Privacy Policy

Privacy Policy

M N House Wholesale (“we”, “us”, “our”) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, protect, and share your information when you visit mnhousewholesale.com, place an order, create an account, contact us, or use our services.

We take data protection, fraud prevention, cyber security, and customer privacy seriously. Due to the increasing risk of online fraud, hacking, identity misuse, payment fraud, delivery fraud, and unauthorised use of personal information, we may carry out reasonable checks to protect our customers, our business, and our website.

This Privacy Policy is designed to comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Nothing in this Privacy Policy affects your statutory rights.

Who We Are

Trading Name: M N House Wholesale
Company Legal Name: M N House Ltd
Registered in England & Wales: Company No. 09702224
Registered Address: 4 Dorchester Avenue, Harrow, England, HA2 7AZ
Website: mnhousewholesale.com

For privacy or data protection enquiries, please contact us at:

📧 Email: mnhouseltd@yahoo.com

What Information We Collect

We may collect personal data when you use our website, place an order, create an account, contact us, subscribe to marketing, or interact with our services.

Identity Data

This may include your name, job title, company name, account username, and customer account details.

Contact Data

This may include your billing address, delivery address, email address, telephone number, and any delivery instructions provided.

Financial Data

This may include payment-related information processed securely through Shopify Payments and other secure payment processors used through our Shopify checkout.

We do not store your full payment card details.

Transaction Data

This may include order details, products purchased, order history, invoices, payment status, delivery records, tracking details, refunds, returns, and customer service communication.

Technical Data

This may include your IP address, browser type, device type, operating system, login data, pages visited, time spent on site, referral source, approximate location data, and security logs.

Fraud Prevention & Security Data

To protect against fraud, hacking, cyber-attacks, identity misuse, payment fraud, delivery fraud, and unauthorised use of accounts, we may collect and process technical and security-related data, including:

  • IP address;
  • device information;
  • browser and operating system information;
  • order behaviour;
  • login activity;
  • payment risk indicators;
  • delivery address risk indicators;
  • failed payment attempts;
  • suspected fraudulent activity;
  • communication records;
  • security and website access logs.

Marketing Data

This may include your preferences for receiving marketing communications from us and your communication preferences.

How We Use Your Information

We use your personal data only where we have a lawful reason to do so.

Purpose Legal Basis
Processing and fulfilling your orders Contract performance
Sending order confirmations, invoices, and dispatch notifications Contract performance
Delivering goods to your chosen address Contract performance
Providing customer service and responding to enquiries Legitimate interests
Managing returns, refunds, replacements, shortages, and delivery claims Contract performance / Legitimate interests
Preventing fraud, hacking, misuse, and unauthorised access Legitimate interests / Legal obligation
Verifying suspicious orders, addresses, accounts, or payment activity Legitimate interests
Protecting our website, systems, customers, and business Legitimate interests
Maintaining security logs and fraud prevention records Legitimate interests / Legal obligation
Sending marketing emails where you have opted in Consent
Improving our website and customer experience Legitimate interests
Complying with tax, accounting, legal, and regulatory obligations Legal obligation

Fraud Prevention, Security Checks & Misuse of Details

Due to the risk of online fraud, hacking, identity theft, false claims, delivery fraud, and misuse of customer details, we reserve the right to carry out reasonable checks before accepting, processing, dispatching, refunding, or cancelling an order.

These checks may include reviewing:

  • billing and delivery address details;
  • contact details;
  • order value and order pattern;
  • payment risk indicators;
  • IP address and device information;
  • previous order history;
  • delivery claim history;
  • suspicious account activity;
  • courier tracking and proof of delivery;
  • communication records relating to the order.

Where we reasonably suspect fraud, misuse, unauthorised activity, payment risk, identity misuse, delivery fraud, or abuse of our policies, we may:

  • delay dispatch while checks are completed;
  • contact the customer for verification;
  • request additional information;
  • cancel the order;
  • refuse a refund where fraud or abuse is suspected;
  • restrict or suspend an account;
  • report suspected fraud to the payment provider, courier, police, fraud prevention agencies, or other relevant authorities where legally permitted or required.

