Privacy Policy
Last updated: February 2026
Cosmic Candy Club (“we”, “us”, “our”) operates cosmiccandyclub.com and the Cosmic Candy Club app. This Privacy Policy explains how we collect, use, and protect your personal information when you visit our website, use our app, or interact with our services.
1. Information We Collect
We may collect the following information:
- Personal details – Your name and email address, provided when you take our quiz or sign up to our mailing list.
- Browsing data – Information about how you use our website, including pages visited, time spent, and referring URLs.
- Cookies and similar technologies – Small files stored on your device to improve your experience (see Section 5 below).
- Device information – Browser type, operating system, and screen resolution collected automatically.
2. How We Use Your Information
We use the information we collect to:
- Send you email marketing, newsletters, and event updates (via Brevo, our email marketing platform).
- Personalise your experience based on your quiz results.
- Improve our website, content, and services.
- Understand how visitors use our site so we can make it better.
- Comply with legal obligations.
3. Third-Party Services
We work with the following third-party services:
- Brevo – We use Brevo to manage our email mailing lists and send marketing emails. When you subscribe, your name and email are stored on Brevo’s servers. Brevo Privacy Policy.
- Google Analytics – We may use Google Analytics to understand website traffic and usage patterns. This collects anonymised browsing data. Google Privacy Policy.
- Social media embeds – Our site may include embedded content from platforms such as TikTok, Instagram, and Facebook. These platforms may collect data about you when you view embedded content.
- TikTok Content Posting API – Our app, Cosmic Candy Club, uses the TikTok Content Posting API to publish content to our brand’s TikTok account. This does not involve posting content on your behalf or accessing your TikTok account.
4. Legal Basis for Processing (GDPR)
We are a UK-based business and process your data in accordance with the UK General Data Protection Regulation (UK GDPR). Our legal bases for processing include:
- Consent – When you sign up to our mailing list or take our quiz, you consent to us processing your data for those purposes.
- Legitimate interests – To improve our website and understand how it is used.
- Legal obligation – Where we are required by law to retain or share information.
5. Cookies
Our website uses cookies to:
- Remember your preferences and quiz results.
- Analyse website traffic (via analytics cookies).
- Enable essential website functionality.
You can control cookies through your browser settings. Disabling cookies may affect how parts of our site work.
6. Your Rights
Under UK GDPR, you have the right to:
- Access – Request a copy of the personal data we hold about you.
- Rectification – Ask us to correct inaccurate data.
- Erasure – Request that we delete your personal data.
- Opt out – Unsubscribe from marketing emails at any time using the link in every email, or by contacting us directly.
- Data portability – Request your data in a portable format.
- Complaint – Lodge a complaint with the Information Commissioner’s Office (ICO) if you believe your rights have been breached.
7. Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes described in this policy, or as required by law. If you unsubscribe from our mailing list, we will remove your data from our active lists promptly.
8. Data Security
We take reasonable measures to protect your personal information from unauthorised access, loss, or misuse. However, no method of transmission over the internet is 100% secure.
9. Changes to This Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated date.
10. Contact Us
If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us at: