Privacy policy

Privacy & Data Processing Notice (GDPR-Compliant)

1. Personal Information Collected

We may collect the following categories of personal information:

  • Contact information (such as name and email address)

  • Technical data (cookies, IP address, browsing behavior)

  • Social media identifiers, when voluntarily provided

  • Any other information submitted through website forms

This information is collected solely for purposes described in this notice.

2. Collection Methods

Personal information is collected through:

  • Website forms completed by the user

  • Cookies and similar tracking technologies

  • User interactions with our website

  • Social media engagement, when applicable

Cookies are used for analytics, personalization, and advertising purposes, in accordance with applicable laws.

3. Purpose of Processing

The personal information collected may be used for:

  • Creating and delivering personalized promotions on Instagram, Twitter (X), and other platforms

  • Improving marketing campaigns and user experience

  • Website analytics and performance monitoring

  • Responding to customer inquiries

  • Managing customer relationships

All processing activities are carried out in compliance with GDPR requirements.

4. Legal Basis for Processing (GDPR)

We process personal data based on one or more of the following legal bases:

  • User consent (Art. 6.1.a GDPR) – for personalized promotions, advertising cookies, and marketing communications

  • Legitimate interest (Art. 6.1.f GDPR) – for improving website performance and basic analytics

  • Contractual necessity (Art. 6.1.b GDPR) – when processing data required to fulfil an order or respond to requests

Users may withdraw their consent at any time.

5. Sharing of Personal Information

Personal information may be shared with:

  • Advertising platforms (such as Instagram, Meta, Twitter/X, Google Ads)

  • Analytics and marketing service providers

  • Technical partners who assist in operating the website

All third parties process data in compliance with GDPR and under appropriate data processing agreements (DPAs).

We do not sell personal data.

6. Data Protection & Security

We implement appropriate technical and organizational measures to protect personal information, including:

  • Encrypted data transmission (SSL)

  • Restricted access to personal information

  • Secure storage systems

  • Regular monitoring of security practices

While we strive to safeguard all information, no system is 100% secure.

7. Data Retention

Personal data is retained only for the time necessary to fulfil the purposes for which it was collected, and no longer than legally permitted.
Retention periods may vary based on:

  • marketing preferences

  • legal obligations

  • business needs

Users may request deletion at any time (see Section 8).

8. Customer Rights (Under GDPR)

Customers have the right to:

  • Access their personal information

  • Request correction or updating of data

  • Request deletion (“right to be forgotten”)

  • Withdraw consent

  • Object to certain types of processing, including personalized advertising

  • Request data portability

Requests can be submitted at any time by contacting us via the Contact Us form or emailing us directly.

9. Contact Information

For any questions or privacy-related requests, customers can contact us at:
info@basicsluxury.com

However, to ensure your message is properly received and does not end up in spam, we strongly recommend using the Contact Us form, including your order number where applicable.