We will only do this where we have a lawful basis and where it is necessary to protect our customers, our business, our website, and our legal rights.

Account Security

Customers are responsible for keeping their account login details, passwords, email accounts, and devices secure.

M N House Wholesale will not be responsible for unauthorised access to a customer account caused by:

  • weak passwords;
  • shared login details;
  • compromised customer email accounts;
  • hacked customer devices;
  • phishing scams;
  • customer failure to keep account details secure;
  • unauthorised use by someone with access to the customer’s device or email.

If you believe your account, email address, or order details have been compromised, you must contact us immediately.

We may suspend or restrict account access where we believe there is a security risk.

Payment Security

All payments are processed securely through Shopify Payments and other secure payment processors used through our Shopify checkout.

We do not store full payment card details on our systems.

Payment providers may carry out their own fraud prevention, identity verification, payment authentication, and risk checks. This may include checks such as 3D Secure, card verification, address verification, IP checks, and payment risk scoring.

We may refuse, cancel, or delay an order where payment appears suspicious, unauthorised, high-risk, or potentially fraudulent.

Delivery Fraud & False Claims

To protect our business and genuine customers, we may use courier tracking records, GPS delivery data, delivery photographs, signatures, safe-place confirmations, depot scans, delivery notes, and proof-of-delivery records to investigate delivery disputes.

Where a customer reports non-receipt, damage, missing items, or incorrect delivery, we may share relevant order and delivery information with couriers, payment providers, insurers, fraud prevention services, or authorities where necessary to investigate the claim.

We reserve the right to reject claims where evidence shows the order was delivered correctly, where false or misleading information is provided, or where fraud or abuse is reasonably suspected.

This does not affect your statutory rights.

Cookies

Our website uses cookies and similar technologies to improve your browsing experience, support website functionality, protect the website, understand how customers use our site, and provide relevant advertising where applicable.

Cookies are small text files placed on your device when you visit our website.

We may use the following types of cookies:

Essential Cookies

These are required for the website to function properly, including shopping basket functionality, checkout, login sessions, payment security, and fraud prevention.

Security Cookies

These may be used to detect suspicious activity, prevent unauthorised access, protect customer accounts, reduce fraud, and maintain website security.

Analytics Cookies

These help us understand how visitors use our website, such as which pages are visited and how customers interact with our site. For example, we may use Google Analytics or similar tools.

Marketing Cookies

These may be used to show relevant adverts or measure advertising performance through platforms such as Google Ads, Meta Pixel, or similar advertising services.

You can manage or disable non-essential cookies through the cookie banner on our website or through your browser settings.

Please note that disabling some cookies may affect website functionality, security, checkout, account access, or fraud prevention features.

Who We Share Your Data With

We do not sell your personal data.

We may share your personal data with trusted third parties only where necessary to operate our business, fulfil your order, protect against fraud, comply with the law, or provide our services.

This may include:

  • delivery couriers and pallet networks, including DPD, Royal Mail, Parcelforce, FedEx, DHL, Palletways, and other approved delivery partners;
  • payment processors, including Shopify Payments and other secure payment providers used through our Shopify checkout;
  • website and e-commerce platform providers, including Shopify;
  • fraud prevention, payment verification, and security service providers;
  • email marketing platforms, where you have opted in to marketing;
  • analytics providers, such as Google Analytics;
  • IT, hosting, website support, cybersecurity, and system protection providers;
  • accountancy, legal, insurance, and professional advisors;
  • HMRC, regulators, law enforcement, courts, fraud prevention agencies, or other authorities where legally required or reasonably necessary.

All third parties are expected to handle your personal data securely and in accordance with applicable data protection laws.

Data Security

We take reasonable technical and organisational measures to protect your personal data against:

  • unauthorised access;
  • hacking;
  • loss;
  • misuse;
  • alteration;
  • disclosure;
  • accidental deletion;
  • fraud;
  • identity misuse;
  • cyber-attacks.

