Rebecca Coleman Rebecca Coleman Green Man icon Green Man icon

Privacy policy


This policy is designed to be compliant with Article 30 of the General Data Protection Regulations (GDPR). If you have any questions or concerns, please contact us by sending an email to .

Who are we?

Rebecca Coleman Art is a general partnership established under the law of England and Wales. It is comprised of two partners: Rebecca Coleman and Stuart Benjamin. Its registered address and other contact details are as shown on the following page: contact details.

Under GDPR, Rebecca Coleman Art is a controller, in that it determines the purposes and means of processing personal data.

Personal data

We collect personal data in several ways, for different purposes, as set out in the tables below:

Explanation of terms used
Data What kinds of data we hold which could potentially be used to identify an individual
Reason What we use this data for
Receiving Organisations from which we receive this data
Sharing Organisations with which we may share this data
Rights How to ask for this data not to be collected, or for your data to be deleted from our records

1. Customers purchasing artwork from this website

Data Name, address, email address, telephone number
Reason 1. To fulfil a contract: So that we can send you the artwork you have purchased, and contact you about your purchase
2. To fulfil our legal obligations: to retain business records, including details of all sales and income, and documentary evidence including sales invoices, for UK tax purposes
Receiving You will submit your personal information directly to one of our online payments processors, Stripe Payments Europe Limited or PayPal (Europe) S.a.r.l. et Cie, S.C.A., and we will receive it from them. Please note that these companies do not pass your payment details to us. Stripe's privacy policy is available here: https://stripe.com/en-gb/privacy Paypal's privacy policy is available here: https://www.paypal.com/uk/webapps/mpp/ua/privacy-full
Sharing In some circumstances — for example if you pay in person or by telephone — we will share your data with our card processing provider, SumUp. Their privacy policy is available here: https://sumup.co.uk/privacy
In all other cases we will not share this information with anyone, other than HMRC if so required
Rights We cannot delete information that we have a legal obligation to retain, unless such time has elapsed as prescribed in law. This will normally be 5 years from 31 January following the year ending 5 April in which the sale was completed

2. Customers purchasing Rebecca's artwork via other sellers

Data Name, address, email address, telephone number
Reason 1. To fulfil a contract: So that we can send you the artwork you have purchased, and contact you about this particular transaction.
2. To fulfil our legal obligations: to retain business records, including details of all sales and income, and documentary evidence including sales invoices, for UK tax purposes
Receiving From any agent selling Rebecca's work
Sharing We will not share this information with anyone, other than HMRC if so required
Rights We cannot delete information that we have a legal obligation to retain, unless such time has elapsed as prescribed in law. This will normally be 5 years from 31 January following the year ending 5 April in which the sale was completed

3. Individuals who sign up to Rebecca's mailing list

Data Name and email address
Reason To send you occasional emails with information about Rebecca's artwork, events and other news.
Receiving The form on our website, which will direct you to Mailchimp (see below)
Sharing Mailchimp, our mailing list provider. Their privacy policy is here: https://mailchimp.com/legal/privacy
Rights You can unsubscribe at any time via links provided in all our emails, or via this link: unsubscribe

4. Website visitors

Data IP address
Reason To gather statistical information about visitors to this website, including the number of visitors, the most popular pages, approximate geographic location, and referrer.
Receiving Information is automatically transmitted when you request a web page, unless you have opted out (see below)
Sharing Google Analytics: their privacy policy is available here: https://policies.google.com/privacy
Rights You can prevent Google Analytics from collecting your data by following the instructions here: https://tools.google.com/dlpage/gaoptout

Security measures

We take the privacy of individuals' data very seriously, and we implement the following security measures to safeguard your data:

SSL (Secure Sockets Layer): This is the global standard security technology for establishing an encrypted link between a web server and a browser. This ensures that all data passed between the website and users remains private and secure. You can verify this by clicking on the green padlock icon in your browser window (it's usually at the top, next to the address bar).

Password protection: All personal data on the website is password protected. Passwords are stored in an encrypted form and transmitted only using SSL. Measures are in place to detect and block repeated incorrect password guesses, which prevents users' accounts being cracked by 'brute force' attacks.

We never see or store your payment details.

More questions?


Contact us via email:

Privacy policy last updated: 5 August 2021