General Provisions

  1. Data Controller:
    Mugavik OÜ (Registration code: 16046027)
    Legal address: Kudu tn 4a, 13516, Tallinn, Harjumaa
    Email: info@mugavik.ee
  2. E-store Management
    Mugavik OÜ is the owner and data controller of the MUGAVIK BAREFOOT online store, responsible for collecting, processing, and storing personal data in accordance with this privacy policy and applicable legal regulations.
  3. This Privacy Policy Covers:
    • What personal data is collected and how it is processed
    • The purpose and legal basis of personal data processing
    • To whom personal data may be transferred
    • Security measures and data retention periods
    • The rights of the data subject (customer) concerning their personal data

Collected Personal Data

  1. When placing an order and using the online store, we collect and process the following data:
    • Contact details: Name, phone number, email address
    • Delivery address for goods
    • Bank account number (necessary for refunds)
    • Order and payment details: Purchase history, purchase date, purchased goods, quantity, customer information
    • Customer support data (including inquiries, feedback)
  2. Technical Data (when visiting the website or using services):
    • IP address, device type, browser type, visited pages, visit duration
    • Cookies and other tracking technologies (e.g., Google Analytics, Facebook Pixel) to ensure website functionality and analyze usage
  3. Embedded Content from Other Websites:
    Our website may include third-party content (e.g., YouTube videos, images, articles). These third parties may collect data about your visit (e.g., cookies, IP address).

Purpose and Legal Basis of Data Processing

  1. Purposes:
    • Managing orders and delivering goods (fulfilling the contract with the customer)
    • Compiling an overview of products and services based on purchase history and analyzing customer preferences
    • Using the bank account number for processing refunds
    • Providing customer support (via email, phone, or contact form)
    • Ensuring website functionality and usage statistics (IP address, cookies)
    • Sending direct marketing communications (newsletters, notifications) with customer consent
  2. Legal Basis:
    • Contract fulfillment: Processing is necessary for fulfilling the contract (e.g., sale of goods)
    • Legal obligations: Such as accounting and consumer dispute resolution requirements
    • Consent: Use of cookies, sending direct marketing communications. Customers can withdraw consent at any time by notifying customer support via email

Use of Cookies

  1. What are Cookies?
    Cookies are small text files stored on your device to ensure website functionality and provide a better user experience.
  2. Types of Cookies:
    • Functional cookies: Necessary for basic website functions
    • Analytical cookies: Collect data about website usage (e.g., visit duration, visited pages) to improve performance
    • Marketing cookies: Used for displaying personalized ads and measuring campaign effectiveness
  3. Consent and Opt-out:
    • We always ask for your consent to use cookies through cookie consent tools that appear when loading the website
    • You can decline or delete cookies at any time in your browser settings

Data Sharing

  1. Third Parties:
    • Courier and transportation providers: Name, phone number, email address, and delivery address (if needed) are shared for order fulfillment
    • Payment service providers (Montonio Finance OÜ, Stripe Payments Europe, Ltd, PayPal, SEB Eesti AS, ESTO AS, Modena Estonia OÜ): Necessary personal data (e.g., payment details) is shared to process payments
    • Accounting service providers: To perform accounting operations
    • IT and data hosting providers (e.g., Zone Media OÜ): May have access to data to ensure website functionality
    • Analytics and marketing service providers (e.g., Google Analytics, Facebook Pixel): For analyzing website traffic, targeting ads, and improving user experience
  2. Contractual Obligations:
    • All authorized processors have agreements that require them to protect personal data and process it only according to our instructions

Security and Data Retention

  1. Security:
    • Personal data is stored on Zone Media OÜ servers in the European Union or European Economic Area, or in other countries deemed adequate by the European Commission
    • The online store applies appropriate physical, organizational, and IT security measures to protect personal data from accidental or unlawful destruction, loss, alteration, unauthorized access, or disclosure
  2. Retention Periods:
    • When closing an online store customer account, personal data is deleted unless retention is required for accounting or consumer dispute resolution
    • Purchases without a customer account: Purchase history is retained for 3 years
    • Payment and consumer dispute-related records: Retained until the claim is fulfilled or the limitation period expires
    • Accounting records: Retained for 7 years
    • Analytics data: Stored as per Google Analytics and Facebook Pixel settings or until anonymized

Data Subject Rights

  1. Access and Correction:
    • Registered users can view and correct their data via their user account
    • Non-registered users can access their data by contacting customer support
  2. Data Deletion:
    • Submit a deletion request via email: info@mugavik.ee
    • Requests are processed within one month, and the deletion timeline will be specified
  3. Data Portability:
    • You have the right to request the transfer of your personal data by sending an email request
    • Customer support will first verify your identity and inform you about the data that can be transferred
  4. Withdrawal of Consent:
    • If data processing is based on consent (e.g., marketing emails, cookies), you can withdraw consent at any time by notifying customer support
    • Withdrawal does not affect the lawfulness of processing before withdrawal

Direct Marketing

  • Your email address and phone number are used for marketing communications only with your explicit consent
  • If you no longer wish to receive marketing messages, you can unsubscribe via the link at the bottom of emails or by contacting customer support

Dispute Resolution

  • For any questions or disputes regarding personal data processing, please contact our customer support:
  • The supervisory authority is the Estonian Data Protection Inspectorate (info@aki.ee), where you can submit a complaint if your rights have been violated

This privacy policy is designed to ensure a secure and transparent shopping experience for you, our valued customer.

For any additional questions or concerns, please contact us at info@mugavik.ee.