PRIVACY POLICY

Mosaique

 

1. INTRODUCTION

1.1 Overview and Scope

This Privacy Policy (“Policy”) applies to the collection, use, and handling of personal data by Mosaique, a clothing brand operating through the website itsmosaique.nl (“Website”). This Policy is designed to inform users of our Website about how we collect, use, protect, and handle their personal information in compliance with the General Data Protection Regulation (GDPR) and other relevant privacy laws.

1.2 Commitment to Privacy

Mosaique is deeply committed to respecting and protecting the privacy and personal data of our users. This commitment reflects our brand’s ethos, which focuses on the struggles people face in life and the importance of respecting individual experiences and stories.

1.3 Applicability

This Policy applies to all users of the Website, including visitors, customers, and any other individuals who interact with our services. It governs the data collected both online through the Website and offline through direct interactions with our brand.

1.4 Acceptance of the Policy

By accessing, browsing, or otherwise using the Website, you agree to the terms and conditions set forth in this Policy. If you do not agree with our practices and policies, you should not use our Website or services.

1.5 Contact Information

For any questions or concerns regarding this Policy or the handling of personal data, users may contact Mosaique at support@itsmosaique.nl.

2. INFORMATION COLLECTION

2.1 Types of Information Collected

2.1.1 Personal Identification Information

We collect information that can be used to identify you as an individual (“Personal Information”). This includes, but is not limited to, your name, email address, postal address, phone number, and payment information when you make a purchase, register for an account, or interact with our services.

2.1.2 Non-Personal Information

We also collect non-personal information that does not identify you as an individual. This includes, but is not limited to, browser type, device type, operating system, IP address, and the pages you visit on our Website. This information is used for analytics and to improve our Website and services.

2.2 Methods of Information Collection

2.2.1 Direct Collection

We collect information directly from you when you register on our Website, place an order, subscribe to a newsletter, respond to a survey, fill out a form, or provide us with feedback on our products or services.

2.2.2 Indirect Collection

We may also collect information about you from other sources, including social media platforms when you interact with our brand through these channels.

2.2.3 Automated Collection

Some information is automatically collected when you visit our Website. This includes technical information and usage details collected through cookies and other tracking technologies.

2.3 Consent and Voluntary Provision of Information

Providing personal information on the Website is voluntary. By providing your personal information, you consent to its collection and use in accordance with this Policy. You have the right to withdraw your consent at any time, subject to legal or contractual restrictions and reasonable notice.

3. USE OF INFORMATION

3.1 General Principles for the Use of Personal Information

Mosaique is committed to using personal information collected through itsmosaique.nl in a manner that is consistent with the principles of fairness, legality, and transparency, in accordance with the GDPR and other applicable privacy laws.

3.2 Purposes of Using Personal Information

3.2.1 To Provide and Improve Services

The primary use of personal information is to provide users with the products and services offered on our Website. This includes processing transactions, fulfilling orders, and providing customer support. Additionally, we use this information to improve our Website, services, and customer experiences.

3.2.2 Communication with Users

We use personal information to communicate with users regarding their orders, inquiries, and to provide updates about our products, services, and promotions. Users may opt-out of marketing communications at any time.

3.2.3 Personalization and User Experience

Personal information helps us to understand user preferences, enabling us to personalize and enhance the user experience on our Website, including the presentation of our content and products.

3.2.4 Legal Compliance and Protection of Rights

We may use personal information to comply with legal obligations, resolve disputes, and enforce our agreements. This includes using information for fraud prevention and risk management purposes.

3.3 Data Analysis and Research

Aggregate and anonymized data may be used for research and analytical purposes, helping us to understand market trends and customer needs, thereby enhancing our product offerings and marketing strategies.

4. DISCLOSURE OF INFORMATION

4.1 General Principles for the Disclosure of Personal Information

Mosaique maintains strict guidelines on the disclosure of personal information. Information is disclosed in a manner that is consistent with this Policy and applicable data protection laws.

