Privacy Policy

This privacy policy sets out how we, NAF! Stuff, use and protect any information that you give us when you use this website.
We are committed to ensuring that your privacy is protected. Should we ask you to provide certain information by which you can be identified when using this website, you can be assured that it will be used only in accordance with this privacy policy.
This policy will explain areas of this website that may affect your privacy and personal details, how we process, collect, manage and store those details and how your rights under the GDPR (General Data Protection Regulation) and the PECR (Privacy and Electronic Communications Regulations) are adhered to.
We may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes.



We may collect the following information:

  • Your name
  • Contact information including email address and phone number
  • When you make a purchase or attempt to make a purchase through the Site, we collect certain information from you, including your name, billing address, shipping address, payment information (including credit card numbers, Apple Pay, Android Pay, Paypal) email address, and phone number. We refer to this information as “Order Information.”
  • Demographic information such as postcode
  • Other information relevant to enquiries made through our site



We require this information to understand your needs and provide you with a better service, and in particular for the following reasons:

  • To process orders;
  • Internal record keeping;
  • We may use the information to improve our services;
  • Where we have clearly stated and made you aware of the fact, and where you have given your express permission, except for where we have legitimate interests in doing so, we may use your details to send you information related to our services/products through a mailing list system. This is done in accordance with the regulations named above.


We are committed to ensuring that your information is secure. For this purpose, we will not hold your personal data for any longer than is reasonable. Further, we have taken reasonable steps to protect your information against unauthorised access and against unlawful processing, accidental loss, damage and destruction. Nevertheless, any personal data submitted by you is at your own risk.
We will not transfer your personal details to any third party for the purpose of direct marketing without your permission. We use certain third-party service providers who may have access to your personal data so that they can provide services to us. When this occurs, we have a data protection compliant contract in place with these third parties.


You have the following rights in relation to your information which you can exercise by emailing

  • To be informed of how your personal data will be used before it is collected.
  • To modify or withdraw your personal information at any time
  • To access your personal data and gain information on how it is used after it has been gathered.
  • To have personal data corrected if it is incomplete, inaccurate or out of date.
  • To request the removal or deletion of personal data where there is no compelling reason for its continued processing.
  • To restrict processing of your personal data.
  • To data portability – having your data moved, copied or transferred from NAF! to another organisation in an easily readable format.
  • To object to direct marketing from us.



To object us using your information for direct marketing.

You can exercise this right by:
clicking the unsubscribe link contained at the bottom of any marketing email we send to you and following the instructions which appear in your browser following your clicking on that link.


We do not knowingly or intentionally collect sensitive personal information you and you must not submit sensitive personal information to us.


We may update and amend our Privacy Policy from time to time.

Minor changes to our Privacy Policy:
Where we make minor changes to the Privacy Policy, we will update the effective date stated at the beginning.

Major changes to our Privacy Policy or the purposes for which we process your information:
If we make major changes to our Privacy Policy or intend to use your information for a new/different purpose than that of which we originally collected it for, we will notify you by email or by posting a notice on our website. We will provide you with all the information about said change, purpose of change and any other relevant information.

When required we will receive your consent prior to making the change. 

NAF!  Stuff does not collect the personal data of children under the age of 13 without parental or guardian consent. If you believe that we hold any information from or about a child under age 13, please contact NAF! and if we cannot immediately obtain parental or guardian consent, we will remove the personal data from storage.

This website uses cookies to better understand the users’ experience while visiting the website. Cookies are small files saved to the user’s computer’s hard drive that track, save and store information about the user’s interactions and usage of the website. This allows the website, through its server, to provide the users with a tailored experience within this website.
Users are advised that if they wish to deny the use and saving of cookies from this website onto their computer’s hard drive they should take necessary steps within their web browser’s security settings to block all cookies from this website and its external serving vendors or use the cookie control system if available upon their first visit.



We use Google Analytics software to collect information about how you use this website. We do this to help make sure the site is meeting the needs of its users and to help us make improvements.
Google Analytics stores information about:

  • the pages you visit
  • how long you spend on each page
  • how you got to the site
  • what you click on while you’re visiting the site

We don’t collect or store your personal information (for example your name or address) so this information can’t be used to identify who you are. We don’t allow Google to use or share our analytics data.

