Privacy Policy for MysticSphereAromas.com
Effective Date: September 15, 2024
Business Name: Mystic Ltd
Address: Al. Papanastasiou 4, Thessaloniki
Contact Email: [email protected]
At MysticSphereAromas.com, we are committed to safeguarding and preserving the privacy of our visitors and customers. This Privacy Policy explains how we collect, store, use, and share personal data, ensuring compliance with the General Data Protection Regulation (GDPR) and other applicable privacy laws. Please read this document carefully to understand your rights and how your personal data is handled.
1. Data Controller
The data controller responsible for the processing of your personal data is:
Mystic Ltd
Address: Al. Papanastasiou 4
Email: [email protected]
2. What Personal Data We Collect
When you visit, interact with, or make a purchase on MysticSphereAromas.com, we may collect the following types of personal data:
a. Information You Provide Directly
- Contact Information: Name, email address, phone number, postal address.
- Order Information: Billing and shipping address, payment information (processed securely through third-party payment processors), product preferences.
- Account Information: When you create an account on our site, we collect your username and password.
b. Automatically Collected Data
- Cookies and Tracking Technologies: We collect information on how you interact with our site, such as IP address, device type, browser type, and pages viewed through cookies and similar technologies. Please refer to our [Cookie Policy] for more details.
c. Communication Data
- When you contact us via email or other channels, we may collect the content of your communications.
d. Payment Data
We do not store payment information directly. All payment transactions are handled securely by our third-party payment processors (e.g., PayPal, Stripe). We only store transaction records, such as order details, but not your payment card details.
3. How We Use Your Personal Data
We use the personal data we collect for the following purposes:
- To Process Orders: We use your contact and payment information to fulfill your orders, deliver products, and provide customer support.
- To Improve Our Services: We analyze how you use our website to enhance user experience, fix issues, and improve our offerings.
- Marketing and Communications: If you opt-in, we may send promotional emails, newsletters, or special offers that may be of interest to you. You can opt out at any time.
- Legal Obligations: We may process your data to comply with our legal obligations, such as tax and accounting requirements.
- Security and Fraud Prevention: To ensure the security of our website, detect fraudulent activities, and protect your personal data from unauthorized access or misuse.
4. Legal Basis for Processing Personal Data
Under the GDPR, we rely on the following legal grounds for processing your personal data:
- Contractual Necessity: To fulfill orders and provide customer service.
- Legitimate Interests: For improving services, securing the website, marketing (where applicable), and analyzing customer preferences.
- Consent: Where you have given explicit consent, such as subscribing to our newsletter.
- Legal Obligation: When we are required to comply with the law.
5. How We Share Your Personal Data
We do not sell or rent your personal data to third parties. However, we may share your personal data with trusted third parties in the following circumstances:
- Service Providers: We may share data with third-party providers who perform services on our behalf, such as payment processing, shipping, marketing tools, and website hosting.
- Legal and Regulatory Authorities: When required by law, we may disclose your personal data to comply with legal obligations or in response to valid legal requests by public authorities.
- Business Transfers: In the event of a merger, sale, or acquisition, your personal data may be transferred as part of the business assets.
6. How Long We Retain Your Data
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. Specifically:
- Order Information: Kept for 7 years for tax and accounting purposes.
- Marketing Data: Retained until you opt out or withdraw consent.
- Cookies and Analytics: Stored according to the cookie expiration periods (see our Cookie Policy for details).
7. Your Rights Under GDPR
As a user in the European Union, you have specific rights regarding your personal data under the GDPR:
- Right to Access: You can request a copy of your personal data we hold.
- Right to Rectification: You can ask us to correct any inaccuracies in your personal data.
- Right to Erasure: You can request the deletion of your personal data, subject to legal obligations.
- Right to Restriction of Processing: You can request that we restrict processing of your data in certain circumstances.
- Right to Data Portability: You can request that we transfer your personal data to another organization.
- Right to Object: You can object to our processing of your personal data, particularly for marketing purposes.
- Right to Withdraw Consent: If you have provided consent for data processing, you can withdraw it at any time.
To exercise any of these rights, please contact us at [email protected]
We will respond within one month.
8. Security of Your Personal Data
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, or misuse. These measures include encryption, access controls, and secure hosting. However, no system is entirely secure, and we cannot guarantee absolute security of your data.
9. International Data Transfers
If we transfer your personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards, such as standard contractual clauses or adequacy decisions, are in place to protect your data in accordance with GDPR requirements.
10. Cookies and Tracking Technologies
We use cookies and similar technologies to collect information about your browsing behavior. Cookies help us to personalize your experience, improve our website, and analyze website traffic. You can manage your cookie preferences through your browser settings. For more information, please refer to our [Cookie Policy].
11. Changes to This Privacy Policy
We reserve the right to update this Privacy Policy as needed to reflect changes in our practices, legal requirements, or other factors. Any changes will be posted on this page, and significant changes will be communicated to you directly via email or a website notice.
12. Contact Us
If you have any questions or concerns about this Privacy Policy or how we handle your personal data, please contact us at:
Email: [email protected]
Address: Al. Papanastasiou 4, Thessaloniki
This Privacy Policy ensures transparency about how your personal data is collected, used, shared, and protected when visiting MysticSphereAromas.com. Thank you for trusting us with your privacy!