4.2 Disclosure to Third Parties

4.2.1 Service Providers

Personal information may be shared with third-party service providers who perform services on our behalf, such as payment processing, order fulfillment, and data analysis. These service providers are bound by confidentiality agreements and are restricted from using the information for any other purpose.

4.2.2 Legal Requirements and Law Enforcement

We may disclose personal information if required by law, such as to comply with a subpoena or similar legal process, or when we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others, investigate fraud, or respond to a government request.

4.2.3 Business Transfers

In the event of a merger, acquisition, or sale of all or a portion of our assets, personal information may be transferred as part of the transaction, subject to the promises made in this Policy.

4.3 User Consent

Apart from the circumstances mentioned above, we will disclose personal information only with the user’s explicit consent.

4.4 International Transfer of Information

Given the international nature of our operations, personal information may be transferred to, and processed in, countries other than the country in which the user resides. These countries may have data protection laws that differ from the laws of the user’s country. By providing personal information to us, users consent to this transfer and processing of data.

5. INTERNATIONAL TRANSFERS

5.1 Transfer of Information Outside the European Economic Area (EEA)

In operating our Website and providing our services, it may be necessary for Mosaique to transfer personal information to locations outside the European Economic Area (EEA). This typically occurs when we engage with third-party service providers or when our data storage facilities are located outside the EEA.

5.2 Compliance with GDPR in Transfers

Mosaique ensures that any transfer of personal data outside the EEA is carried out in compliance with the General Data Protection Regulation (GDPR). We implement safeguards such as standard contractual clauses approved by the European Commission or relying on a service provider’s Privacy Shield certification, where applicable.

5.3 User Consent and Notification

By using our Website and providing personal information, users explicitly consent to such international transfers. Mosaique will take all steps reasonably necessary to ensure that user data is treated securely and in accordance with this Privacy Policy and no transfer of personal data will take place to an organization or a country unless there are adequate controls in place including the security of users’ data and other personal information.

5.4 User Rights in Case of International Transfers

Users have the right to inquire about and obtain information regarding the safeguards we have put in place for the international transfer of their personal data. Requests for such information can be directed to Mosaique at support@itsmosaique.nl.

6. COOKIES AND TRACKING TECHNOLOGIES

6.1 Use of Cookies and Similar Technologies

Mosaique’s Website uses cookies and similar tracking technologies to track the activity on our Website and hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier. These are sent to your browser from a website and stored on your device.

6.2 Types of Cookies Used

6.2.1 Session Cookies: To operate our Website. 6.2.2 Preference Cookies: To remember your preferences and various settings. 6.2.3 Security Cookies: For security purposes. 6.2.4 Advertising Cookies: To serve you with advertisements that may be relevant to you and your interests.

6.3 User Consent for Cookies

The first time a user visits the Website, we provide clear information about our use of cookies through a cookie banner and seek their consent for the use of certain types of cookies. Users have the option to accept all cookies, reject all, or customize their preferences.

6.4 Managing Cookies

Users can manage their cookie preferences through their browser settings, where they can refuse or restrict the use of cookies. However, if a user does not accept cookies, they may not be able to use some portions of our Website.

6.5 Use of Tracking Technologies for Analytics and Advertising

Besides cookies, we may use other tracking technologies such as beacons, tags, and scripts to collect and track information and to improve and analyze our Website. We may also work with third-party partners that use cookies and tracking technologies to provide advertisements on our behalf across the internet.

6.6 Privacy Policy Updates Regarding Cookies

We may update our cookies policy periodically and will reflect any changes on this page. Users are encouraged to frequently check this section for any changes.

7. CHILDREN’S PRIVACY

7.1 General Statement

Mosaique recognizes the importance of protecting the privacy and safety of children. Our Website and services are not designed for, nor intentionally targeted at, children under the age of 16 years. We do not knowingly collect or solicit personal information from individuals under the age of 16.

