Skip to Content (Press Enter) Skip to Footer (Press Enter)
Shop Outlet Clearance: Ends Monday
Free Delivery & Returns
Privacy Notice

Your Privacy Matters to Us

Last Updated: 15/07/2024

At AllSaints, we believe in creating amazing fashion experiences – and that includes how we handle your personal data. We know privacy policies can be daunting, so we've worked hard to make ours clear and straightforward.

This Privacy Notice explains what information we collect when you shop with us (in-store, online, over the phone and via our app), how we use it, and the choices you have about your data. We've designed it to be transparent about our practices and to empower you to make informed decisions.

Your trust is important to us. So, whether you're browsing our website, scrolling our app, trying on clothes in our stores, or joining our mailing list, we want you to feel confident about how we protect and respect your privacy.

Let's dive in and explore how we're committed to safeguarding your personal data while delivering the stylish experience you expect from AllSaints.


1. WHO WE ARE


ALL SAINTS RETAIL LIMITED of Units C15-C17 Jacks Place, 6 Corbet Place, London, E1 6NN, UK and its Affiliate companies are committed to protecting and respecting your privacy.

For the purpose of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 and any other applicable data privacy and protections laws, AllSaints is the data controller.

For the purposes of this Privacy Notice, "we", "our" and "us" refer to AllSaints, and "you", "your" "user," mean users of the Services. “Affiliates” means entities directly or indirectly controlled by or under common control with us.

Our "Services" refer to all the ways you can interact with AllSaints, including:

  • Our physical retail stores
  • Our UK facing website located at www.allsaints.com (“Site”)
  • Our mobile applications ("App")
  • Our virtual shopping
  • Any other services we may offer that link to this Privacy Notice

2. ABOUT THIS PRIVACY NOTICE


This Privacy Notice applies to the personal data we collect in connection with our Services and outlines the personal data we collect about you, how we use it, with whom we share it and the rights you have regarding our use of your personal data. This applies to our UK based customers when using our Services, meaning our physical stores, Site, App and any other services we may offer that link to this Privacy Notice).

Customers from the rest of the world, please refer to your local website at: www.allsaints.com/ ; www.allsaints.com/us/ ; www.allsaints.com/row/ ; www.allsaints.com/de/ ; and www.allsaints.fr

This Privacy Notice should be read along with our Terms and Conditions, Terms of Site Use, and Cookie Policy.

It's important that you provide accurate, complete information and keep it updated. Please inform us of any changes to your personal data.

We may update this Privacy Notice periodically. The "Last Update" date at the top will indicate the date of any changes. For significant updates, we'll notify you via email where possible.

3. WHAT PERSONAL DATA DO WE COLLECT AND HOW WE USE IT


At AllSaints, we collect and use your personal data to provide you with the best shopping experience, online, in-store or over the phone. We're committed to transparency and want you to understand how we handle your personal data.

We primarily collect personal data for processing orders, improving our services, ensuring security, and marketing our products. We always have a legal basis for processing your data, whether it's to fulfil our contract with you, comply with legal obligations, pursue our legitimate interests, or with your consent.

Generally, we do not rely on consent as a legal basis for processing your personal data. However, we will obtain your specific consent before sending direct marketing communications to you via email or text message. You can withdraw consent to marketing at any time by contacting us.

We may use the information you give to us to influence our broader product decisions in the future, including product designs and inventory.

For more details on specific types of data and how we use them, please review each category below:

Shopping With Us (Online, In-Store, Over the Phone and via App)

What we collect:
  • Contact details (salutation, first and last name, email address)
  • Delivery and billing addresses
  • Payment card details
  • Account details (including site login information)
  • Purchase history
How we use it:
  • To process orders and ensure correct delivery
  • To manage accounts and provide access to purchase history
  • To communicate with you about your order
  • To provide customer service
Legal basis: Primarily to fulfil our agreement with you when you make a purchase or use our services.



In-Store Experience and Security

What we collect:
  • CCTV footage
  • Age verification documents (when required)
  • Copy of identity documents (including full name, address, date and place of birth, gender, and nationality)
How we use it:
  • To ensure store security and safety
  • To prevent and detect crime
  • To comply with age-restricted sales regulations
Legal basis: Legitimate interests and legal obligations



Website and App Functionality

What we collect:
  • Browsing data (products viewed or searched for)
  • Device information (browser type and version, operating system, platform)
  • App usage data
  • IP address
  • URL clickstream, page interaction information
  • Page response times, download errors, length of visits
How we use it:
  • To improve user experience and Site/App performance
  • To provide personalised features and product suggestions
  • To secure user accounts and prevent unauthorized access
  • To detect and prevent potential fraud
  • To understand how you navigate our website/app and improve your experience
Legal basis: Legitimate interests



