Privacy Policy

Privacy Policy

Effective Date: 16th December 2024
Website Name: BohoPlantHeaven
Business Name: Giannis Hadjidemetriou
Address: Psaron 2, Tseri, Nicosia, Cyprus, 2480
Contact Email: [email protected]

Introduction

Welcome to BohoPlantHeaven! We value your privacy and are committed to protecting your personal data. This privacy policy outlines how we collect, use, share, and safeguard your information in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

By using our website, you agree to the practices described in this policy. If you have any questions, please contact us at [email protected].

1. Data We Collect

We collect and process the following categories of personal data:

1. Personal Identification Information:
   • Name, email address, phone number, shipping and billing address.
2. Payment Information:
   • Payment card details (processed securely via third-party payment providers).
3. Account Information:
   • Login credentials if you create an account.
4. Order Information:
   • Details of purchases made on our website.
5. Technical Information:
   • IP address, browser type, and usage data collected via cookies or similar technologies.
6. Communication Data:
   • Messages or inquiries you send via our contact forms or email.

2. How We Use Your Data

We use your personal data for the following purposes:

• To process and deliver your orders.
• To communicate with you about your orders, inquiries, or account.
• To send promotional offers (only with your consent).
• To improve our website, products, and services.
• To detect, prevent, and address fraudulent or illegal activities.

3. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Performance of a Contract: To fulfill your orders and provide services.
• Consent: For email marketing or other non-essential activities.
• Legitimate Interests: To improve our services and address customer inquiries.
• Legal Obligations: To comply with applicable laws and regulations.

4. Sharing Your Data

We do not sell your personal data to third parties. However, we may share your data with trusted partners to provide services, such as:

• Payment Providers: To process transactions securely.
• Shipping Companies: To deliver your orders.
• IT and Analytics Providers: To maintain and improve our website.
• Legal Authorities: When required by law or to protect our legal rights.

All third parties are contractually obligated to handle your data securely and only for the specified purposes.

5. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance your experience. Cookies may collect data about:

• Website usage and preferences.
• Session information to keep you logged in.
• Marketing and analytics to improve our services.

You can manage your cookie preferences via your browser settings. For detailed information, refer to our Cookie Policy.

6. Data Retention

We retain your data only as long as necessary to fulfill the purposes outlined in this policy, including:

• Order records: 7 years (for tax and legal compliance).
• Marketing data: Until you opt out.
• Account data: Until you delete your account or request deletion.

7. Data Security

We implement robust security measures to protect your data, including:

• Encryption of sensitive information.
• Secure payment gateways.
• Regular monitoring of systems for vulnerabilities.

Despite our efforts, no system is 100% secure. Please notify us immediately if you suspect a data breach.

8. Your Rights Under GDPR

As an EU-based user, you have the following rights:

1. Access: Request a copy of the personal data we hold about you.
2. Rectification: Correct inaccurate or incomplete data.
3. Erasure: Request deletion of your data where legally permissible.
4. Restriction: Limit how we process your data in certain circumstances.
5. Portability: Receive your data in a structured, machine-readable format.
6. Objection: Opt out of certain processing activities, such as direct marketing.
7. Withdraw Consent: Revoke consent for processing activities relying on it.

To exercise your rights, contact us at [email protected].

9. International Data Transfers

If your data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place to protect your information in compliance with GDPR.

10. Changes to This Policy

We may update this privacy policy to reflect changes in our practices or legal requirements. The latest version will always be available on our website. Significant updates will be communicated to you via email or a prominent notice.

11. Contact Information

For questions, concerns, or requests regarding your data, please contact us:

• Email: [email protected]
• Address: Psaron 2, Tseri, Nicosia, Cyprus, 2480

Thank you for trusting BohoPlantHeaven with your personal data. Your privacy is our priority!