Privacy Policy

Last updated: 13 February 2026

This Privacy Policy explains how Aylesbury Signs Ltd, trading as OnlineBanners.co.uk (“we”, “us”, “our”), collects, uses and protects your personal data when you visit our website, place an order, or contact us.

We are committed to protecting your privacy and handling your data in accordance with:

  • The UK General Data Protection Regulation (UK GDPR)
  • The Data Protection Act 2018
  • The Privacy and Electronic Communications Regulations (PECR)

1. Who We Are

Data Controller: Aylesbury Signs Ltd
Trading as: OnlineBanners.co.uk
Registered address:
167–169 Great Portland Street
5th Floor
London
W1W 5PF
United Kingdom

Email: info@onlinebanners.co.uk
Phone: 01296 841177

If you have any questions about this Privacy Policy or your personal data, please contact us using the details above.

2. The Personal Data We Collect

Information You Provide Directly

When you use our website or place an order, we may collect:

  • Name
  • Company name (if provided)
  • Billing and delivery address
  • Email address
  • Telephone number
  • Order details (product type, size, specifications, finishing options)
  • Artwork files and designs you upload
  • Account login details (if you create an account)
  • Communications with us (email, phone, contact forms)

Information Collected Automatically

When you browse our website, we may collect:

  • IP address
  • Device type and browser type
  • Operating system
  • Pages visited and time spent on site
  • Referral source
  • Cart activity

Payment Information

Payments are processed securely via:

  • WooPayments (powered by Stripe)
  • PayPal

We do not store your full card details on our servers.

3. How We Use Your Data

We use your personal data to:

  • Process and fulfil your orders
  • Produce and dispatch printed products
  • Provide order updates and customer support
  • Take payment and prevent fraud
  • Arrange delivery with couriers
  • Improve our website and services
  • Meet legal and accounting requirements
  • Send marketing communications (where permitted)

4. Lawful Bases for Processing

Under UK GDPR, we rely on:

  • Contract – to fulfil your order and provide services
  • Legal obligation – for tax, accounting and regulatory requirements
  • Legitimate interests – to operate and improve our business, prevent fraud, and maintain security
  • Consent – for non-essential cookies and marketing communications where required

5. Marketing Communications

If you subscribe to marketing emails, we may send updates, offers and promotions.

You can unsubscribe at any time by:

If you purchase from us, we may contact you about similar products under the “soft opt-in” rules permitted by UK law. You can opt out at any time.

We do not sell personal data to third parties.

6. Cookies and Analytics

Our website uses cookies to:

  • Enable essential website functionality (cart, checkout, login)
  • Improve performance and usability
  • Analyse website traffic

We use Google Analytics to help us understand how visitors use our site. Google Analytics may collect anonymised usage data such as page views, session duration and device information.

Non-essential cookies are only set with your consent via our cookie banner.

You can manage cookies via:

  • Our cookie consent tool
  • Your browser settings

Disabling essential cookies may affect site functionality.

7. Sharing Your Information

We share personal data only where necessary, including with:

Payment Providers

  • WooPayments (Stripe)
  • PayPal

Delivery Providers

  • DPD
  • Parcelforce
  • DX

We share your name, address and contact details with couriers for delivery purposes only.

Service Providers

  • Website hosting providers
  • IT support services
  • Professional advisers (accountants, insurers, legal advisers)
  • Google Analytics

All third-party processors are required to keep your data secure and only use it for authorised purposes.

8. International Transfers

Some service providers (such as Stripe, PayPal or Google) may process data outside the UK.

Where personal data is transferred internationally, appropriate safeguards are in place, such as:

  • UK adequacy regulations
  • International Data Transfer Agreements (IDTA)
  • Standard Contractual Clauses

You may request further details by contacting us.

9. Data Retention

We retain personal data only as long as necessary:

  • Order and accounting records: typically 6 years
  • Customer service communications: up to 6 years
  • Marketing data: until you unsubscribe
  • Website analytics data: in accordance with Google Analytics retention settings

Artwork files may be retained to support reprints and customer service unless you request deletion (subject to legal obligations).

10. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion (where legally possible)
  • Restrict processing
  • Object to processing
  • Data portability (where applicable)
  • Withdraw consent at any time

To exercise your rights, email info@onlinebanners.co.uk.

You also have the right to complain to the UK regulator:

Information Commissioner’s Office (ICO)
www.ico.org.uk

11. Security

We implement appropriate technical and organisational measures to protect your personal data, including secure hosting, access controls and encrypted payment processing.

While no system is completely secure, we take reasonable steps to protect your data.

12. Children

Our website is not intended for children, and we do not knowingly collect personal data from children.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Updates will be published on this page with a revised “Last updated” date.