7.2 Age Limitation

7.2.1 Prohibition of Use by Children

If you are under 16 years of age, you are not permitted to use our Website or provide your personal information to us. If we discover that a child under 16 has provided us with personal information, we will take steps to delete such information from our servers immediately, in compliance with the GDPR and other relevant laws.

7.3 Parental Consent

7.3.1 Requirement for Parental Consent

In instances where the collection of personal information from children under the age of 16 is necessary, such as for specific services or products tailored to children, we will obtain parental consent prior to such collection.

7.4 Rights of Parents and Guardians

7.4.1 Access to Children’s Information

Parents and guardians have the right to request access to their child’s personal information that we have collected, to request its deletion, and to refuse further collection or use of such information. Requests should be directed to Mosaique at support@itsmosaique.nl.

7.5 Commitment to Privacy Standards for Children

Mosaique is committed to complying with all applicable laws and regulations regarding the collection of personal information from children, including the GDPR and the Dutch Data Protection Act.

8. SECURITY MEASURES

8.1 Commitment to Data Security

Mosaique is committed to ensuring the security of personal information. We take reasonable and appropriate measures to protect personal information from loss, misuse, unauthorized access, disclosure, alteration, and destruction.

8.2 Implementation of Security Measures

8.2.1 Technological Safeguards

We implement various technological safeguards such as encryption, firewalls, and secure server facilities. Our security measures are regularly reviewed and updated to reflect technological developments.

8.2.2 Organizational Measures

We also employ organizational measures such as staff training, internal policies on data access, and confidentiality agreements with employees and contractors.

8.3 Data Breach Response

8.3.1 Notification Procedures

In the event of a data breach, Mosaique will promptly investigate the matter. If it is determined that personal data has been compromised, we will take immediate steps to mitigate the breach and will notify affected individuals and relevant authorities as required by law, specifically within the timeframe mandated by the GDPR.

8.4 User’s Role in Security

8.4.1 Responsibility for Account Security

While we strive to protect personal information, the security of data also depends on users. Users are responsible for keeping their account passwords confidential and are encouraged to use strong passwords and change them regularly.

8.5 Continuous Improvement

Mosaique is committed to continuously improving our security measures and staying abreast of new security threats and developments in technology.

9. DATA RETENTION

9.1 Principles of Data Retention

Mosaique adheres to the principles of data minimization and storage limitation as outlined in the GDPR. We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

9.2 Retention Period

9.2.1 Determination of Retention Period

The retention period for personal data varies depending on the type of data and the purpose for which it is processed. We determine the appropriate retention period based on the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process the personal data, and the applicable legal requirements.

9.3 Deletion of Data

9.3.1 Procedures for Data Deletion

Upon expiration of the retention period, personal data is securely deleted or anonymized. If direct deletion is not possible (for example, because the data has been backed up), then Mosaique will securely store the data and isolate it from any further processing until deletion is possible.

9.4 User Requests for Data Deletion

9.4.1 Right to be Forgotten

Users have the right to request the deletion of their personal data under certain circumstances, as provided by the GDPR. This is also known as the ‘right to be forgotten.’ Requests for data deletion can be made by contacting Mosaique at support@itsmosaique.nl.

10. YOUR RIGHTS AND CHOICES

10.1 User Rights Under GDPR

As per the GDPR, users have certain rights regarding their personal data. These rights include:

10.1.1 Right to Access: The right to be informed of, and request access to, the personal data we process about you.

10.1.2 Right to Rectification: The right to request that we amend or update your personal data where it is inaccurate or incomplete.

10.1.3 Right to Erasure: The right to request the deletion of your personal data.

10.1.4 Right to Restrict: The right to request that we temporarily or permanently stop processing all or some of your personal data.

10.1.5 Right to Object: The right to object to us processing your personal data on grounds relating to your particular situation or for direct marketing purposes.

10.1.6 Right to Data Portability: The right to request a copy of your personal data in electronic format and the right to transmit that personal data for use in another party’s service.

10.2 Exercising Your Rights

To exercise any of these rights, please contact Mosaique at support@itsmosaique.nl. We will respond to your request in accordance with GDPR guidelines, typically within one month of receipt of the request.

