Privacy Policy

Home » Privacy Policy

Introduction

At Zoe Soul Objects, we value your privacy and are committed to protecting your personal data.
This Privacy Policy explains how we collect, use, and safeguard your information when you visit our website, make a purchase, or contact us.
We comply with the General Data Protection Regulation (EU) 2016/679 (GDPR) and applicable data protection laws.

By using our website, you agree to the practices described in this policy.

Data Controller

The data controller responsible for your personal data is:

Zoe Soul Objects
[email protected]

Personal Data We Collect

We may collect and process the following information:

a) Information you provide to us

  • Full name
  • Billing and shipping address
  • Email address and phone number
  • Payment information (processed securely via Stripe)
  • Messages, reviews, or inquiries sent to us

b) Information collected automatically

  • IP address and browser type
  • Device and usage information
  • Cookies and analytics data (see Cookie Policy below)

Lawful Basis for Processing

We process personal data under the following legal bases:

  • Contract: to process and deliver your orders.
  • Legal obligation: to comply with accounting and tax laws.
  • Consent: for newsletters or marketing communications.
  • Legitimate interest: to improve our website, products, and customer experience.

How We Use Your Data

We use your personal data to:

  • Process and deliver your orders.
  • Provide customer support.
  • Communicate with you regarding your purchase or inquiries.
  • Manage your account and order history.
  • Send you updates or promotions (only if you consent).
  • Improve our products and website.

Payments

All payments are processed securely through Stripe.
We do not store your credit or debit card information on our servers.

For more information, please review Stripe’s privacy policy:
đź”— https://stripe.com/privacy

Data Sharing

We only share your data with trusted service providers necessary to operate our business, such as:

  • Payment processor: Stripe
  • Shipping and delivery partners
  • IT and hosting providers (for website functionality)
  • Authorities or regulators where required by law

We never sell, rent, or trade your personal data to third parties.

Data Retention

We keep your data only for as long as necessary to fulfill the purposes for which it was collected, including:

  • Order and tax recordkeeping (usually up to 7 years).
  • Customer service history and warranty support.

After this period, your data is securely deleted or anonymized.

Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold.
  • Rectification: Request corrections to inaccurate or incomplete data.
  • Erasure (“Right to be Forgotten”): Request deletion of your data.
  • Restriction: Ask us to limit processing of your data.
  • Data Portability: Receive your data in a structured format.
  • Objection: Object to certain processing, including marketing communications.

To exercise these rights, please contact us at [email protected].
If you are not satisfied with our response, you can file a complaint with the Office of the Commissioner for Personal Data Protection (Cyprus) or your local Data Protection Authority.

Cookies

Our website uses cookies to:

  • Enable essential website functionality (e.g., shopping cart, checkout).
  • Improve performance and analyze website traffic.
  • Remember your preferences.

You can control or disable cookies through your browser settings at any time.
For more details, please read our Cookie Policy (link your cookie page here once created).

Data Security

We take appropriate technical and organizational measures to protect your personal data, including:

  • SSL encryption on all pages.
  • Secure servers and access control.
  • Regular monitoring and maintenance of our systems.

However, please note that no online transmission is completely secure, and we cannot guarantee absolute security.

International Data Transfers

In some cases, your data may be transferred outside the European Economic Area (EEA), for example when using third-party services like Stripe or website hosting.
When this happens, we ensure that such transfers comply with GDPR through:

  • Standard Contractual Clauses, or
  • Transfers to countries with an adequacy decision by the European Commission.

Updates to This Policy

We may update this Privacy Policy from time to time.
Any changes will be posted on this page with a new “Last Updated” date.
We encourage you to review it periodically to stay informed.

Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact us:

[email protected]
https://zoesoulobjects.com

Scroll To Top
Close
  • Menu
  • Categories
Close