security. These cookies do not require user consent.
Performance Cookies
Help us understand how visitors interact with our website by collecting anonymized usage data (e.g., Google Analytics). These cookies are optional and require your consent.
Functionality Cookies
Enable enhanced features, such as remembering your language or location preferences.
Targeting Cookies
Used to build user profiles and display relevant ads across websites. These are placed by advertising partners and require your prior consent.
Unclassified Cookies
Cookies that are in the process of being categorized.
9.2. Cookie Consent
We use a consent management platform (e.g., Cookie-Script) to present a cookie banner when you first visit our site. You may choose to accept or reject non-essential cookies. You may also change your cookie preferences at any time by revisiting the banner or adjusting your browser settings.
9.3. Third-Party Tracking
Some third-party services, such as Taboola, Zendesk, and Google Analytics, may place cookies when you use our site. These services may collect browsing data across different websites.
For a full list of cookies in use, their providers, expiration periods, and purposes, please refer to the Cookie Declaration Table provided below or via our cookie consent tool.
10. "Remove My Data" Requests
In accordance with the UK GDPR and EU GDPR, we provide all users—including non-members and guests—the right to request permanent deletion of their personal data held by us.
10.1. Who Can Use This Feature?
This feature is available to:
- Registered users
- Former account holders
- Visitors who interacted with our site but did not create an account (e.g., via a contact form or newsletter sign-up)
10.2. How to Submit a Data Deletion Request
You may request the removal of your personal data by sending an email to:
📧 [email protected]
Subject Line: Remove My Data Request
Please include the following information to verify your identity:
- Your full name
- The email address associated with the interaction or account
- (Optional) A brief description of how you engaged with our site (e.g., order placed, form submitted)
10.3. Processing Time and Method
- Requests are handled manually by our team.
- We aim to complete verified requests within 30 days of receipt, in accordance with GDPR timelines.
- If additional verification is needed, we may contact you for clarification.
10.4. Where to Find the Link
A direct "Remove My Data" link is included in the footer of our websites and referenced clearly within this Privacy Policy. Users may also access this option via our Privacy Center.
11. Data Security
We take the protection of your personal data seriously and implement appropriate technical and organizational measures to safeguard it from unauthorized access, misuse, loss, or alteration.
11.1. Our Security Practices Include:
- Encrypted data transmission (SSL/TLS)
- Firewalls and network security monitoring
- Access controls and authentication procedures
- Regular system updates and vulnerability assessments
- Secure backup and disaster recovery systems
- Staff training in data protection principles
11.2. Third-Party Providers
We ensure that all service providers and partners processing personal data on our behalf are contractually required to implement adequate security measures and comply with applicable data protection laws.
11.3. No Absolute Guarantee
While we strive to protect your personal data using best practices, no method of transmission over the internet or method of storage is 100% secure. Therefore, we cannot guarantee absolute security.
11.4. Your Responsibility
You are responsible for maintaining the confidentiality of your account credentials and for securing access to your devices. We recommend using strong passwords and logging out after each session, especially when accessing your account from shared devices.
12. International Data Transfers
As a UK-based company, we may process your personal data in jurisdictions outside your country of residence. This includes the transfer of data to third-party service providers or partners located in the European Union (EU), the United States (US), or other countries.
12.1. Adequate Protection
Where personal data is transferred outside the United Kingdom or the European Economic Area (EEA), we ensure that:
- The destination country has been recognized as providing an adequate level of data protection by the UK government or European Commission; or
- We have implemented appropriate safeguards, such as Standard Contractual Clauses (SCCs) or equivalent legal mechanisms.
12.2. Your Rights Remain Protected
Regardless of where your data is processed, it will be handled in accordance with this Privacy Policy, and your rights under the UK and EU GDPR will remain fully protected.
12.3. Questions About Data Transfers
If you have concerns about how and where your data is processed or transferred internationally, you may contact us at [email protected] for more details.
13. Contact Information & Data Protection Contact
Proprofit Worldwide Limited is the controller of your personal data for all processing activities described in this Privacy Policy.
Although a formal Data Protection Officer (DPO) has not yet been appointed, we have designated an internal contact point for all privacy and data protection matters in compliance with UK GDPR Article 37 and EU GDPR Article 13(1)(b).
13.1. Data Protection Contact
If you have any questions, concerns, or requests regarding your personal data, including exercising any of your GDPR rights, please contact:
Data Protection Contact
DPO: Data Privacy Services
Email: [email protected]
Address: 12 Bank Cottage Pant - SY10 9QX - Shropshire, UK
Phone: +44 808 101 0155
This contact point is responsible for addressing your requests or inquiries and ensuring they are forwarded to the appropriate internal authority for resolution. We respond to all valid requests within the required timeframes under applicable law.
14. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, services, legal obligations, or regulatory requirements.
14.1. Notification of Changes
When we make material changes to this policy, we will:
- Update the "Last Updated" date at the top of the page
- Post the revised version on https://clubshop.com
- Provide notice via email or on-site notification if legally required
We encourage you to review this Privacy Policy periodically to stay informed about how we collect, use, and protect your personal data.
14.2. Continued Use
Your continued use of the Service after any updates constitutes your agreement to the revised terms.