Miss Mary Integrity Policy

At Miss Mary of Sweden, it is important that your personal data is always handled in a safe and secure manner. We follow the laws and regulations that apply to personal data protection. The purpose of this policy is to help you understand the kind of data we collect, how we use your data and what rights you have. You are always welcome to contact our customer service if you have any questions or concerns about how we handle your data. Contact us at gdpr@missmary.com, and we will get back to you regarding your enquiry. Further information can be found in the section ‘Your rights’.

Who is the personal data controller?

Miss Mary of Sweden, company registration number 10194063, Mahtra 30C, Tallinn, Harju 13811, Estonia, is responsible for the processing of your personal data. If you need to contact Miss Mary of Sweden, you can find our contact information here.

An overview of our privacy policy

Whether you visit our website to shop, look at our products or because you are interested in our newsletter, we treat your data in much the same way. This privacy policy thus applies to all personal data within Europe – regardless of whether you contact us via our website, by phone or through our social networks.


Below is a summary of the contents of this privacy policy:
• What is personal data?
• What personal data do we process?
• Who can we share your data with?
• Your rights
• How does Miss Mary of Sweden protect my personal information?
• Changes to our privacy policy
• Contact

What is personal data?

Miss Mary of Sweden collects so-called personal data regardless of how you contact us, via the website, by phone or through other channels. Much of the personal data we process is provided by you when you contact us or use our services.


Personal data refers to data about a specific person, i.e. any data that can be used to identify a physical person. This can be done either with personal data directly or in combination with other data. Any data that cannot be used to identify you is regarded as non-personal data. This is also called anonymous data. If anonymous data is combined with personal data, it is considered personal data.


In principle, the following applies: You may refuse to provide certain information that we ask for. You can control what information you choose to give us. Withholding information may limit the services we provide or make it more difficult for us to provide our services. For example, we cannot deliver orders to you if you do not provide a delivery address.


We only process your data for the purposes described in this privacy policy.

What personal data do we process?

In order to manage your orders and purchases and handle reviews, we need to process the following data about you:
• Name
• Address, phone number and email
• Payment information and payment history
• Information about your order (e.g. order number, product, delivery address, invoice and the content of your reviews).


We handle this data on the legal basis that it is required to fulfil the purchase agreement; without this information we cannot fulfil our agreement with you. We store this data for 36 months from the time that delivery and payment are made for the purpose of helping you with any complaints or warranty issues.


In order to comply with relevant laws and regulations, we need to process the following data about you:
• Name
• Address
• Payment information and payment history
• Information about your order (e.g. order number, product and delivery address)


We handle this data on the basis that we have a legal obligation to comply with relevant laws that require us to do so. One example is the Accounting Act, which requires us to store this data with limited access for 7 years the current year. This data will not be made available for the purposes of providing customer service, among other purposes, during that entire period.


In order for us to offer you customer service, we need to process the following data about you:
• Name
• Phone number and/or email
• Personal identification number (for certain payment options)
• Payment information and payment history
• Information about your order (e.g. order number, product, delivery address and invoice)
• Information that you provide in your communication with us


We handle this data on the legal basis that doing so is necessary to satisfy our legitimate interest in answering your questions. We store this data for 36 months for the purpose of allowing us to resolve customer service matters and handle any complaints.


In order to market ourselves to you by displaying products and offers on our site and via partners, we handle the following data about you:
• Information collected on the site and from cookies, such as products you have clicked on and pages you have visited; read more in our cookie policy
• Order number
• Email
• Phone number
• Metadata you have provided such as your gender and interests


We process this data for up to 36 months after your last activity on our site on the legal basis that doing so is necessary to satisfy our legitimate interest in marketing our products to you. To do this, we mainly use the advertising services and partners below. You can read more about this data collection and the sharing and use of this data, and in some cases delete the data handled through these channels, by following the links below:


Google and YouTube: https://policies.google.com/privacy/partners
Our website uses remarketing with Google Adwords through the provider Google Inc. This allows personal ads to be displayed to you on other websites and via Google Search results based on your previous behaviour on our website. To learn more about how we manage cookies, read our cookie policy. You can opt out of these personalised advertising preferences at: https://adssettings.google.com/


Facebook: https://www.facebook.com/ads/about/?entry_product=ad_preferences


Instagram: https://help.instagram.com/1415228085373580


You can also read more about how we manage cookies in our cookie policy.