App-Specific Features

What we collect:
  • Location data (if permitted)
  • Device information
How we use it:
  • To provide location-based services
  • To enable push notifications (with your permission)
  • To optimise app performance
Legal basis: Consent for location services and push notifications, legitimate interests for app optimisation



Customer Service Improvement

What we collect:
  • Phone numbers used to call Customer Experience
  • Call recordings
  • Customer service interactions via app and Site
How we use it:
  • To enhance our customer service quality
  • For security purposes
  • To improve the services we provide to you
Legal basis: Legitimate interests



Marketing and Business Data Usage

We may use your data to determine what we think you want or need or what may interest you. This is how we decide which products, services, and offers may be relevant to you. If you have requested to be informed or used our Services and have not opted out of receiving that marketing, you will receive marketing communications.

What we collect:
  • Contact details
  • Purchase history
  • Site and App interaction data
  • Gender information
How we use it:
  • To send you marketing communications and promotional offers
  • To administer competitions or promotions you enter into
  • To inform you about stock availability of products you're interested in
  • To remind you about items in your abandoned online basket
  • To conduct market research to improve our products and services
  • To create individual profiles to understand and respect your preferences
  • To personalise your experience on our digital platforms (Site and App)
  • To tailor communications we send you based on your preferences and behaviour
  • For profiling, segmentation, testing, and analysis of customer data
  • For social media targeting and displaying personalized ads on social platforms
  • To track your activity on our digital platforms
  • To improve our products and services based on customer data and trends
  • To measure the effectiveness of our marketing campaigns and promotions
  • To provide personalized product recommendations
  • To gather feedback on your shopping experience and customer satisfaction
  • To inform the development of new products or services
Special note on Social Media Advertising:
We may also participate in services like Facebook's Custom Audience service from time to time. This service enables us to display to you personalised advertisements when you visit Facebook’s social media platforms. It works by converting your email address to a unique number that Facebook uses to match to unique numbers that Facebook generates from email addresses of its users. Where we use Facebook Custom Audiences, we will only include you if you have consented to receive marketing from us.

Legal basis: We process this data based on your consent (where required) or our legitimate interests in promoting our business and improving our services. As applicable, you have the right to object to this processing or withdraw your consent at any time, as detailed in our 'Your Choices' section.


4. YOUR CHOICES AND CONTROL


We strive to provide you with choices regarding certain personal data uses, particularly marketing and advertising. You can also opt out of marketing communications by following the instructions in any marketing email you receive or by logging into your online account and clicking ‘My Account’ under ‘My Preferences’.

Please note that if you do opt-out, it may take a few days to process your request, and you may continue to receive promotional or marketing materials during this time. Opting out will not prevent us from sending you other non-promotional messages, such as emails confirming transactions or abandoned basket emails.


5. WHEN PERSONAL DATA IS REQUIRED FOR OUR SERVICES


Where we need to collect personal data to comply with legal requirements or to fulfil our contractual obligations to you, and you choose not to provide that data when requested, we may be unable to provide the product or Service that you’ve asked for. For example, if we can't verify your identity or delivery address, we may not be able to complete your order. If this situation arises, we'll explain the issue to you at the time and discuss alternative options. In some cases, we may have no other option but to cancel an order or Service you have with us, but we will notify you if this is the case at the time.


6. HOW WE SHARE YOUR PERSONAL DATA


We share the information we collect about you with various parties for different purposes, as outlined below:

How we use it:
  • Affiliates, business partners, suppliers, sub-contractors, marketers, advertisers and advertising networks To send you marketing communications and promotional offers
  • Advertisers and advertising networks to serve ads or adverts that may interest you or for data analytics that assist in the improvement and optimisation of products, Services and the Site.
  • Courier companies for purchase delivery.
  • Payment management companies to enable them to verify your credit or debit card details.
  • App service providers that help us deliver the App.
  • Discount scheme facilitators that facilitate such discount schemes, provided you have previously registered with them.
  • Customer service management software that is designed to improve and manage our interaction with customers and your customer service experience.
  • Analytics and search engine providers to assist us in the improvement and optimisation of our products, Sites and Services.
  • Marketing support partners to assist us with our marketing efforts.
  • Customer surveys service providers which we may employ to assist us in carrying out and then analysing the results of customer surveys or questionnaires.
  • If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, subpoena or court order or in order to enforce or apply our Terms and Conditions of Website Use or our Terms and Conditions of Supply and other agreements.
  • If we believe in good faith that the disclosure of information is necessary to prevent imminent physical harm or financial loss to you or us; prevent or report suspected illegal activity; protect anyone's rights, property, or safety.

