General Data Protection Regulation (GDPR) – Regulation (EU)

[Last Updated: July 06, 2025]

At [Your Company Name], we are committed to protecting your personal data. This notice explains how we collect, use, and safeguard your personal information in accordance with the General Data Protection Regulation (GDPR).

1. Who We Are

[Your Company Name]
Registered in: Malta
Email: [Insert Email]
Address: [Insert Company Address]
We are the data controller responsible for the processing of your personal data on this website.

2. What Personal Data We Collect

When you interact with our website, we may collect the following types of personal data:

  • Name

  • Email address

  • Phone number

  • Shipping and billing addresses

  • Payment information (processed securely via third-party providers)

  • Purchase history

  • IP address and browser/device information

  • Marketing preferences and communication history

3. Why We Collect Your Data (Legal Basis)

We process your data under the following lawful bases:

  • Contract – to fulfill your orders and provide customer support

  • Consent – for email marketing and cookies (where applicable)

  • Legal obligation – for tax and accounting compliance

  • Legitimate interest – to improve our services and prevent fraud

4. How We Use Your Data

We use your data to:

  • Process and deliver your orders

  • Send order updates and customer support messages

  • Personalize your shopping experience

  • Send promotional emails (only if you’ve opted in)

  • Analyze website traffic and usage

  • Comply with legal obligations

5. How We Share Your Data

We may share your data with:

  • Payment providers (e.g., Shopify Payments, PayPal)

  • Shipping and delivery services

  • Email marketing platforms (e.g., Klaviyo, Yotpo)

  • Analytics providers (e.g., Google Analytics)

  • Legal and regulatory authorities when required

We do not sell or rent your personal data.

6. International Transfers

If your data is transferred outside the European Economic Area (EEA), we ensure it is protected by appropriate safeguards (e.g., Standard Contractual Clauses or adequacy decisions).

7. Your GDPR Rights

Under the GDPR, you have the right to:

  • Access your personal data

  • Correct or update inaccurate data

  • Request deletion of your data (“right to be forgotten”)

  • Object to processing or restrict how we use your data

  • Withdraw consent at any time

  • Data portability

  • Lodge a complaint with your national Data Protection Authority

To exercise any of these rights, please contact us at [Insert Email].

8. Data Retention

We retain your data only for as long as necessary to fulfill the purposes outlined in this notice, including legal and accounting obligations.

9. Cookies

We use cookies to enhance your browsing experience. You can manage or disable cookies through your browser settings. For more details, see our Cookie Policy.

10. Changes to This Notice

We may update this notice from time to time. The latest version will always be available on this page.

📬 Contact Us

If you have any questions about this GDPR notice or how your data is handled, contact:

  • By E-Mail: wecare-eu@natashadenona.com.
  • By Mail: Natasha Denona Trading Ltd;
  • Trident Park
    Notabile Gardens No. 2, Level 3
    Mdina Road, Zone 2
    Central Business District
    Birkirkara BKR 9037 CBD 2010
    Malta