Payment Security Policy & GDPR

GDPR - General Data Protection Regulations

The new GDPR regulations means that you can control how we collect, use and store your personal data.

To allow you this to happen we:

  • Always ask for your permission when it comes to using your personal information.
  • We want to personalise our product recommendations to make shopping easier and to tell you about promotions, collecting your personal information helps us do this;
  • For us to have your order made we may have to give your personal information to a third party to complete your order eg - companies we use to produce our products,couriers for delivering products etc.
  • We keep your personal information safe by take steps to make sure it's protected & you can how we do this below.
  • As a payment service provider (PSP), thousands of businesses outsource their transaction security to us. It is our top priority to ensure that your customers’ transaction data is kept secure at all times.

Transaction security

All transaction information passed between merchant sites and Sage Pay’s systems is encrypted using 128-bit SSL certificates. No cardholder information is ever passed unencrypted and any messages sent to your servers from Sage Pay are signed using MD5 hashing to prevent tampering. You can be completely assured that nothing you pass to Sage Pay’s servers can be examined, used or modified by any third parties attempting to gain access to sensitive information.

Encryption and Data Storage

Once on our systems, all sensitive data is secured using the same internationally recognised 256-bit encryption standards used by, among others, the US Government. The encryption keys are held on state-of-the-art, tamper proof systems in the same family as those used to secure VeriSign's Global Root certificate, making them all but impossible to extract. The data we hold is extremely secure and we are regularly audited by the banks and banking authorities to ensure it remains so.

System security

Sage Pay’s systems are scanned quarterly by Trustwave which are an independent Qualified Security Assessor (QSA) and an Approved Scanning Vendor (ASV) for the payment card brands.

Sage pay is also audited annually under the Payment Card Industry Data Security Standards (PCI DSS) and is a fully approved Level 1 payment services provider, which is the highest level of compliance. We are also active members of the PCI Security Standards Council (SSC) that defines card industry global regulation.

Links to banks

Sage Pay has multiple private links into the banking network that are completely separate from the Internet and which do not cross any publicly accessible networks. Any cardholder information sent to the banks and any authorisation message coming back is secure and cannot be tampered with.

Internal security

Sage Pay is controlled by Iris Scanners, which are the latest and most precise biometric security devices available for identification. As used by; chemical plants, airports, police stations, prisons and other facilities where security is paramount. No one can enter or leave the building without a valid security pass.

Staff validation

All employees at Sage Pay are Criminal Records Bureau (CRB) checked prior to employment and no unauthorized individual has access to or is able to decrypt transaction information or cardholder data. Our systems only allow access to our most senior staff and only in extenuating circumstances (such as investigations of Card Fraud by the Police). All transaction information and customer card information is secure even from our own employees.

Disaster recovery

Sage Pay operates on twin data centres to ensure optimal system security and up-time and has a full disaster recovery and business continuation policy.


Privacy Policy

Please take a moment to read this Privacy Policy carefully and check it periodically since it may change from time to time.

At Aye Do we respect that customers value their privacy and security of their data and therefore we take this very seriously. Our policy details how we have taken steps to ensure that we fully comply with the guidelines set out by the UK Data Protection Law. The Aye Do Ltd websites contain links to a number of independent sites, please be aware that our privacy policy does not extend to any of those sites.

Aye Do Ltd are committed to safeguarding your privacy online. We will only share your personal information, if requested, in accordance with the UK Data Protection Act and other applicable laws. We confirm the personal information given to us during the purpose of processing your order via e-mail or telephone is never provided to third parties (excluding our Seller Partners*). We are happy to answer any security or privacy questions you may have to view personal information you have given us and make any correction if necessary.

The use of our Aye Do Ltd websites and any subsequent disclosure of personal information via our websites signify your implied consent for us to lawfully collect and use personal information about you in accordance with this Privacy Policy.

* Please refer to our terms and conditions for further information regarding our Seller Partners.

What information is collected by Aye Do Ltd & how will it be used?

At the point when a customer or Seller Partners register with Aye Do Ltd, normally via any of our website, we will ask you to provide information such as your name, postal address, and contact details including a valid e-mail address. All of the aforementioned personal data is then kept by us. The reason for us recording such information is simply to help us recognise you as a registered customer, pass on the correct details with your order, and of course most importantly, to ensure that you are happy with the goods and service you receive from us.