In order to send you newsletters and offers via text, email or other direct marketing channels, organise customer surveys, receive feedback and handle questions in our customer forum, we need to handle the following data about you:
• Name
• Address, phone number and email
• Information collected from cookies, such as products you have clicked on and pages you have visited; read more in our cookie policy
• Information you provide yourself (e.g. your gender, preferences, etc.)


We only handle this data with your consent and if it matches the data in our customer register, such as your phone number; by providing your personal details you consent to our data processing. We handle this data for up to 36 months after your last activity on the legal basis that it is necessary to satisfy our legitimate interest in marketing our products to you. Registered customers may revoke or adjust their consent at any time. Contact our customer service to revoke or adjust your consent to direct marketing.

Who do we share your data with?

We sometimes share data, including personal data, with third parties for the purposes described above. In some cases, when third-party suppliers and partners process data on our behalf or it is otherwise required by law, we establish personal data assistance agreements to ensure that these parties also process your personal data in accordance with the law. We never sell your data to other parties without your permission. Miss Mary of Sweden will only provide data to third parties if it is permitted under European data protection law or with the use of a secure data transfer mechanism.


At Miss Mary of Sweden, we value our service providers and work very closely with them. We may share your data with the following service providers:


Service providers
In order to fulfil the purposes for which we process your personal data, we share your personal data with companies that provide services to us, e.g. to ship and deliver your goods or provide certain systems. These companies may only process your personal data in accordance with our explicit instructions and not for any other purposes.


Payment service providers
We use various payment service providers to facilitate payments on our website. Our payment service providers are responsible for their processing of your personal data, which is subject to their own terms. Information about their terms and handling of personal data is provided when you choose a payment method to use on the site.


Partners
We share data with our partners, such as order numbers and purchase prices, for traffic directed to us via their channels. The data is shared for this purpose only, and is not sold or further shared.


Other recipients
We may transfer your personal data to other recipients, e.g. authorities, if required by law. If all or part of our business is sold or integrated with another business, your personal data may be disclosed to our advisers, as well as potential buyers and their advisors, and passed on to the new owners of the business.


Transfers outside the EU
We may transfer your personal data to recipients outside the EU. In the event of such a transfer, we will ensure that suitable transfer mechanisms and other security measures are in place.

Your rights

Under the EU General Data Protection Regulation (GDPR), you have the following rights with regard to the handling of your personal data:


Right of access
You have the right to know what personal data we use through a so-called register extract. If you would like a complete register extract, please contact our customer service and they will help you.


Right to correction
We want to ensure that your personal data is correct and up to date, and you have the right to have incorrect data about you corrected. If details you have provided to us change, e.g. if you change your email address, name or payment details, or if you want to cancel your account, please contact our customer service.


Right to revoke consent and limit the handling of personal data
You also have the right to oppose certain uses of your personal data, for example for purposes related to direct marketing and newsletter distribution.


Right of erasure
In certain circumstances, you also have the right to have your personal data erased or blocked.


However, this does not apply if, for example, we are obliged by law to preserve or otherwise handle the data, or if the data is required to fulfil an agreement with you.


In addition to this policy, we have chosen to provide further information related to the collection of your personal data including: the data we process, the legal basis for processing the data and for how long the data will be handled. Furthermore, updated information on the processing of personal data is always published on our website.

How does Miss Mary of Sweden protect my personal data?

Your personal data is safe with us. We take both organisational and technical measures to ensure your personal data is protected from destruction, access and loss, as well as dissemination to unauthorised persons.

Changes to our privacy policy

As Miss Mary of Sweden continuously develops its website and user experience, this privacy policy may be subject to necessary changes. The latest version is always available on our website.

Contact

If you have any questions about how we handle your personal data, you are always welcome to contact our customer service. For questions about the GDPR, you are also welcome to contact us at gdpr@missmary.com. If you are not satisfied with any answers you receive from us or how we handle your data, you have the right to submit a complaint to the responsible supervisory authority, which in this case is the Data Inspectorate.

Cookies

Read more about cookies in our cookie policy.