Privacy policy

Privacy Policy

1. Introduction

1.1 We are committed to protecting your privacy and handling your personal data in a transparent and secure manner. This Privacy Policy outlines how we collect, use, disclose, and protect your information when you visit our website or make purchases from us.

1.2 This Privacy Policy applies to all users of our website and customers who purchase goods from us, regardless of their location.

2. Data Controller

2.1 The data controller responsible for the processing of your personal data is: Maira Oils
[Company Address]
[Company Registration Number]
Email address : mairaoils.at@gmail.com
(hereinafter referred to as "we", "us", or "our").

3. Types of Data Collected

3.1 We collect and process the following types of personal data:

  • Identity Data: Name, username, or similar identifier.
  • Contact Data: Email address, phone number, billing and shipping address.
  • Financial Data: Payment information (e.g., credit card details) for processing payments.
  • Transaction Data: Details about payments and purchases made by you.
  • Technical Data: IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our website.
  • Usage Data: Information about how you use our website, products, and services.
  • Marketing and Communications Data: Your preferences in receiving marketing from us and your communication preferences.

4. Purposes of Processing

4.1 We process your personal data for the following purposes:

  • To fulfill our contractual obligations to you, including processing and delivering your orders.
  • To manage your account and provide customer support.
  • To communicate with you, including sending order confirmations, updates, and marketing communications (where you have opted in).
  • To improve our website, products, and services.
  • To comply with legal obligations, such as tax and accounting requirements.

5. Legal Basis for Processing

5.1 We process your personal data on the following legal bases:

  • Performance of a Contract: Processing is necessary for the performance of a contract to which you are a party or to take steps at your request prior to entering into a contract.
  • Consent: Processing is based on your consent, which you may withdraw at any time.
  • Legal Obligations: Processing is necessary for compliance with a legal obligation to which we are subject.
  • Legitimate Interests: Processing is necessary for our legitimate interests or those of a third party, except where such interests are overridden by your interests or fundamental rights and freedoms.

6. Data Retention

6.1 We will retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

6.2 To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process your personal data, and whether we can achieve those purposes through other means.

7. Data Security

7.1 We have implemented appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including encryption of personal data, ongoing monitoring of our systems and practices, and regular testing of our security measures.

8. Your Rights

8.1 You have the following rights regarding your personal data, subject to applicable legal restrictions:

  • Right to Access: You can request access to the personal data we hold about you.
  • Right to Rectification: You can request that we correct inaccurate or incomplete personal data.
  • Right to Erasure: You can request that we delete your personal data, subject to legal requirements.
  • Right to Restriction of Processing: You can request that we restrict the processing of your personal data.
  • Right to Data Portability: You can request a copy of your personal data in a structured, machine-readable format.
  • Right to Object: You can object to the processing of your personal data where we are relying on legitimate interests (or those of a third party).

8.2 To exercise any of these rights, please contact us using the contact details provided below.

9. Disclosure of Personal Data

9.1 We may disclose your personal data to third parties in the following circumstances:

  • To service providers and third-party processors who assist us in providing our services (e.g., payment processors, shipping companies).
  • To legal and regulatory authorities, upon request, or to comply with legal obligations.
  • In connection with a business transaction, such as a merger, acquisition, or sale of assets, where your personal data may be transferred to the new entity.

10. International Transfers

10.1 Your personal data may be transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different from the laws of your country.

10.2 Where we transfer personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect your personal data, such as standard contractual clauses approved by the European Commission.

11. Changes to this Privacy Policy

11.1 We may update this Privacy Policy from time to time to reflect changes in legal or regulatory requirements, our business practices, or technology. We will notify you of any material changes by posting the updated Privacy Policy on our website or by other appropriate means.

12. Contact Us

12.1 If you have any questions or concerns about this Privacy Policy or our data practices, or if you wish to exercise your rights regarding your personal data, please contact us at: Maira Oils
[Company Address]
Email address : mairaoils.at@gmail.com
[Phone Number]