Additional third parties may include goodwill providers, legal insurers and selected third-party vendors who help us to operate our website and our business.


7. HOW LONG WE KEEP YOUR PERSONAL DATA


We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

In some circumstances we will anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.

If you would like more detailed information about our specific data retention periods, please contact us using the information provided in the "Contact Us" section. We will be happy to provide you with further details.


8. ALLSAINTS APP


All transactions are secured within the App—an SSL encryption system protects your personal and payment data. All payment details are encrypted with our payment provider, and you can secure any saved card details using your fingerprint with Apple Touch ID (using iPhone 5s or later) or with facial recognition using Face ID (using iPhone X or later).

When using the card scanning feature, we do not store photos of your card. We simply read the card details required for payment. The image is not saved and is deleted immediately after use.


9. COOKIES


In common with many other website and app operators, we use standard technology called 'cookies' on our website. Cookies are small pieces of information that are stored by your browser; they are used to record how you navigate the Site on each visit.

For further, more detailed information on how we use cookies, please refer to our Cookie Policy which you can read here.


10. WHERE WE STORE YOUR PERSONAL DATA


We may transfer, store, and process your personal data outside the UK, including to countries not deemed to provide an "adequate" level of data protection by the UK government. This includes processing by our staff, suppliers, business partners, or Affiliates in countries outside the UK. Such parties may be engaged in, among other things, the fulfilment of your order, the processing of your payment details and the provision of support services.

For these international transfers, we may transfer your data to countries deemed "adequate" by the UK's Secretary of State without additional safeguards.

For international transfer to a country without “adequate” status, we will implement the necessary safeguards to protect personal data as required under UK data protection law. Such safeguards may include “Standard Contractual Clauses” (SCCs) that require the person receiving the personal data to protect the personal data to a high standard, and any other necessary technical or organisational safeguards.



11. THIRD PARTY SITES


Our Services may contain links to other sites, such as social networking platforms. We do not endorse and are not responsible for the privacy practices of other sites and that the Privacy Notice presented here does not apply to such sites. If you have any questions about third parties' data practices, please consult those companies' privacy policies.


12. SECURITY


We use technical and organisational security measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. All information you provide to us is stored on secure servers. Any payment transactions will be encrypted using SSL/TLS technology and card data are processed by PCI compliant payment providers. However, no method of transmission over the internet or electronic storage is 100% secure, so we cannot guarantee absolute security.

You can help protect your online personal data by following these safety tips:

  • Always log out and close the browser when you complete an online session, if using a public computer.
  • Keep passwords private – remember, anybody who knows your password could Access your account.
  • Use a combination of letter and numbers when creating a password – do not use dictionary words, your name, email address or other personal data that can be easily obtained.
  • Frequently change your password.
  • Avoid using the same password for multiple online accounts.
  • Use virus protection software and keep it up to date,
  • Notify us immediately if there has been, or you suspect there has been, Unauthorised use of your password or account.

Where we have given you (or where you have chosen) a password which enables you to access certain parts of our Site or our App, you are responsible for keeping this password confidential. You must not share your password with anyone.


13. PROTECTION OF CHILDREN’S PRIVACY

Our Services are intended for individuals aged 18 and over. We do not knowingly collect or process personal data from children under 18. If you are under 18, please do not use our Services or provide any personal information to us.

If you are a parent or guardian and believe we may have inadvertently collected personal data from a child under your care, please contact us immediately (see our “Contact” section below). We will promptly investigate and, if appropriate, delete any such information.

We encourage parents and guardians to monitor their children's internet usage and to help enforce our Privacy Notice by instructing their children never to provide personal data through our Services without their permission.


14. YOUR PRIVACY RIGHTS

Under UK data protection law, you have several important rights regarding your personal data:

  • Access: Request a copy of your personal data and information about how we use it.
  • Correction: Ask us to correct any inaccurate data we hold about you.
  • Erasure: In certain circumstances, request that we delete your personal data.
  • Object: Object to our processing of your data, particularly for direct marketing.
  • Restrict processing: Ask us to temporarily limit how we use your data in specific situations (e.g., while we verify its accuracy).
  • Data portability: Where technically feasible, request a copy of your data in a structured, machine-readable format.
  • Withdraw consent: If we're relying on your consent to process your data, withdraw it at any time.

You also have rights relating to automated decision-making and profiling:

  • Human intervention: Contest any automated decisions that significantly affect you and request human review. This applies to decisions made by an automated system without human involvement that affect your legal rights or other important matters. We only make such decisions, when necessary, under a contract with you, when permitted by law, or with your explicit consent. In these cases, you can challenge the decision and request an explanation.

