Welcome to Mega Bargain Wholesale — where quality meets creativity Shop Now

Start typing and hit Enter

Shopping Cart

0

Your shopping bag is empty

Go to the shop
logo
image/svg+xml image/svg+xml 0
Close

Privacy policy

Scope 

This policy explains how we collect, use, share, secure and store personal data relating to: 

  • Visitors to our Site 

  • Trade customers and prospective customers (including their employees/representatives) 

  • Suppliers and business partners 

What data we collect 

We may collect and process the following categories: 

Identity & contact data – name, job title, business name, email, phone, billing/shipping addresses. 
 Account data – login, role/permissions, preferences. 
 Order & payment data – order history, invoices, VAT numbers, payment status. (Card data is processed by our payment processor; we do not store full card details.) 
 Communications – emails, chat messages, call notes. 
 Marketing data – newsletter opt-ins, campaign interactions. 
 Technical & usage data – IP address, device/browser, pages viewed, referral source, cookies, approximate location. 
 Supplier data – contact details, bank/payments info (for payables). 

If you provide data about others (e.g., a colleague for delivery), you confirm you have authority to do so. 

How we collect data 

  • Directly from you (account creation, checkout, forms, email, phone). 

  • Automatically via cookies/analytics when you use the Site. 

  • From third parties (credit/reference agencies, payment processors, delivery partners, public sources such as Companies House). 

Why we use your data (legal bases) 

We process personal data under the UK GDPR on these bases: 

Contract – to register your account, process and deliver orders, manage returns/RMAs, provide support. 
 Legitimate interests – to operate and improve our Site/services, prevent fraud, keep records, market to existing B2B customers, and manage supplier relationships (balanced against your rights). 
 Consent – where required (e.g., certain marketing cookies or newsletters if not covered by soft opt-in). You can withdraw consent at any time. 
 Legal obligation – VAT/tax, accounting, sanctions/KYC checks where applicable. 

How we use your data 

  • Provide and manage your B2B account 

  • Process payments, fulfil orders, arrange deliveries/collections 

  • Respond to enquiries and provide after-sales support 

  • Send service messages (order confirmations, delivery updates, policy changes) 

  • Personalise content, improve Site performance and security 

  • Conduct analytics and reporting (aggregated where possible) 

  • Send B2B marketing (you can opt out anytime) 

Cookies & analytics 

We use cookies and similar technologies for core functionality, performance, and marketing. For details (types, purposes, retention, how to manage preferences), see our Cookie Policy. You can adjust preferences via our cookie banner or your browser settings. 
 We may use analytics tools (e.g., Google Analytics) to understand how our Site is used. These tools set cookies and collect usage data (anonymised/aggregated where possible). 

Sharing your data 

We share personal data with trusted recipients as necessary: 

  • Payment processors: to take payments and prevent fraud 

  • Couriers/fulfilment partners: to deliver orders and manage returns 

  • Hosting & IT providers: to run our Site, CRM, and email systems 

  • Marketing platforms/ESPs: to send permitted B2B communications 

  • Professional advisers: accountants, auditors, lawyers 

  • Authorities: where required by law or to protect our rights 

We require recipients to protect your data and use it only for the intended purposes. 

International transfers 

Some providers may process data outside the UK. Where this occurs, we ensure appropriate safeguards under the UK GDPR (e.g., UK Addendum to SCCs, adequacy decisions, or equivalent measures). You can contact us for details of specific safeguards. 

Data retention 

We keep personal data only as long as necessary for the purposes above, including to meet legal, accounting, or reporting requirements. Typical periods: 

  • Account & order records: 6–7 years for tax/audit 

  • Marketing data: until you opt out or your account is inactive for [e.g., 24 months] 

  • Enquiry data: [e.g., 12–24 months] 
     We may retain minimal data to maintain suppression lists (to respect opt-outs). 

Security 

We use appropriate technical and organisational measures to protect personal data, including encryption in transit, access controls, least-privilege policies, and regular monitoring. However, no system is 100% secure; please keep your account credentials confidential and notify us of any suspected compromise. 

Your rights (UK GDPR) 

You have rights, subject to conditions/exemptions: 

  • Access – request a copy of your personal data 

  • Rectification – correct inaccurate or incomplete data 

  • Erasure – ask us to delete data where no longer needed 

  • Restriction – limit how we use your data in certain cases 

  • Portability – receive data you provided in a structured, machine-readable format 

  • Object – to processing based on legitimate interests or to direct marketing 
     Where processing is based on consent, you may withdraw it at any time. 
     To exercise rights, contact [privacy email]. We may need to verify your identity. 

Marketing choices 

We may send B2B marketing to business contacts under legitimate interests (“soft opt-in”) or consent where required. You can opt out at any time via the email footer link or by contacting us. Opting out won’t affect service messages. 

Children 

Our services are B2B and not directed at children. We do not knowingly collect children’s data. 

Third-party links 

Our Site may contain links to third-party sites. We are not responsible for their privacy practices. Please review their policies. 

Changes to this policy 

We may update this policy from time to time. We will post the new version on the Site with the “Last updated” date. Significant changes may be notified by email or banner.