Take your Yoga Outdoors this Bank Holiday with 50% off all Yoga Mats - Shop Now
Menu

Web Security

At Calmia, all online purchases take place safely, using the latest internet security technology to protect our customers. We accept orders only from web browsers that can use Secure Socket Layer (SSL) technology - this means you cannot inadvertently place an order through an unsecured connection. Most web browsers now support this.

The Calmia website is thawte assured, which is an independent hallmark and is industry standard security.

We use Verified by Visa and Mastercard SecureCode on our website to give you added security when you shop on-line.
Visit the Verified by Visa website
Visit the Mastercard SecureCode website

If you have questions regarding our credit card security policies, please email us at customercare@calmia.com


Privacy Notice

Calmia is an international holistic lifestyle brand that focuses on wholesaling and retailing its own brand collection of inspiring and beautiful yoga and wellness related products to help people relax and de-stress.

It is fundamental to our business that we collect and manage data about our customers and others. We are committed to the safe keeping of your information and, of course, compliance with data protection laws. As such, we therefore act as a “Data Controller”.

This privacy notice details how we collect, manage, process, store and share information about you as a result of you visiting our website, as a customer or prospective customer or for other activities, such as marketing and recruitment. We also explain how you can control use of your data.

If you have any feedback or questions about our use of your data, please contact our Data Privacy Manager, Tom Woodhead at data@calmia.com or you can write to Data at Calmia, Central Studios, 100 De Beauvoir Road, London, N1 4EN United Kingdom.

General

If you are a customer or prospective customer of Calmia, please read this notice alongside our Terms of Use. 

This notice does not apply to any websites or web services linked to our website or any website or web services that we provide you with links to at any time, as we do not have control over them. See below for our Cookie Policy.

About Us

Calmia is the trading name of Eternal Futures Ltd, registered in England No. 6540535. Our Head Office is at Central Studios, 100 De Beauvoir Road, London, N1 4EN United Kingdom. Telephone: +44 (0)20 7683 1521. Email: customercare@calmia.com.

Children

Our website and services are not aimed at children. If you are a child and need further advice or explanation about how we would use your data, please email data@calmia.com.

Provided information

The classes of information that we will obtain from or about you will depend on what you or others have asked us to do. 

You and others may provide personal data (personal information) that is classed as:

  • Personal data: general information that you supply about yourself or others – such as name, address, date of birth, gender, other contact details, financial information etc.
  • ‘Special category’ or sensitive personal data: information about your or others’ racial or ethnic origin, religion, sexual orientation, political opinions, health data, trade union membership, philosophical views, biometric and genetic data.
  • Criminal conviction and offences data.


In most circumstances, the personal data we obtain from or about you will be limited to general information, including the information we need for the fulfillment of an online purchase or customer enquiry, but we may need to request or obtain more detailed and sensitive information for activities such as processing job applications and in equal opportunities monitoring.


Sources of information

We may be given or obtain personal information from a number of sources, such as:

  • Information you give us about yourself
  • Information others give us about you to allow us to do our work, typically:
    • Employers, if you are (or may become) an employee, worker or contractor
    • Lawyers and accountants, in connection with contracts, and transactions 

Why do we need personal information?

The main reason for asking you to provide us with or give us permission to obtain your personal data from other sources, is to allow us to carry out our contractual obligations to you and others and for Calmia’s legitimate business interests and to meet legal obligations. 

The following are some examples of what we may use your information for:

Contractual obligations

  • fulfilling our contractual obligations to you
  • managing your account and providing requested services or access
  • making and managing payments made by or due to you
  • recovering money owed to us
  • resolving complaints, queries and support requests
  • ensuring our platform and services are functioning properly
  • exercising our contractual rights

Legitimate interests - in running our businesses efficiently and profitably e.g. in customer relationship management, finance, business prospects, suppliers, planning, communications, corporate governance and audit.

  • managing our relationship
  • providing guidance
  • responding to you and ensuring our relationship with you runs smoothly
  • managing risk for us and our customers
  • the prevention and detection of crime
  • scanning meta data to provide you or users with feedback on the interactions you or they are about to make, or to encrypt or unencrypt email traffic
  • support and maintenance of Calmia systems
  • developing and testing new systems, features, ways to meet your needs
  • studying your use of our systems and providing guidance on them
  • understanding desirability of potential products
  • developing products and pricing
  • developing, maintaining and growing our brand, goods and services
  • managing, tracking and developing our customer relationships
  • creating anonymous, pseudonymised reports/statistics
  • verifying employment references

Legal obligations

  • complying with data protection obligations, including keeping our data secure and our customer records accurate and up-to-date
  • complying with audit and financial reporting obligations
  • compliance with legal requirements to share information with government and law enforcement agencies and statutory bodies

Who can access personal information?

