Privacy Policy

Last updated: 6 March 2025

This Privacy Policy describes how Shaklyrasyghikil (“we”, “us”, “our”) collects, uses, stores, and protects your personal data when you use our website https://shaklyrasyghikil.world (the “Website”) and related services. We process personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”), the Dutch Implementation Act (Uitvoeringswet AVG), and other applicable data protection laws.

1. Data controller

The data controller responsible for your personal data is:

Shaklyrasyghikil
Overtoom 392, 1054 JS Amsterdam, Netherlands
Email: office@shaklyrasyghikil.world
Phone: +31206183772

For any questions about this Privacy Policy or your personal data, you may contact us at the above address or email.

2. Personal data we collect

We may collect and process the following categories of personal data:

• Identity and contact data: name, email address, telephone number, and postal address when you place an order, contact us, or subscribe to communications.
• Transaction and order data: order details, payment-related information (we do not store full payment card numbers; payment processing may be handled by third-party providers), delivery address, and order history.
• Technical and usage data: IP address, browser type and version, device information, time zone, pages visited, and how you use the Website. This may include data collected via cookies and similar technologies as described in our Cookie Policy.
• Communication data: content of messages you send to us (e.g. via contact forms or email) and records of correspondence.
• Consent and preference data: your choices regarding cookies, marketing, and other preferences where applicable.

We do not knowingly collect special categories of data (e.g. health, race, religion) unless you voluntarily provide them in a message and we have a lawful basis to process them.

3. Legal basis and purposes of processing

We process your personal data only where we have a lawful basis under the GDPR:

• Contract performance: to process and deliver your orders, manage your account, and provide customer support.
• Legal obligation: to comply with tax, accounting, and other legal obligations (e.g. retention of invoices).
• Legitimate interests: to improve the Website, prevent fraud, ensure security, and defend our legal rights, where such interests are not overridden by your rights.
• Consent: where you have given clear consent (e.g. for non-essential cookies, marketing communications). You may withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

Purposes include: order fulfilment and delivery; customer service; website operation and security; analytics and improvement of our services; compliance with law; and, where you have consented, marketing and personalised content.

4. How we collect your data

We collect data:

• Directly from you when you fill in forms (e.g. order form, contact form), when you contact us by email or phone, or when you subscribe to newsletters or other communications.
• Automatically when you use the Website (e.g. IP address, cookies, and usage data) as set out in our Cookie Policy.
• From third parties only where necessary (e.g. payment or delivery providers) and in line with this policy and applicable law.

5. Data retention

We retain your personal data only for as long as necessary for the purposes for which it was collected and to comply with legal obligations.

• Order and customer data: generally for the duration of the commercial relationship plus 7 years for tax and legal compliance (Dutch law).
• Contact and correspondence: for the time needed to resolve your request and any follow-up, and where relevant for legal claims or obligations.
• Marketing and consent-based data: until you withdraw consent or object, or until we no longer use the data for that purpose.
• Technical and log data: as specified in our Cookie Policy and internal retention schedules, typically no longer than necessary for security and analytics.

After the retention period, we securely delete or anonymise your data so it can no longer identify you.

6. Security measures

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction, including:

• Use of HTTPS and encryption for data in transit where applicable.
• Access controls and limited access to personal data on a need-to-know basis.
• Secure storage and secure disposal of data when no longer needed.
• Regular review of our security practices and, where applicable, use of reliable service providers that commit to appropriate security and confidentiality.

Despite our efforts, no method of transmission or storage over the internet is completely secure. We encourage you to use strong passwords and to contact us if you suspect any unauthorised use of your data.

7. Sharing and international transfers

We may share your data with:

• Service providers: payment processors, delivery and logistics partners, hosting and IT support, and analytics or marketing tools, acting as processors on our instructions.
• Legal and public authorities: when required by law or to protect our rights, safety, or property.

We do not sell your personal data to third parties. Where we transfer data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place (e.g. adequacy decisions, Standard Contractual Clauses, or other mechanisms approved under GDPR). Details can be provided on request.

8. Your rights under the GDPR

Subject to applicable law, you have the right to:

• Access: obtain confirmation as to whether we process your data and a copy of your personal data.
• Rectification: have inaccurate or incomplete data corrected.
• Erasure: request deletion of your data in certain circumstances (e.g. where it is no longer necessary or you withdraw consent).
• Restriction: request that we limit processing in certain situations (e.g. while accuracy is verified).
• Data portability: receive your data in a structured, commonly used format where processing is based on contract or consent and is carried out by automated means.
• Object: object to processing based on legitimate interests or to processing for direct marketing.
• Withdraw consent: where processing is based on consent, withdraw it at any time.

To exercise these rights, contact us at the address or email above. We will respond within one month, subject to any extension permitted by law. You also have the right to lodge a complaint with a supervisory authority. In the Netherlands, the relevant authority is the Autoriteit Persoonsgegevens (Dutch Data Protection Authority), https://autoriteitpersoonsgegevens.nl.

9. Children

Our Website and services are not directed at children under 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us and we will delete it promptly.

10. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in practice or law. The “Last updated” date at the top will be revised. We encourage you to review this page periodically. Where changes are material, we may notify you by email or a notice on the Website where appropriate.

11. Contact

For any questions about this Privacy Policy or our processing of your personal data, please contact:

Shaklyrasyghikil
Overtoom 392, 1054 JS Amsterdam, Netherlands
Email: office@shaklyrasyghikil.world
Phone: +31206183772