Additionally, you have the right to lodge a complaint with a supervisory authority if you believe your data protection rights have been violated. For the UK, the authority is the Information Commissioner:

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

You can also contact the Information Commissioner’s Office using their online form: https://ico.org.uk/concerns/handling/

To exercise these rights or learn more, please contact us (see refer to our “Contact” section below).

While we aim to fulfil all requests, we may need to:

  • Verify your identity to protect your data
  • Ask for more information to process your request
  • Explain if we can't fully comply due to legal obligations or legitimate business interests

    • In some cases, legal exemptions may prevent us from fulfilling your request. We'll always explain the reasons if this happens.


15. CONTACT


If you would like to find out more about this Privacy Notice, any of your rights or exercise your rights, please email us at ask@allsaints.com.

If you are a current or former employee and would like to find out more about your rights or exercise your rights, please contact us at hr@allsaints.com.

If you wish to opt out of receiving marketing and advertising communications from our business partners or Affiliates (and their business partners), you must follow the opt-out instructions in each Affiliate’s communication or applicable privacy notice.

Alternatively, you can write to us:
ALL SAINTS RETAIL LIMITED
Units C15-C17 Jacks Place,
6 Corbet Place,
CLondon
E1 6NN
UK
Or contact us at legal@allsaints.com.

You can also contact AllSaints' Data Protection Officer, HewardMills Ltd., at:
Telephone: +44 (0) 204 540 5853
Email: dpo@hewardmills.com
Address: 77 Farringdon Road, London, EC1M 3JU

Feel free to reach out to our Data Protection Officer for assistance with any data protection issues or to exercise your rights under the UK GDPR.


16. CHANGES TO OUR PRIVACY NOTICE


This Privacy Notice was lasted updated on 15 July 2024.

We regularly review and update our Privacy Notice to ensure it accurately reflects our data practices and complies with current legislation. Any future changes will be posted on this page, with the 'Last updated' date revised accordingly.

We encourage you to review this Privacy Notice periodically to stay informed about how we protect your personal data. If we make significant changes that materially affect your privacy rights, we will provide a more prominent notice and, in some cases, email notification of these changes.

United Kingdom United States Albania Algeria American Samoa Andorra Angola Anguilla Antigua and Barbuda Argentina Armenia Aruba Australia Austria Azerbaijan Bahamas Bangladesh Barbados Belgium Belize Benin Bermuda Bhutan Bolivia Bonaire, Saint Eustatius and Saba Bosnia and Herzegovina Botswana Brazil British Virgin Islands Brunei Darussalam Bulgaria Cambodia Cameroon Canada Cape Verde Cayman Islands Chad Chile Colombia Comoros Cook Islands Costa Rica Cote D'Ivoire (Ivory Coast) Croatia Curacao Cyprus Czech Republic Denmark Djibouti Dominica Dominican Republic East Timor Ecuador Egypt El Salvador Equatorial Guinea Estonia Ethiopia Falkland Islands Faroe Islands Fiji Finland France French Guiana French Polynesia Gabon Gambia Georgia Germany Ghana Gibraltar Greece Greenland Grenada Guadeloupe Guam Guatemala Guernsey Guinea Guinea-Bissau Guyana Honduras Hungary Iceland India Indonesia Ireland (Republic of) Isle of Man Israel Italy Jamaica Jersey Kazakhstan Kenya Kiribati Kyrgyzstan Laos Latvia Lesotho Liechtenstein Lithuania Luxembourg Macau Madagascar Malawi Malaysia Maldives Malta Marshall Islands Martinique Mauritania Mauritius Mayotte Mexico Micronesia Moldova Monaco Mongolia Montenegro Montserrat Morocco Mozambique Namibia Nauru Nepal Netherlands Netherlands Antilles New Caledonia New Zealand Nicaragua Nigeria Niue North Macedonia Northern Mariana Islands Norway Oman Pakistan Palau Panama Papua New Guinea Paraguay Peru Philippines Poland Portugal Puerto Rico Reunion Romania Rwanda Saint Kitts and Nevis Saint Lucia Saint Vincent & the Grenadines Samoa San Marino Senegal Serbia Seychelles Sierra Leone Singapore Slovak Republic Slovenia Solomon Islands South Africa Spain Sri Lanka St Barthelemy St Martin Suriname Swaziland Sweden Switzerland Tanzania Thailand Togo Tonga Trinidad and Tobago Tunisia Turkey Turkmenistan Turks and Caicos Islands Tuvalu Uganda Uruguay Uzbekistan Vanuatu Vatican City State (Holy See) Venezuela Vietnam Virgin Islands (U.S.) Wallis and Futuna Islands Zambia Japan Korea