Our data protection regime has been established to ensure secure and lawful processing of your personal data. We will not sell or rent your information to any other person or organisation or share your information with third parties for marketing purposes unless we have your express consent to do so. 

As a general rule, we will only use your information within Calmia, but in running our business (whether directly or in the administration of our systems), we may need to disclose some information to third parties e.g. to:

  • Contracted suppliers, such as delivery and order fulfillment services, information technology providers and online services and tools
  • Credit reference agencies, credit card clearing agencies, fraud prevention and detection agencies
  • Research companies to contact you directly for your opinions on our products and services
  • Lawyers and other professionals advisers for seeking advice or representation
  • External accountants and auditors
  • HM Revenue & Customs; e.g. PAYE
  • Bank or Building Society and other financial institutions
  • Insurance brokers and companies
  • Providers of identity verification
  • Statutory bodies or actors involved in law enforcement or regulation e.g. for the prevention of financial crime and terrorism, where there is an emergency and we think you or others are at risk or on our good faith belief that it is necessary to conform or comply with a law, request or court order or to protect the users of our websites or the public

We may also share your personal data with third parties to whom we may choose to sell, transfer, or merge parts of our business or our assets. Alternatively, we may seek to acquire other businesses or merge with them. If a change happens to our business, then the new owners may use your personal data in the same way as set out in this Privacy Notice.

In the event that any of your information is shared with third parties, we will require them to maintain strict confidentiality, to operate according to our instructions where appropriate and not to use your personal information for their own purposes, unless you have expressly consented to them doing so.

We do not intentionally collect any sensitive personal information via our website or from customers. Please do not send or share information revealing your racial or ethnic origin; political opinions; religious or philosophical beliefs etc. unless you are requested to do so, for example, for equal opportunities monitoring in our recruitment processes.
If we need to process sensitive personal data, we will contact you separately to ask for your consent, which you will be free to withdraw at any time.


How do we protect your personal data?

We recognise that your information is valuable and we will take all reasonable steps to protect it while it is in our care.

We have systems in place to protect personally identifiable data from loss, misuse, alteration or destruction. We also impose confidentiality obligations on internal and external parties to protect the confidentiality of all personal information and to ensure compliance with data protection laws.

We employ computer and digital data safeguards such as firewalls and data encryption and we enforce physical access controls to our offices and files to keep data safe.
How long will we keep information for?

Your personal information will be retained, in computer and/or manual files, for as long as necessary to fulfill the purpose for which the information was collected; or as required by law; or as long as detailed in any contract you may have with us (of which this privacy notice may form part). e.g.

  • For as long as you are a customer of ours
  • After you stop being a customer, we may retain your information for our legitimate interests, including maintaining records required for legal or regulatory reasons, showing that we complied with our contractual obligations, responding to any complaints or queries, and for research and statistical purposes. We will ensure its confidentiality where we do so.

What are your rights?

Under the General Data Protection Regulations (GDPRs), you are entitled to access your personal data (this is the 'right to access'). If you want to make an information request, please apply in writing to our Data Privacy Manager (as detailed above).

If you request access to your personal data, you are entitled to a copy of the data we hold on you – such as your name, address, contact and financial details. You are not necessarily entitled to the documents that contain the data. 

We will endeavour to provide you with the personal information to which you are entitled within 30 days unless there are legitimate reasons for doing so and unless your request is exceptional in some way, there will be no cost to you.

In addition to the entitlement to access your data, you may have the following rights:

