Privacy Policy

Definitions
For the purposes of this Privacy Policy:

“Personal Data” refers to any information relating to an identified or identifiable natural person (data subject).
“Processing” means any operation or set of operations performed on personal data, whether automated or manual, including collection, storage, use, disclosure, or deletion.
“Controller” means the entity determining the purposes and means of processing personal data, i.e., Siluett Pood.
“Processor” refers to any third party processing data on behalf of the Controller.
“Data Subject” refers to the individual whose personal data is processed.

2. Information We Collect
   2.1 Personal Data
   We may collect the following categories of personal data from you directly:

Identity Information: Full name, date of birth, and gender.
Contact Information: Email address, phone number, and mailing/billing address.
Financial Information: Payment card details (processed securely by third-party payment providers).
Account Information: Usernames, passwords, and purchase history (if applicable).
2.2 Automatically Collected Data
When you use our website, we may automatically collect the following:

Technical Data: IP address, browser type, operating system, device identifiers.
Usage Data: Pages visited, time spent, clicks, and interactions with site elements.
Geolocation Data: Approximate location derived from your IP address.
2.3 Cookies and Tracking Technologies
We utilize cookies, web beacons, and other tracking technologies to enhance your browsing experience. For detailed information, see Section 10: Cookie Policy.

3. Lawful Basis for Processing
   We process personal data based on one or more of the following legal grounds:

Consent: When you provide explicit consent for specific purposes (e.g., subscribing to our newsletter).
Contractual Necessity: To fulfill our contractual obligations, such as processing your purchases or delivering services.
Legal Obligations: To comply with applicable laws, court orders, or regulatory requirements.
Legitimate Interests: For purposes such as fraud prevention, website optimization, and direct marketing, provided these do not override your rights.

4. How We Use Your Data
   Your personal data may be used for the following purposes:

Order Fulfillment: To process payments, ship products, and manage returns or refunds.
Customer Communication: To respond to inquiries, provide support, or send transaction-related notifications.
Marketing and Promotions: To send promotional materials, special offers, or newsletters (subject to your consent).
Analytics and Improvements: To monitor website performance, enhance user experience, and troubleshoot technical issues.
Legal Compliance: To fulfill tax, accounting, or regulatory obligations.

5. Disclosure of Personal Data
   We may disclose your personal data under the following circumstances:

5.1 To Third-Party Service Providers
We share your data with carefully selected service providers to facilitate our operations, including:

Payment processors (e.g., Stripe, PayPal).
Shipping companies.
IT and website hosting providers.
These parties are contractually obligated to safeguard your data and use it solely for specified purposes.

5.2 Legal Requirements
We may disclose your data if required by law, subpoena, or to protect our legal rights, property, or safety.

5.3 Business Transfers
In the event of a merger, acquisition, or sale of assets, your data may be transferred to the new entity, subject to continued protection under this Privacy Policy.

6. International Data Transfers
   If you reside outside of Estonia or the European Economic Area (EEA), please note that your personal data may be transferred to and stored on servers located in countries that may not offer the same level of data protection as your home jurisdiction.

When such transfers occur, we ensure adequate safeguards, including:

Binding Corporate Rules (BCRs).
Standard Contractual Clauses (SCCs) approved by the European Commission.
Explicit consent from you, where necessary.

7. Data Retention
   We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy or to comply with legal obligations. Specific retention periods include:

Order and Billing Information: Retained for a minimum of [7 years] to meet tax and accounting obligations.
Marketing Data: Retained until you opt out or withdraw consent.
Cookies: Retained as specified in Section 10 below.
When retention is no longer necessary, we securely delete or anonymize your data.

8. Your Rights as a Data Subject
   Under applicable laws, you have the following rights regarding your personal data:

Right to Access: Request a copy of the data we hold about you.
Right to Rectification: Request corrections to inaccurate or incomplete data.
Right to Erasure (Right to be Forgotten): Request deletion of your personal data, subject to legal exceptions.
Right to Restrict Processing: Request limited use of your data in specific circumstances.
Right to Data Portability: Request transfer of your data to another service provider in a structured, machine-readable format.
Right to Object: Object to data processing based on legitimate interests or for direct marketing purposes.
Right to Withdraw Consent: Revoke consent at any time where processing is based on consent.
To exercise these rights, please contact us at [Insert Contact Email].

9. Security Measures
   We implement a variety of technical and organizational measures to protect your data, including:

Encryption protocols for data transmission and storage.
Secure servers and firewalls.
Access controls and employee training programs to prevent unauthorized access.
Despite our efforts, no system is entirely secure. Use our services at your own risk.

10. Cookie Policy
    Cookies are small text files stored on your device to enhance your browsing experience. We use the following types of cookies:

Essential Cookies: Necessary for website functionality.
Performance Cookies: Track website performance and user behavior (e.g., Google Analytics).
Marketing Cookies: Enable targeted advertising and promotional activities.
To manage your cookie preferences, use our Cookie Settings Tool or adjust your browser settings.

11. Third-Party Links
    Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. Please review their respective policies.
12. Changes to This Privacy Policy
    We may update this Privacy Policy periodically to reflect changes in legal requirements or our practices. Updates will be posted with the revised “Effective Date.”
13. Contact Information
    If you have questions, concerns, or requests related to this Privacy Policy, please contact us:

Email: siluettpood@gmail.com
Phone: +372 508 1271
Mailing Address: Siluett Pood, Rüütli 28, Pärnu, 80011 Pärnu maakond, Estonia
By continuing to use our website, you acknowledge that you have read, understood, and agreed to the terms of this Privacy Policy.