These measures may include secure payment processing, access controls, password protection, system monitoring, fraud checks, security logs, encrypted services where applicable, and restricted access to customer information.

However, no website, system, email service, or online transmission can be guaranteed to be completely secure. Customers should take reasonable care to protect their own devices, email accounts, passwords, and login details.

Data Retention

We retain personal data only for as long as necessary for the purpose it was collected, including legal, tax, accounting, fraud prevention, security, dispute, and business record requirements.

Typical retention periods include:

Data Type Retention Period
Order and transaction records Up to 7 years for tax and accounting purposes
Customer service records As long as reasonably required to manage enquiries, claims, or disputes
Fraud prevention and security records As long as reasonably required to protect our business, customers, and legal rights
Marketing consent records Until you withdraw consent or unsubscribe
Website analytics data Typically up to 26 months, depending on system settings

We may retain certain information for longer where required by law, where a dispute is ongoing, where fraud is suspected, or where necessary to protect our legal rights.

Marketing Communications

If you have opted in to receive marketing emails from M N House Wholesale, we may send you product updates, offers, promotions, and service information.

You can unsubscribe at any time by clicking the “unsubscribe” link at the bottom of any marketing email or by contacting us directly.

📧 Email: mnhouseltd@yahoo.com

We will not send marketing emails unless we have a lawful basis to do so.

Your Rights

Under UK GDPR, you have the following rights:

  • the right to access the personal data we hold about you;
  • the right to correct inaccurate or incomplete personal data;
  • the right to request deletion of your personal data, subject to legal and business obligations;
  • the right to restrict how we process your personal data;
  • the right to object to processing based on legitimate interests;
  • the right to data portability, where applicable;
  • the right to withdraw consent at any time where processing is based on consent;
  • the right to lodge a complaint with the Information Commissioner’s Office.

To exercise any of these rights, please contact us at:

📧 Email: mnhouseltd@yahoo.com

We may need to verify your identity before processing your request. This is to protect your personal data and prevent unauthorised access, fraud, or misuse of your information.

We will respond to your request within the required legal timeframe, normally within one month.

When We May Refuse or Limit a Data Request

In some cases, we may be unable to fully comply with a request to delete, restrict, or disclose personal data where we are legally allowed or required to retain or protect certain information.

This may include where data is needed for:

  • tax and accounting records;
  • order and transaction records;
  • legal claims or disputes;
  • fraud prevention;
  • payment investigations;
  • delivery disputes;
  • security investigations;
  • compliance with legal obligations;
  • protection of our business or other customers.

Where this applies, we will explain the reason where legally permitted.

International Transfers

Some of our service providers may process data outside the United Kingdom.

Where this happens, we will take reasonable steps to ensure that appropriate safeguards are in place to protect your personal data in accordance with UK data protection laws.

Data Breaches

If we become aware of a personal data breach that is likely to result in a risk to your rights and freedoms, we will take appropriate steps in accordance with UK data protection law.

This may include investigating the issue, securing our systems, notifying affected individuals where required, and reporting the matter to the Information Commissioner’s Office where legally necessary.

Customer Responsibility

Customers must take reasonable steps to protect their own personal information, account access, email accounts, passwords, and devices.

Customers should not share account login details, order confirmation emails, tracking links, payment details, or personal information with unauthorised persons.

M N House Wholesale will not be responsible for loss, fraud, misuse, or unauthorised activity caused by a customer’s failure to protect their own information, device, email account, or login details.

Complaints

If you are unhappy with how we have handled your personal data, please contact us first so we can try to resolve the matter.

📧 Email: mnhouseltd@yahoo.com

You also have the right to lodge a complaint with the Information Commissioner’s Office, the UK’s data protection regulator.

🌐 Website: https://www.ico.org.uk
📞 Phone: 0303 123 1113

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our business, website, legal requirements, security practices, or data processing activities.

When we update this policy, we will update the date at the bottom of this page.

We encourage customers to review this Privacy Policy periodically.

Last Updated: 22 May 2026