  • The right to be informed: this is fulfilled through this privacy notice and our explanation about how we use your personal data.
  • The right to rectification: you are entitled to have your personal data amended if it is inaccurate or incomplete.
  • The right to erasure / ‘right to be forgotten’: you have the right to request the deletion or removal of your personal data where:
    • The use or storage of personal data is no longer necessary for the purpose for which it was originally collected;
    • Consent is the lawful basis for holding your data and you withdraw your consent;
    • You object to the processing and there is no overriding legitimate interest for it to continue;
    • The personal data was unlawfully processed; or
    • You object to the processing for direct marketing purposes
  • The right to object: you have the right to object to processing based on legitimate interests and direct marketing. This right applies as follows:
    • We must stop processing personal data for direct marketing purposes if you object
    • Otherwise your objection must be based on grounds relating to your particular situation
    • We must stop processing your personal data unless:
      • We can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms; or
      • The processing is for the establishment, exercise or defence of legal claims.
  • The right to restrict processing: you have the right to request us to restrict or suppress your data. When processing is restricted, we can store your data but we cannot use it. This right only applies where:
    • You contest the accuracy of the personal data and we must restrict the processing until we have verified the accuracy of the data;
    • You object to the processing (if necessary for the performance of a public interest or purpose of legitimate interests), and we are in the process of considering whether our legitimate grounds override your right;
    • Processing is unlawful and you request restriction; or
    • If we no longer need the personal data but you need it to establish, exercise or defend a legal claim
  • Rights to data portability: If you want to move, copy or transfer the electronic personal data that we hold about you to another organisation, please contact our Data Privacy Manager (as above).
  • Rights to object to automated decision-making: If you want to object to any automated decision making without any individual involvement that we undertake, and to the profiling of your data, please contact our Data Privacy Manager (as above).

Likelihood of objection to processing of information

Calmia is not aware of any justifiable reasons that would constitute a legitimate reason for objecting or complaining about the way we process or control information.

Complaints about the use of personal data

If you want to complain about how we have dealt with your personal data, please contact our Data Privacy Manager (as detailed above) and we will investigate. 

If you are not satisfied with our response or believe we are unlawfully processing your personal data, you can complain to the Information Commissioner’s Office (ICO) via the official website.

Overseas Transfers

None of the information that we collect, process or store is transferred outside of the European Economic Area (EEA) unless necessary for the purposes of fulfilling our contractual obligations to our customers or pursuing our legitimate business interests in circumstances where our customers have a legitimate expectation of our sharing such information in the manner it is shared. In particular, we will ensure appropriate safeguards are in place, including sharing of information with suppliers that have certified agreements under the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework where appropriate.

Marketing data

We may contact you with direct marketing using social media channels, email or post. We may therefore use your personal information to contact you about products, services or events which we feel may interest you, but we will never send communications via SMS or call you with marketing promotions without your specific consent and we will never pass on or sell your details to anyone else.

How we collect personal data

The following are examples of how we collect your personal information: 

When you: 

  • provide it when you shop online
  • register online, email your information to us or through social media or other web sources
  • update your account, log-in or place an order
  • sign-up to receive a catalogue or one of our newsletters
  • submit an online enquiry
  • follow/like/subscribe to our social media channels
  • take part in a promotion on our website or on our social media channels
  • fill in a questionnaire or survey on our website or at an event
  • ask us a question or submit any queries or concerns you have via email or on social media channels
  • post information to our website or social media channels, for example when we offer the option for you to comment on, or join, discussions
  • leave an online review about us

Whenever we collect your personal data, you will be given the opportunity to ‘opt in’ to marketing communications from us. We hope you will provide this information so that you receive useful communications from us, but if you choose not to do this, it will have no effect on your ability to purchase our goods or services.

Calmia handles enquiries at different stages and we group those enquiries in two main ways. We will take the following steps in each instance:

  • Prospective customers: We will record consent before adding you to our marketing database.
  • New and Existing customers: Legitimate interest will be the legal basis. Relevant marketing communications may be sent to you by post or email while you are a customer. As a customer, you will have the option to exclude yourself from marketing by clicking on the unsubscribe link on all of our emails, on the telephone when speaking to us or contacting Calmia through email or on social media.

If our systems allow, contacts who have not engaged by opening a marketing email over a period of 12 months will be removed from our marketing database.

How we may use your details

The following are examples of how we might use your personal information for our legitimate business interests:

  • Direct email marketing
  • Fraud prevention
  • Network and information systems security
  • Modifying or improving our services
  • Identifying systems and communications usage trends
  • Determining the effectiveness of any promotional campaigns and advertising

We may use your personal information for legitimate interests such as direct marketing or under a reasonable expectation that we can provide you with information you would expect to receive or that would benefit and enhance our relationship. This information will help us review and improve our services.
We will get your express opt-in consent before we share your personal data with any company outside Calmia for marketing purposes.

Your rights

You have the right to object to this processing. If you wish to do so, please email our Data Privacy Manager (as detailed above). 

How we protect your personal information

We will only use non-sensitive personal information in relation to marketing; such as name, address, telephone, email, job description and previously expressed interests and requests. We may collect analytical information against your information to ensure that we do not send you irrelevant information. 

