Privacy Policy

Privacy Policy

Susans Collection

1. General Information & Data Controller

1.1 Overview

Thank you for visiting Susans Collection. This Privacy Policy explains how we collect, use, and protect your personal data when you use our website. Personal data refers to information that can identify you as an individual.

1.2 Data Controller

The data controller responsible for processing personal data under GDPR is:

Susans Collection
Email: contact.susanscollection@gmail.com

This entity determines how and why your personal data is processed.

1.3 Data Security

We use SSL/TLS encryption to protect your personal data and other confidential information (orders, inquiries). Secure connections are identifiable via “https://” and the lock icon in your browser.

We do not use automated decision-making or profiling that legally affects you or significantly impacts your rights (Art. 22 GDPR).

2. Data Collection When Visiting Our Website

When browsing our site for informational purposes, we automatically collect technical data (server logs) such as:

  • Pages visited

  • Date and time of access

  • Data transfer volume

  • Referrer URL

  • Browser type and version

  • Operating system

  • IP address (anonymized where applicable)

Processing is based on our legitimate interest in site functionality and security (Art. 6(1)(f) GDPR). This data is never used to personally identify you.

3. Cookies

We use cookies to enhance your experience and enable website functions:

  • Session cookies (deleted after browsing)

  • Persistent cookies (remember settings and preferences)

Cookies may collect device info, location, and browser data. You can control or disable cookies via your browser, though this may limit some website features.

4. Contacting Us

If you contact us via email or form, we collect the data you provide, such as your name, email, and message.

Legal basis:

  • Legitimate interest to respond to inquiries (Art. 6(1)(f) GDPR)

  • Contract-related communication where applicable (Art. 6(1)(b) GDPR)

Data will be deleted after the inquiry is resolved unless legal retention requirements apply.

5. Customer Accounts & Orders

Personal data collected for orders or accounts includes:

  • Name

  • Billing & shipping address

  • Email

  • Payment info

Data is used solely to fulfill orders and manage accounts (Art. 6(1)(b) GDPR). You may request account deletion at any time.

6. Marketing & Newsletter

6.1 Newsletter

If you subscribe, your email is used to send updates or promotions. A double opt-in ensures you consent before receiving messages. You can unsubscribe anytime via the link or by contacting contact.susanscollection@gmail.com.

6.2 Existing Customers

For previous buyers, we may send personalized offers via email. You can opt-out at any time without cost.

7. Order Processing & Payment Providers

We share necessary data with shipping carriers and payment processors for order fulfillment only (Art. 6(1)(b) GDPR).

Payment Providers

We may offer services like PayPal or other third-party payment methods. Your payment info is processed according to their privacy policies.

8. Product Reviews

With your consent, we may email a one-time review request. Consent can be withdrawn anytime via contact.susanscollection@gmail.com.

9. Social Media

Links or plugins to Facebook, Instagram, or other platforms may appear on our site. Using them is subject to the respective platform’s privacy policies.

10. Online Marketing & Analytics

We may use marketing tools and analytics (Google, social media advertising) to optimize the website and show relevant ads. These tools may use cookies and other tracking technologies.

You can manage tracking preferences via browser settings or third-party opt-out tools.

11. Your GDPR Rights

You have the following rights regarding your personal data:

  • Access (Art. 15 GDPR)

  • Rectification (Art. 16 GDPR)

  • Erasure (Art. 17 GDPR)

  • Restriction of processing (Art. 18 GDPR)

  • Data portability (Art. 20 GDPR)

  • Withdraw consent (Art. 7 GDPR)

  • Object to processing (Art. 21 GDPR)

  • Lodge a complaint (Art. 77 GDPR)

12. Data Retention

Personal data is retained only as long as necessary to:

  • Fulfill contracts

  • Comply with legal obligations

  • Serve legitimate business purposes

After this, data is securely deleted.

13. Contact Us

For questions regarding this Privacy Policy or your personal data:

Susans Collection
📧 contact.susanscollection@gmail.com