Privacy Policy
We take your privacy seriously. This policy explains exactly what data we collect, why we collect it, and how you can control it — no legalese, no surprises.
Overview
SEVIA ("we," "our," or "us") operates sevia.com and is committed to protecting your personal information. This Privacy Policy describes how we handle data collected through our website, products, and communications.
All SEVIA products are intended strictly for research purposes only. Our website is not directed at individuals seeking medical advice, and we do not provide it. By accessing our site, you agree to the practices described in this policy.
Data We Collect
We collect information you provide directly, information generated as you use our site, and in some cases information from third-party services that power our checkout or analytics.
| Category | Examples | How Collected |
|---|---|---|
| Identity | Name, email address | Account registration, checkout |
| Contact | Shipping address, phone number | Order placement |
| Payment | Card type, last 4 digits (not full card data) | Processed via Stripe — we never store card numbers |
| Technical | IP address, browser type, pages visited, time on site | Automatically via cookies and server logs |
| Communications | Support messages, email responses | When you contact us directly |
| Preferences | Newsletter opt-in, cookie consent | Your choices on site |
We do not collect sensitive categories of data such as health information, genetic data, biometric data, racial or ethnic origin, political opinions, or religious beliefs.
How We Use Your Data
We process your data only for legitimate purposes. Here is a plain-language account of each use:
- Order fulfilment — processing and shipping your purchases, sending order confirmations and tracking updates.
- Account management — creating and maintaining your customer account, recovering lost credentials.
- Customer support — responding to your enquiries, resolving disputes, processing returns.
- Marketing communications — sending newsletters and offers only if you have opted in. You can unsubscribe at any time.
- Site improvement — analysing aggregate usage patterns to improve page performance and user experience.
- Legal compliance — meeting our obligations under applicable laws, including fraud prevention and tax reporting.
- Security — detecting and preventing unauthorised access, abuse, or fraudulent transactions.
Cookies & Tracking
We use cookies and similar technologies to make our site work, understand how visitors use it, and deliver relevant content. You can manage cookie preferences at any time via our cookie banner or your browser settings.
| Type | Purpose | Can Opt Out? |
|---|---|---|
| Essential | Shopping cart, authentication, security | No — required for the site to function |
| Analytics | Aggregate traffic data via Google Analytics | Yes — via cookie banner |
| Functional | Remembering preferences, language, and region | Yes — via cookie banner |
| Marketing | Retargeting ads and conversion tracking | Yes — via cookie banner or browser |
Most browsers accept cookies by default. You can configure your browser to refuse cookies or alert you when cookies are being sent. Disabling essential cookies may affect site functionality.
Sharing & Disclosure
We do not sell your personal data. We share it only in the limited circumstances described below, and only with parties who are contractually bound to protect it:
- Payment processors — Stripe processes card payments. They are PCI-DSS Level 1 compliant. We never receive or store your full card details.
- Shipping partners — your name and delivery address are shared with our fulfilment and courier partners solely to deliver your order.
- Email service providers — if you have opted into our newsletter, your email is managed via our email platform (e.g. Klaviyo).
- Analytics providers — anonymised, aggregated usage data is shared with Google Analytics. No personally identifiable information is transmitted.
- Legal and regulatory bodies — we may disclose your data if required by law, court order, or to protect the rights and safety of SEVIA or others.
- Business transfers — if SEVIA is acquired or merges with another entity, your data may be transferred. You will be notified in advance.
Data Security
We implement industry-standard technical and organisational measures to protect your personal data against unauthorised access, loss, alteration, or disclosure.
Despite these measures, no method of transmission over the internet is 100% secure. If you have reason to believe your interaction with us is no longer secure, please contact us immediately.
Your Rights
Depending on your location, you have specific rights over your personal data. We honour all of the following regardless of where you live:
To exercise any of these rights, email privacy@sevia.com with your request. We will respond within 30 days. We may ask for proof of identity before fulfilling your request. There is no charge for reasonable requests.
If you are unhappy with our response, you have the right to lodge a complaint with your local data protection authority (for UK/EU residents, this includes the ICO or your national DPA).
Data Retention
We retain personal data only for as long as necessary to fulfil the purposes it was collected for, including any legal, accounting, or reporting obligations.
| Data Type | Retention Period | Reason |
|---|---|---|
| Order and transaction records | 7 years | Tax and legal compliance |
| Customer account data | Duration of account + 2 years | Service provision |
| Marketing preferences | Until unsubscribe or withdrawal of consent | Consent-based processing |
| Support correspondence | 3 years from last contact | Customer service and dispute resolution |
| Analytics data | 26 months (Google Analytics default) | Site improvement |
When data is no longer required, it is securely deleted or anonymised in accordance with our data disposal procedures.
Children's Privacy
Our website and products are intended for adults aged 18 and over. We do not knowingly collect personal data from individuals under the age of 18. All SEVIA products are for research purposes only and are sold to verified adults.
If you believe we have inadvertently collected data from a minor, please contact us at privacy@sevia.com and we will delete it promptly.
Policy Changes
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or the services we offer. When we make material changes, we will:
- Post the updated policy on this page with a revised "Last Updated" date at the top.
- Send an email notification to registered customers where the changes are significant.
- Display a prominent notice on our website for at least 30 days following any material update.
We encourage you to review this page periodically. Continued use of our website after any update constitutes acceptance of the revised policy.
Contact Us
If you have any questions, concerns, or requests relating to this Privacy Policy or your personal data, please reach out to our privacy team:
Response time: Within 2 business days
Postal: SEVIA Privacy Team, [Your Registered Address]
Subject line: Please include "Privacy Request" in your subject line for faster routing.
For data subject requests (access, erasure, portability), please include your full name, email address used on our site, and a description of your request. We may need to verify your identity before processing the request.