Last updated: 2026. This policy explains how Diolivo (“we”, “us”) handles your personal data when you visit diolivo.uk or contact us. We are committed to protecting your privacy and to processing your data lawfully, fairly and transparently.
1. Who we are
Diolivo is the data controller for the personal data collected through this website. If you have any questions about this policy or your data, you can reach us at [email protected].
2. What data we collect
We only collect what we need:
• Contact details you provide voluntarily — such as your name, email address, phone number and delivery address — when you contact us, place an enquiry or subscribe to our newsletter.
• Technical data — such as your IP address, approximate country (from your network), browser type and the pages you view — collected automatically to keep the site secure and working correctly.
3. How we use your data
We process your personal data to:
• respond to your enquiries and arrange orders;
• send you our newsletter, where you have asked to receive it;
• operate, secure and improve the website;
• meet our legal and regulatory obligations.
4. Lawful basis
Under the UK GDPR we rely on the following lawful bases: your consent (for example, newsletter sign-up, which you can withdraw at any time); the performance of a contract or steps taken at your request (for example, handling an order enquiry); our legitimate interests in running and securing the website; and legal obligation where the law requires us to retain certain records.
5. Cookies
This website uses only the cookies necessary for it to function, including a session cookie that remembers the contents of your basket. We do not use these for advertising. You can control or delete cookies through your browser settings; disabling essential cookies may affect how the site works.
6. Sharing your data
We do not sell your personal data. We may share it only with trusted service providers who help us operate the site and fulfil enquiries (for example, email or hosting providers), and only to the extent necessary, or where we are required to do so by law.
7. International transfers
Where data is transferred outside the UK, we take steps to ensure it is protected by appropriate safeguards, such as adequacy decisions or standard contractual clauses, in line with the UK GDPR.
8. How long we keep it
We keep personal data only for as long as necessary for the purposes set out above, or as required to meet legal obligations, after which it is securely deleted or anonymised.
9. Your rights
Under the UK GDPR you have the right to access your data; to have it corrected or erased; to restrict or object to its processing; to data portability; and to withdraw consent at any time. To exercise any of these rights, email us at [email protected].
10. Complaints
If you have a concern about how we handle your data, please contact us first so we can help. You also have the right to lodge a complaint with the UK’s supervisory authority, the Information Commissioner’s Office (ICO), at ico.org.uk.
11. Changes to this policy
We may update this policy from time to time. Any changes will be posted on this page with a revised “last updated” date.