If you want to ‘unsubscribe’ from our marketing database, you can either follow the unsubscribe instructions on any of our communications to you that include them or you contact us by emailing the Data Privacy Manager (as detailed above) with your name and email address, or reply to the person who sent you the email, clearly stating that you wish to “unsubscribe”. We will remove your details from our marketing database as soon as we reasonably can. Unsubscribing will not affect our relationship with you and we will continue to retain and process your information in connection with our legal services in the normal way.

Cookies And Web Beacons

Cookies are small text files that websites send to your computer. A cookie can be thought of as an Internet user's identification card. They let the website know when the user has returned. This lets the site bring up information relevant to that user, for example your name, past orders, etc.

Cookies make the interaction between users and websites faster and easier. Without cookies, it would be very difficult for a website to allow a visitor to fill up a shopping basket or to remember the user's preferences or registration details for a future visit. The Calmia website uses cookies to allow customers to move from one part of the web site to another and to add items to the shopping basket without having to login repeatedly.

We also use cookies to track visitors' interest in our products. We may use this to understand what most appeals to our customers so we can make our offers as appropriate as possible. Browsing behaviour is also used to create relevant banner advertising with product recommendations that we believe best relate to the items you viewed on our website. These banners are then served across other websites that you may visit, typically news sites, video sites and blogs. This process is called behavioural advertising and although the adverts are individually tailored to each visitor, all cookie data is anonymised and stored temporarily. Additionally, all banners of this type feature an "i" icon that provides more information from each advertising network and instructions on how to opt out. We also use the browsing behavior data to create personal product recommendations on our website, our marketing emails and in our printed catalogue.

Cookies are not computer programs, and can't read other information saved on your hard drive. They cannot be used to disseminate viruses, or get a user's email address etc. They only contain and transfer to the website as much information as the users themselves have disclosed to that website. It is possible to opt out of cookies via your browser’s cookie settings, but if you do this you will not be able to shop from the Calmia website as the functions of the website are dependent on cookies. Please note that cookies are computer specific, so if you log on to any site from a different computer, the cookie settings on that computer will apply.

For further information about managing and disabling cookies on your computer see www.allaboutcookies.org/manage-cookies. By using our websites, you consent to our placement of cookies on your computer. You may occasionally get cookies from our business partners or other third parties. We have no access to or control over these cookies. Most internet browsers automatically accept cookies, but if you do not wish to have cookies on your system, you can set your browser preferences to refuse them or to alert you when cookies are being sent. In order to disable cookies, please consult your browser's "help" section for instructions. Additionally, if you have an Adobe Flash player installed on your computer, your Flash player can be set to reject or delete Flash cookies. If you choose to decline cookies, you may not be able to fully experience the features of our website. Web beacons are small strings of code that are placed in a web page or in an email message. They are sometimes called "clear GIFs" (Graphics Interchange Format) or "pixel tags". Web beacons are most often used in conjunction with cookies to track activity on our website. When you visit a particular web page, web beacons notify us of your visit. Since web beacons are used in combination with cookies, if you disable cookies the web beacons will only detect an anonymous website visit. When used in an email, Web beacons enable us to know whether you have received the email.

Data Over The Internet

We use reputable third-party service providers who perform services on our behalf. Sometimes these service providers need information about our customers in order to do their jobs, such as fulfill orders and promotions, maintain and manage our customer database and report on customer behaviour and/or preferences. When Calmia allows these service providers access to your information, we require them to maintain your information in the strictest confidence and we do not permit them to use it in any way other than to help us provide you with better service.

We currently use the services of a few carefully selected companies to help manage and optimize our Internet business and communications. These companies help us to measure the effectiveness of our advertising and better understand how visitors use our sites. To do this, cookies are placed on computer browsers and web beacons are placed on our websites on our behalf. The type of information collected in this manner includes pages visited, products viewed and products placed in your shopping cart. By supplementing our records, this information helps us to identify what pages are most attractive to our visitors, which of our products most interest our customers and what kinds of offers our customers like to see.

If you would like more information about this practice and to know your choices about not having this information used by our third party service provider, please contact us at: customercare@calmia.com You can also read more about online marketing practices and the technologies that support them by visiting the Network Advertising Initiative’s website.

Privacy Notice Updated

We may update our privacy policy from time to time. Whenever we make a change, we will post the updated policy at this site and we encourage you to check our policy periodically.