Privacy policy
In this privacy policy, we describe how your personal data is collected, used, and disclosed when you use mindphart.com (the "Website") or make a purchase there.
Personal data we collect
When you visit the Website, we automatically collect certain information about your device, including web browser information, IP address, time zone, and some of the cookies installed on your device. As you navigate the Website, we also collect information about the individual web pages or products you view, the websites or search terms that led you to the Website, and information about how you interact with the Website. We refer to this automatically collected information as "Device Information."
We collect Device Information using the following technologies:
- "Cookies" are data files stored on a device or computer that often include an anonymous unique identifier. Upon visiting our Website, you can manage your cookie preferences through our cookie banner or browser settings. You can disable non-essential cookies, but some parts of the site may not function properly without them. For more information about cookies and how to disable them, please visit http://www.allaboutcookies.org.
- "Log files" record actions on the Website and collect data such as IP address, browser type, internet service provider, referring/exit pages, and date/time stamps.
- "Web Beacons," "Tags," and "Pixels" are electronic files used to gather information about your navigation on the Website.
When you make a purchase or attempt to make a purchase through the Website, we also collect certain information about you. This includes your name, billing address, shipping address, payment information (including credit card numbers), email address, and phone number. We refer to this information as "Order Information."
In this privacy policy, "personal data" refers to both Device Information and Order Information.
How we use your personal data
We generally use the Order Information we collect to fulfill any orders placed through the Website (including processing your payment information, providing shipping, and sending invoices and/or order confirmations).
Furthermore, we use this Order Information to:
- Communicate with you;
- Screen our orders for potential risk or fraud;
- and Provide information or advertising related to our products or services, as long as it is in line with your privacy preferences.
We use the Device Information we collect to screen for potential risk and fraud (in particular, your IP address) and to improve and optimize our Website (for example, through analyzing our customers' navigation behavior and interaction with the Website, as well as evaluating the success of our marketing and advertising campaigns).
We share your personal data with third parties who assist us in using your personal data as described above. For example, we use Shopify to operate our online store. For more information on how Shopify uses your personal data, please see their privacy policy at https://www.shopify.com/legal/privacy.
Additionally, we use Google Analytics to understand how our customers use the Website. For more information on how Google uses your personal data, please see their privacy policy at https://policies.google.com/privacy?hl=en. You can opt-out of Google Analytics at https://tools.google.com/dlpage/gaoptout.
We use the Meta Pixel and Conversions API by Meta Platforms Ireland Ltd. to analyze visitor behavior and improve the performance of our advertising on Facebook and Instagram.
This may include transmitting personal data such as your email address or IP address to Meta using advanced matching. The data is used to build custom audiences and measure ad effectiveness.
Processing is based on our legitimate interest (Art. 6(1)(f) GDPR) in targeted marketing. If consent is given via our cookie banner, the legal basis is Art. 6(1)(a) GDPR.
Data may be transferred to Meta Platforms Inc. in the USA. Meta is certified under the EU-U.S. Data Privacy Framework.
For more information, please see:
https://www.facebook.com/about/privacy
You can manage your preferences at any time via our cookie banner.
Finally, we may disclose your personal data to comply with applicable laws and regulations, respond to a subpoena, search warrant, or other lawful request for information we receive, or to protect our rights otherwise.
Behavioral advertising
As described above, we use your personal data to provide you with targeted advertisements or marketing communications that we believe may be of interest to you. We may add additional advertising platforms in the future to enhance our targeting capabilities. Any updates will be reflected in this policy. For more information on how targeted advertising works, please visit the Network Advertising Initiative's ("NAI") educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.
You can opt-out of targeted advertising as follows:
Additionally, you can opt-out of some of these services through the Digital Advertising Alliance's opt-out portal at http://optout.aboutads.info/.
Newsletter
For sending our newsletter, we use Mailchimp from The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE Suite 5000, Atlanta, GA 30308 USA (Mailchimp). This allows us to directly contact subscribers. Additionally, we analyze your usage behavior to optimize our offering. You can unsubscribe from our newsletter at any time by clicking the 'unsubscribe' link in the email footer or by contacting us directly at shop@mindphart.com.
For this purpose, we share the following personal data with Mailchimp:
Email address
Our email communications include a link for you to update your personal data.
Mailchimp is the recipient of your personal data and acts as a data processor for us concerning the sending of our newsletter. The processing of the data indicated under this section is neither legally nor contractually required. Without your consent and the transmission of your personal data, we cannot send you a newsletter.
Additionally, Mailchimp collects the following personal data using cookies and other tracking methods: information about your device (IP address, device information, operating system, browser ID, information about the application you use to read your emails, and other information about hardware and internet connection). Furthermore, usage data is collected, such as the date and time when you opened the email/campaign and browser activities (e.g., which emails/websites were opened). Mailchimp requires this data to ensure the security and reliability of the systems, comply with the terms of use, and prevent abuse. This corresponds to Mailchimp's legitimate interest (pursuant to Art. 6(1)(f) of the GDPR) and serves the performance of the contract (pursuant to Art. 6(1)(b) of the GDPR). Performance data is also evaluated by Mailchimp, such as the delivery statistics of emails and other communication data. This information is used to create usage and performance statistics of the services.
Mailchimp also collects information about you from other sources. In an unspecified period and scope, personal data is collected from social media and other third-party data providers. We have no control over this process.
For further information on how to object to or delete data with regard to Mailchimp, please refer to: https://mailchimp.com/legal/privacy/#3._Privacy_for_Contacts
The legal basis for these processing activities is your consent in accordance with Art. 6(1)(a) of the GDPR. You can revoke your consent to the processing of your personal data at any time. Each communication contains a corresponding link. In addition, you can revoke it using the contact information provided. By declaring your revocation, the lawfulness of the processing carried out up to that point is not affected.
Your data will be processed for as long as you have given your consent. Apart from that, they will be deleted after the termination of the contract between us and Mailchimp, unless legal requirements necessitate further storage.
Mailchimp has implemented compliance measures for international data transfers. These apply to all global activities where Mailchimp processes personal data of natural persons in the EU. These measures are based on the EU Standard Contractual Clauses (SCCs). For more information, please visit: https://mailchimp.com/legal/data-processing-addendum/
Do Not Track
We would like to inform you that we do not change the data collection and usage practices of our Website when we receive a 'Do Not Track' signal from your browser. Please note that while we respect privacy signals, the 'Do Not Track' setting in your browser does not always prevent tracking by third parties, as this depends on external services and their compliance with such signals.
Your rights
If you are located in Europe, you have the right to access your personal data that we hold and request correction, updating, or deletion of such data. If you wish to exercise this right, please contact us using the contact information provided below. If you are located in Europe, we also note that we process your data to fulfill contracts with you (e.g., when you place an order through the Website) or to pursue our legitimate business interests as mentioned above. Please also be aware that your data will be transferred outside of Europe, including to Canada and the United States.
Data retention
When you place an order through the Website, we retain your order information for our records unless you request deletion. You can request data deletion at any time by contacting us at shop@mindphart.com. However, we may retain certain data if required by law.
Changes
We may occasionally amend this privacy policy to account for changes in our practices or for other operational, legal, or regulatory reasons.
Contact
If you need more information about our privacy practices, have any questions, or wish to file a complaint, please contact us via email at shop@mindphart.com or by mail at the address provided below:
MINDPHART OG
Seitenstettengasse 5/37
1010 Vienna, Austria
Österreich