Privacy policy

INFORMATION ON THE COLLECTION OF PERSONAL DATA AND CONTACT DETAILS OF THE DATA CONTROLLER

1.1 Welcome and introduction

We welcome you to our website and thank you for your interest. Below we inform you about how we handle your personal data when you use our website. Personal data is all information that can be used to identify you.

1.2 Data controller

The data controller as defined by the General Data Protection Regulation (GDPR) is Ibiza Chic Boutique. The controller is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data.

1.3 Encryption for data protection

We use SSL or TLS encryption to protect your data and confidential content. An encrypted connection can be recognised by the string ‘https://’ and the padlock symbol in the address bar of your browser.

DATA COLLECTION DURING YOUR VISIT TO OUR WEBSITE

If you use our website for information purposes only, i.e. you do not register or otherwise provide us with information, we only collect data that your browser automatically sends to our server (‘server log files’). These data are necessary to technically provide you with the website:

  • Website visited
  • Date and time of access
  • Amount of data transferred
  • Source/reference from which you reached the page
  • Browser used
  • Operating system used
  • IP address used (possibly anonymised)

The processing takes place according to art. 6 cpv. 1 lett. f RGPD based on our legitimate interest in improving the stability and functionality of our website. This data is not transmitted or used in any other way. However, we reserve the right to check the server log files subsequently in case of concrete evidence of illegal use.

COOKIES

We use cookies to make visiting our website more user-friendly. Cookies are small text files that are stored on your device. Some cookies are deleted after the end of the browser session (session cookies); others remain stored and enable your browser to be recognised the next time you visit (persistent cookies).

Cookies can process information such as browser or location data and IP addresses. The use of cookies is in accordance with:

  • Art. 6 par. 1 letter b GDPR for the fulfilment of the contract or
  • Art. 6 par. 1 letter f GDPR for the protection of our legitimate interest in the optimal functionality of our website.

If necessary, we work with advertising partners who may also store cookies on your device (‘third-party cookies’).

You can set your browser so that you are informed about the setting of cookies and can decide individually whether to accept them or whether to exclude the acceptance of cookies in certain cases or in general. If cookies are deactivated, the functionality of our website may be limited.

CONTACT

When you contact us (e.g. via contact form or e-mail), personal data is collected. This data is used exclusively for processing your request.

  • The processing will be carried out in accordance with Art. 6 (1) lit. f GDPR on the basis of our legitimate interest in an efficient customer care.
  • If your enquiry results in a contract, the processing will be carried out on the basis of art. 6 para. 1 lit. b GDPR.

Your data will be deleted after your enquiry has been processed, unless we are legally obliged to store your data.

DATA PROCESSING FOR ACCOUNT CREATION AND CONTRACT IMPLEMENTATION

  • Personal data is processed in accordance with Art. 6 para. 1 lit. b GDPR if you provide it to us for the execution of a contract or to open a customer account.
  • After complete fulfilment of the contract or deletion of your customer account, your data will be stored in accordance with tax and commercial law retention obligations and then deleted.

USE OF YOUR DATA FOR DIRECT MARKETING

6.1 Subscription to the newsletter

If you subscribe to our newsletter, we will send you regular information about our offers. To do so, we only need your e-mail address. It is optional to provide further data.

  • Registration is done via the double opt-in procedure: You will receive a confirmation email and you have to click the link it contains to activate your subscription to the newsletter.
  • Your consent is obtained in accordance with Art. 6 (1) (a) GDPR.
  • You can unsubscribe from the newsletter at any time via the unsubscribe link or by sending us a message.

6.2 Email advertising to existing customers

If you have purchased goods or services from us, we reserve the right to send you email advertising for similar products. This is based on our legitimate interest in direct advertising in accordance with Art. 6 (1) (f) GDPR.

You can object to this at any time.

DATA PROCESSING FOR ORDERS

7.1 Transmission to shipping service providers

In order to process your order, we pass on your data to:

  • shipping service providers (e.g. DHL, DPD)
  • payment service providers (e.g. PayPal, credit card providers)

7.2 Payment via PayPal or SOFORT

  • When paying with PayPal, the data is transmitted to PayPal (Europe) S.a.r.l. et Cie, S.C.A.
  • When paying with SOFORT, the data is transmitted to SOFORT GmbH.

The transmission takes place in accordance with Art. 6 (1) (b) GDPR.

USE OF SOCIAL MEDIA PLUGINS

  • Facebook: integrated using the Shariff solution (no automatic data transfer).
  • Google+ and Instagram: also integrated using the Shariff solution only.

Further information can be found in the respective data protection guidelines of the providers.

ONLINE MARKETING AND ANALYSIS TOOLS

10.1 Google DoubleClick

Our website uses Google DoubleClick to display relevant advertisements (Art. 6 para. 1 lit. f GDPR).

10.2 Google AdWords Conversion Tracking

Our website uses AdWords Conversion Tracking to measure the success of advertisements.

RETARGETING AND REMARKETING

  • Facebook Pixel: used to optimise advertisements on Facebook.
  • Google AdWords Remarketing: allows personalised advertising based on user behaviour.

RIGHTS OF DATA SUBJECTS

Under the GDPR, you have the following rights:

  • Right of access (art. 15 GDPR): information about the stored data.
  • Right to rectification (art. 16 GDPR): correction of incorrect data.
  • Right to erasure (art. 17 GDPR): erasure of data, provided that there are no legal obligations.
  • Right to restriction of processing (art. 18 GDPR).
  • Right to data portability (art. 20 GDPR).
  • Right to object (art. 21 GDPR): you can object to the processing of your data at any time.

DATA RETENTION PERIOD

Personal data is retained for the period of time required by law. At the end of this period, the data is deleted.