In addition to this we will also maintain a record of any purchases you make directly from us or products / services purchased from any of our Seller Partners. This enables us and in some instances our Seller Partners to deal quickly and efficiently with any queries or problems you may have. We keep a record of any e-mail correspondence you send us, so we can track any problems or concerns you have had with any of our Seller Partners.

All of the above personal data will also be held to help us ensure that any future information we send to you is relevant and appropriate for you.

If you would like a copy of any information we have about you, or to amend any inaccuracies, please contact us by e-mail

Aye Do Ltd is committed to providing high standards of personal service matched with equally high quality goods and services. We are always looking at ways to improve what we do for you and as such we will use the information collected via our websites or through written contact with you review and improve the goods and services we offer you.

Aye Do Ltd will keep your personal information safe under the UK Data Protection Law and will not pass your information to Third Parties (excluding our Seller Partners) unless:

  • Our business assets are ever sold to or purchased by another company including all data records. In this case we will endeavour to send notice to customers (via e-mail of website notification) of any such event and we encourage the new company to follow the practices disclosed in our Privacy Policy.
  • We are requested by the police or government / regulatory authority to provide information required by them to assist in an investigating of illegal activities.

As stated previously at Aye Do Ltd we take the protection of your information very seriously. In our commitment to protect your privacy and data security we promise to only use your personal information:

  • To enable the fulfilment of your orders by your chosen Seller Partners we will forward your information to Seller Partners so they can supply products and services to you and complete customer order requirements.
  • All payment methods and credit card information details will be verified.
  • For the purpose of our own market research we test customers' shopping habits, including information of products sold.
  • Administration of our website.
  • Informing you of our goods and services we offer including offers and news from or about Aye Do Ltd and our Seller Partners.


The protection of our customer data & information

The worldwide web (Internet) has grown dramatically and therefore when using Aye Do Ltd websites you are authorising us to process your data via the internet and acknowledge that it is possible for your data to travel internationally, which may include places outside the European Union. Aye Do Ltd can not be held responsible for any damages which you, or others, may suffer as a result of the loss of confidentiality of such information as it is widely recognised that the Internet is not a 100% secure communication vehicle and as such we are sure that you will appreciate that we cannot guarantee the security of any information you send to us (or we send to you) via the Internet.

At Aye Do Ltd we take the safe keeping of your personal data very seriously and as such endeavour to take every precaution to protect your information. All personal information stored by us is kept in a secure environment on our server. Access to the data is restricted to our employees, our Seller Partners and any sub-contractors who require the information for a specific job are granted access to our personal data.


Do we use cookies?

Yes (Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your Web browser (if you allow) that enables the sites or service providers systems to recognise your browser and capture and remember certain information

The table below explains the cookies we use on our website and the reasons why:

Cookie Name Purpose
Google Analytics _utma

These cookies are used to collect information about how visitors use our site. We use the information to compile reports and to help us improve the site.

The cookies collect information in an anonymous form, including the number of visitors to our website, where visitors have come to the site from and the pages they visited.

SHOP_SESSION_TOKEN SHOP_SESSION_TOKEN This cookie is used to track your visit whilst using our website, we keep this cookie in place for 1 week so if you add a product to the basket, it will be available when you return to our website


Amendments to the Aye Do Ltd Privacy Policy

Aye Do Ltd takes care to ensure that its Privacy Policy is correct and as such we reserve the right to amend our privacy policy from time to time. Aye Do Ltd will ensure that any changes reflect the guidelines of all relevant legislation of our websites.

As advised previously, in order to facilitate an order placed with a Seller Partner via our websites your personal details that you submit must be forwarded along with the order. All of our Seller Partners are bound by the same UK Data Protection legislation as Aye Do Ltd. However Aye Do Ltd are not responsible for the privacy policies of any Seller Partner nor that they comply with UK data protection legislation. Aye Do Ltd can not be held responsible for any damages which you or others may suffer as a result of the loss of confidentiality of such information with this in mind you may wish to verify their privacy policy directly with them.


Further Information

We are happy to answer any queries you may have and as such if you have questions about our privacy policy, please email .

<style> /* Hide saving price on the product page */ .price-section--saving {display: none !important;} /* Hide rating */ .productView-rating {display: none !important;}