For laboratory research only · Not for human or veterinary consumption
Sterling Bio
STERLING BIO
Advanced bio solutions
0
Legal

Privacy Policy

Last updated: 24 April 2026

Sterling Bio Ltd (“Sterling Bio”, “we”, “us”) is committed to protecting your personal data. This Privacy Policy explains what data we collect when you use sterlingbio.co.uk, how we use it, and the rights you have under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who we are

Sterling Bio Ltd is the data controller for personal data processed through this website. We are a company registered in the United Kingdom. You can reach our team at Info@sterlingbio.co.uk.

2. What data we collect

We only collect the personal data we need to fulfil your order. Specifically:

  • Identity & contact: full name, email address, phone number.
  • Delivery: shipping address (line 1, line 2, city, postcode, country).
  • Order: items ordered, quantities, totals, payment reference and any notes you choose to add.
  • Technical: limited browser/device information automatically logged by our hosting provider for security and abuse-prevention purposes.

We do not collect payment-card data. Payment is settled by direct UK bank transfer to our Tide business account; bank-card numbers never touch this website.

3. Why we collect it (lawful basis)

  • Contract performance — to process your order, take payment, dispatch goods and provide customer service.
  • Legal obligation — to keep accounting and tax records required by UK law (typically 6 years).
  • Legitimate interest — to keep the website secure, detect fraud and improve our service.

We do not use your data for marketing without your explicit consent and we do not sell or rent it to anyone.

4. Who we share it with

Your personal data is shared only with a small number of trusted service providers acting on our behalf:

  • Microsoft 365 (email delivery for order confirmations and shipping notifications).
  • Our cloud hosting provider (application, database and file hosting).
  • UK courier partners (Royal Mail and equivalent — for shipping only, name and address only).
  • Tide (our business bank) for payment verification.
  • HMRC and other UK authorities where required by law.

5. International transfers

Where any of our processors store data outside the UK/EEA (for example, certain Microsoft 365 data centres), the transfer is covered by the UK's Adequacy Regulations and/or the standard contractual clauses, ensuring an equivalent level of protection.

6. How long we keep it

  • Active orders: while the order is open and processed.
  • Completed orders: kept in our records for up to 6 years to satisfy UK accounting and tax legislation.
  • Archived/deleted orders: when our admin deletes an archived order from the system, the order record is permanently removed.

7. Cookies & local storage

We use minimal browser storage to deliver core site functionality:

  • Cart contents — stored in your browser's local storage so your basket survives a page refresh. Cleared when you place an order or empty the cart.
  • Admin session token — only set if you log in to the internal admin dashboard. Cleared on sign-out and after 12 hours.

We do not use third-party advertising or tracking cookies. We do not run analytics that share data with advertisers.

8. Your rights

Under UK GDPR you have the right to:

  • Access the personal data we hold about you.
  • Have inaccurate data corrected.
  • Have your data erased (subject to our legal record-keeping obligations).
  • Restrict or object to certain processing.
  • Request your data in a portable format.
  • Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, email Info@sterlingbio.co.uk. We will respond within one month.

9. Security

Our website uses SSL/TLS 256-bit encryption on every page. Admin access is protected by bcrypt-hashed passwords and short-lived session tokens. We review our security controls regularly. No system is ever 100% secure, so we encourage you to use a strong, unique password for any account you create with us.

10. Complaints

If you are unhappy with how we have handled your personal data, please contact us first so we can put it right. You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk or by calling 0303 123 1113.

11. Changes to this policy

We may update this Privacy Policy from time to time. The “Last updated” date above will always reflect the current version.

Made with Emergent