Privacy Policy

Privacy Policy

Effective Date: 17 November 2024
Last Updated: 17 November 2024

Fisterra Creative Privacy Policy

At Fisterra Creative (operated by Fisterra OÜ), accessible at fisterracreative.eu, we are committed to safeguarding your privacy and ensuring your personal data is protected. This Privacy Policy outlines how we collect, store, use, and share your information, in compliance with the General Data Protection Regulation (GDPR) and other applicable laws. By using our website, you agree to the terms described in this policy.

1. Information We Collect

1.1 Personal Data

We collect personal data that you provide directly to us, including:

  • Name
  • Email Address
  • Phone Number
  • Shipping and Billing Address
  • Payment Information (processed securely by third-party payment providers)
  • IP Address

1.2 Non-Personal Data

We also collect non-identifiable information automatically, such as:

  • Browser type and version
  • Device type and operating system
  • Website usage statistics (e.g., pages visited, time spent on site)

1.3 Cookies and Tracking

Cookies and similar technologies are used to enhance your experience. For more details, see our Cookies Section below.

2. How We Use Your Data

We process your data for the following purposes:

  • Order Fulfillment: To process, ship, and deliver your orders for blue light blocking glasses.
  • Customer Support: To respond to inquiries, provide support, and resolve issues.
  • Marketing: To send promotional emails and offers (only with your explicit consent).
  • Website Optimization: To analyze usage and improve website functionality.
  • Legal Compliance: To meet legal and regulatory obligations.

3. Legal Basis for Processing

Under GDPR, we rely on the following legal bases to process your data:

  • Contractual Necessity: To fulfill your orders and provide requested services.
  • Consent: For marketing communications and certain cookie usage (you may withdraw consent anytime).
  • Legitimate Interests: For website improvements and fraud prevention.
  • Legal Obligations: To comply with applicable laws.

4. Sharing and Disclosure of Data

We do not sell your data to third parties. However, we may share your information in the following circumstances:

  • Service Providers: With trusted third parties who assist us in processing payments, shipping products, and managing marketing activities.
  • Legal Requirements: If required to comply with legal obligations or protect the rights of Fisterra OÜ or others.
  • Business Transfers: In case of a merger, acquisition, or sale of our assets, your data may be transferred to the new entity under similar privacy standards.

All third parties processing your data are bound by confidentiality agreements and GDPR compliance.

5. Data Storage and Retention

  • Storage Location: Your data is securely stored on servers located within the European Economic Area (EEA).
  • Retention Period: Personal data is retained only for as long as necessary to fulfill the purposes outlined in this policy or as required by law. For example:
    • Transactional data: Retained for tax and accounting purposes for 7 years.
    • Marketing data: Retained until you withdraw consent.

6. Security Measures

We implement robust measures to protect your data:

  • Encryption for data transmission (e.g., SSL/TLS).
  • Restricted access to personal data, available only to authorized personnel.
  • Regular system audits and updates to address vulnerabilities.

While we strive to protect your data, no method of transmission over the Internet is completely secure. If you suspect any breach of your data, contact us immediately at kova.tonu@gmail.com.

7. Your GDPR Rights

As a resident of the European Union, you have the following rights under GDPR:

  • Right of Access: Request access to the personal data we hold about you.
  • Right to Rectification: Correct inaccurate or incomplete data.
  • Right to Erasure: Request deletion of your data (subject to legal requirements).
  • Right to Restrict Processing: Request that we limit the processing of your data.
  • Right to Data Portability: Receive your data in a structured, commonly used format.
  • Right to Object: Object to the processing of your data for specific purposes, including marketing.
  • Right to Withdraw Consent: Revoke your consent at any time.

To exercise these rights, contact us at kova.tonu@gmail.com with “Data Subject Request” in the subject line.

8. Cookies and Tracking Technologies

We use cookies to improve your experience on our website. These include:

  • Essential Cookies: Required for website functionality.
  • Performance Cookies: For analytics and tracking (e.g., Google Analytics).
  • Marketing Cookies: For personalized advertising (only with consent).

You can manage or disable cookies through your browser settings or via our cookie consent banner.

9. International Data Transfers

If we transfer your data outside the EEA, we will ensure compliance with GDPR by implementing:

  • Standard Contractual Clauses approved by the European Commission.
  • Adequate Safeguards to protect your data.

10. Marketing and Communications

We only send marketing communications if you’ve opted in. You can unsubscribe anytime by:

11. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. Updates will be posted on this page with the revised “Effective Date.” Please review this policy periodically.

12. Contact Information

If you have questions, concerns, or wish to exercise your rights, contact us:

Thank you for trusting Fisterra Creative. Your privacy is important to us.