Google’s privacy policy:- Universal Analytics

Name   Purpose   Expires
_ga This helps us count how many people visit the site by tracking if you’ve visited before   2 years
_gid This helps us count how many people visit the site by tracking if you’ve visited before   24 hours
_gat Used to manage the rate at which page view requests are made   10 minutes
Name   Purpose   Expires
_utma Like _ga, this lets us know if you’ve visited before, so we can count how many of our visitors are new to the site or to a certain page   2 years
_utmb This works with _utmc to calculate the average length of time you spend on the site   30 minutes
_utmc This works with _utmb to calculate when you close your browser   When you close your browser
_utmz This tells us how you reached the site (for example from another website or a search engine)   6 months



We operate an email mailing list program, used to inform subscribers about relevant legal sector and digital marketing insights and news. Users can subscribe through an online automated process. Subscriber personal details are collected, processed, managed and stored in accordance with the regulations named in this policy. Subscribers can unsubscribe at any time via the footer of sent marketing messages.
Email marketing messages may contain tracking beacons / tracked clickable links or similar server technologies in order to track subscriber activity within email marketing messages.
Where used, such marketing messages may record a range of subscriber data relating to engagement and already stored subscriber data.
Our email marketing service provider is Mailchimp and you can read their privacy policy here:



We use Shopify to power our online store--you can read more about how Shopify uses your Personal Information here: 


We use telephone tracking numbers to link a user’s call to the marketing channel that they originated from. This is done using cookies - you can choose to decline cookies, as explained above, if you would prefer not to be tracked. The following cookies are set for this purpose:-

Name Purpose   Expires
ictf_master Unique Visitor Ref - Stores the unique Visitor Reference; One of the cookies used to track phone calls for the purpose of linking a user’s call to the marketing channel that they originated from.   10 years
ictf_il2295 Contains per Installation tracking source cache; One of the cookies used to track phone calls for the purpose of linking a user’s call to the marketing channel that they originated from.   10 years
ictf_in2295 Contains per Installation number replacement source cache; One of the cookies used to track phone calls for the purpose of linking a user’s call to the marketing channel that they originated from.   10 years
ict_0 Contains 3rd party tracking and number replacement source cache; One of the cookies used to track phone calls for the purpose of linking a user’s call to the marketing channel that they originated from. 10 years
ict_master Unique Visitor Ref - Stores the unique Visitor Reference;One of the cookies used to track phone calls for the purpose of linking a user’s call to the marketing channel that they originated from.  10 years



We use Google reCAPTCHA on our site to reduce spam, with the following cookies being set:-

Name Purpose Expires
  These are essential site cookies, used by the google reCAPTCHA to reduce spam on our site. These cookies use an unique identifier for tracking purposes.  
HSID When you close your browser



Any downloadable documents, files or media made available on this website are provided to users at their own risk. While all precautions have been undertaken to ensure only genuine downloads are available, users are advised to verify their authenticity using third party antivirus software or similar applications.

We accept no responsibility for third party downloads and downloads provided by external third-party websites and advise users to verify their authenticity using third party antivirus software or similar applications.


Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website.

Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy policy. You should exercise caution and look at the appropriate privacy policy applicable to the relevant website being used.


While we may have official profiles on social media platforms, users are advised to verify authenticity of such profiles before engaging with, or sharing information with such profiles. We will never ask for user passwords or personal details on social media platforms. Users are advised to conduct themselves appropriately when engaging with us on social media.
There may be instances where our website features social sharing buttons, which help share web content directly from web pages to the respective social media platforms. You use social sharing buttons at your own discretion and accept that doing so may publish content to your social media profile feed or page. You can find further information about some social media privacy and usage policies in the resources section below.


If you have any queries in relation to the above please do not hesitate to contact us through any of the contact methods on our site.


Overview of the General Data Protection Regulation (GDPR)
Data Protection Act (DPA)1998
Privacy and Electronic Communications Regulations (PECR) 2003
The Guide to the PECR 2003
Twitter Privacy Policy
Facebook Privacy Policy
Google Privacy Policy
LinkedIn Privacy Policy
Shopify Privacy Policy



House of NAF! Ltd (SC643083)
19 Elmbank Street 
G2 4PB

Data Protection Commissioner Information

Commissioner’s Office
Wycliffe House
Water Lane, Wilmslow
+ 44 (0) 303 123 1113


House of NAF! Limited. Data Protection Officer / GDPR Owner

Tammy Koslowski
19 Elmbank Street 
G2 4PB
0141 258 7676