10.3 Marketing Preferences

Users can opt out of marketing communications from Mosaique by following the unsubscribe instructions included in our marketing communications or by contacting us directly at support@itsmosaique.nl.

10.4 Complaints

If users have a concern about our handling of their personal data, they have the right to lodge a complaint with a supervisory authority, particularly in the European Union (EU) member state of their habitual residence, place of work, or place of the alleged infringement.

11. THIRD-PARTY LINKS AND SERVICES

11.1 Introduction to Third-Party Links and Services

The Website of Mosaique, itsmosaique.nl, may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. Mosaique does not control these third-party websites and is not responsible for their privacy statements or practices.

11.2 User Interaction with Third-Party Services

When users interact with third-party services through our Website, such as by clicking on a third-party link, the data they share is governed by the privacy policy of the third party, not this Privacy Policy.

11.3 Caution and Due Diligence

We encourage our users to read the privacy policy of every website they visit, especially if they intend to share personal information. Mosaique cannot guarantee the security or privacy practices of other sites.

11.4 Disclaimer Regarding Third-Party Services

Mosaique is not liable for any misuse of personal information by third-party websites or services that are accessed through links on our Website.

12. CHANGES TO PRIVACY POLICY

12.1 Commitment to Policy Updates

Mosaique reserves the right to update or change our Privacy Policy at any time. Such changes are effective when they are posted on this page.

12.2 Notification of Changes

It is the responsibility of users to review this Privacy Policy periodically for any changes. Continued use of the Website and our services after the posting of any changes to the Privacy Policy signifies acceptance of those changes.

12.3 Record of Changes

A historical record of changes made to the Privacy Policy will be maintained and made available upon request. Users can request access to previous versions of the Policy by contacting Mosaique at support@itsmosaique.nl.

12.4 Transparency in Policy Updates

In the case of significant changes to the policy, we will endeavor to provide a more prominent notice, possibly including email notifications of Privacy Policy changes to users who have registered an account with us.

13. COMPLIANCE WITH SPECIFIC LAWS AND REGULATIONS

13.1 Adherence to Legal Standards

Mosaique is committed to full compliance with all applicable laws and regulations concerning privacy and data protection. This includes, but is not limited to, the General Data Protection Regulation (GDPR) as well as any national laws and regulations relevant to our operations in the Netherlands and the European Union.

13.2 GDPR Compliance

Our data processing activities are guided by the principles of the GDPR, including lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, storage limitation, integrity, and confidentiality.

13.3 Compliance with National Laws

In addition to GDPR, we adhere to the Dutch Data Protection Act and any other relevant Dutch legislation that governs the processing of personal data.

13.4 Changes in Law

Mosaique is dedicated to continuously monitoring legal developments in data protection and privacy laws. We will adjust our practices and this Privacy Policy accordingly to ensure ongoing compliance.

13.5 Cooperation with Supervisory Authorities

Mosaique is committed to cooperating fully with data protection authorities and other regulatory bodies. We are prepared to undergo audits and provide information as required to demonstrate our compliance with applicable laws and regulations.

14. CONTACT INFORMATION

14.1 Contact Details for Privacy Matters

For any questions, concerns, or requests related to this Privacy Policy or our data processing practices, users are encouraged to contact Mosaique at the following:

Email: support@itsmosaique.nl

14.2 Data Protection Officer

Mosaique has appointed a Data Protection Officer (DPO) to oversee our compliance with data protection laws. The DPO can be contacted directly for matters related to the processing of personal data.

14.3 User Communication

We are dedicated to addressing any inquiries or concerns from users regarding their personal data and our privacy practices. All communications will be addressed promptly and in compliance with legal obligations.

14.4 Feedback and Suggestions

Mosaique values feedback and suggestions from our users concerning our Privacy Policy and data protection practices. Users are encouraged to provide their feedback, which will be considered in our ongoing efforts to improve our privacy standards.