1. Domov
  3. GDPR

GDPR

GDPR Privacy Policy

Effective Date: 22-09-2023

1. Introduction

Sarolena ("we," "us," or "our") is committed to protecting the privacy and data rights of our users and customers. This GDPR Privacy Policy outlines our practices for collecting, processing, and protecting personal data as required by the General Data Protection Regulation (GDPR).

2. Your Personal Data

You are granting your consent to sarolena.eu, addressed to Sarolena, c/o Namaste Gozo, 79, Triq Gorg Borg Olivier, Il-Mellieha, Malta, MLH1022, Tax - MT25895008 (hereinafter "Administrator") in the sense of the Act No. 101/2000 Coll., on the Protection of Personal Data (the General Data Protection Regulation), to process the following personal data:

- Name with Surname
- Company name (if any)
- Email
- telephone number
- address
- Company ID and Tax ID (if any or required)

3. Data Protection Officer (DPO)

You may contact our Data Protection Officer at support@sarolena.eu with any inquiries or concerns related to your personal data.

4. Personal Data We Collect

We may collect the following categories of personal data:

  • Identification Data: Name, email address, phone number, and other contact details.
  • Demographic Data: Date of birth, gender, and location.
  • Payment Data: Billing and payment information, but we do not store full payment card details.
  • User-generated Content: Any information or content you provide to us.
  • Website Usage Data: Information on how you use our website, such as IP address, browser type, and cookies (see our Cookie Policy for details).
  • Special Categories of Data: We do not intentionally collect sensitive personal data.

5. Purpose of Data Processing

We process personal data for the following purposes:

  • To provide and improve our products and services.
  • To communicate with you, respond to inquiries, and provide customer support.
  • To process transactions and payments.
  • To comply with legal and regulatory obligations.
  • To send marketing communications with your consent (which you may withdraw at any time).

6. Legal Basis for Processing

We process personal data based on the following legal bases:

  • Performance of a contract with you.
  • Compliance with legal obligations.
  • Your consent.
  • Legitimate interests, such as improving our services and marketing.

7. Data Retention

We will retain personal data only for as long as necessary for the purposes outlined in this policy, or as required by applicable laws and regulations.

8. Data Sharing

We may share your personal data with third parties, such as service providers and affiliates, only when necessary for the purposes mentioned in this policy. We will not sell your personal data.

9. International Data Transfers

If we transfer your data outside the European Economic Area (EEA), we will ensure that appropriate safeguards are in place to protect your data.

10. Data Subject Rights

You have rights under GDPR, including the right to access, rectify, erase, or restrict the processing of your data. You also have the right to data portability and the right to object to processing.

11. Security Measures

We take appropriate security measures to protect your personal data from unauthorized access, disclosure, alteration, and destruction.

12. Changes to the Policy

We may update this GDPR Privacy Policy to reflect changes in our data processing practices. Any material changes will be communicated to you.

13. Contact Us

If you have questions, concerns, or requests related to your personal data or this policy, please contact us using the contact information provided in section 3.