GDPR (General Data Protection Regulation) Compliance

Introduction At Mother Mischief, we respect your privacy and are committed to protecting your personal…

Introduction

At Mother Mischief, we respect your privacy and are committed to protecting your personal information. We have implemented policies and procedures to comply with the European Union’s General Data Protection Regulation (GDPR).

Data Collection and Use

We only collect and process personal information that is necessary for our business purposes and to fulfill our obligations to you. We collect information such as your name, email address, phone number, and shipping address when you place an order on our website or subscribe to our newsletter. We also collect information about your browsing behavior, such as the pages you visit and the links you click on. This information may be collected through the use of cookies or other tracking technologies.

Lawful Basis for Processing We only process your personal information when we have a lawful basis for doing so. The lawful basis for processing your personal information may include:

  • The processing is necessary to fulfill our contract with you, such as processing your orders or responding to your inquiries.
  • The processing is necessary for our legitimate interests, such as improving our website or providing you with personalized marketing communications.
  • The processing is necessary to comply with legal obligations, such as tax or accounting requirements.
  • The processing is based on your consent, which you may withdraw at any time.

Data Subject Rights

Under the GDPR, you have certain rights regarding your personal information. These rights include:

  • The right to access your personal information
  • The right to rectify any inaccurate or incomplete personal information
  • The right to erasure of your personal information in certain circumstances
  • The right to restrict processing of your personal information in certain circumstances
  • The right to data portability of your personal information in certain circumstances
  • The right to object to processing of your personal information in certain circumstances

Data Security

We take the security of your personal information seriously and have implemented technical and organizational measures to protect your information from unauthorized access, disclosure, or modification. We also limit access to your personal information to those who have a legitimate need to access it.

Data Retention

We will only retain your personal information for as long as necessary to fulfill our business purposes and legal obligations. We will delete your personal information when it is no longer necessary for these purposes or when you withdraw your consent.

Contact Information

If you have any questions or concerns about our GDPR compliance or how we handle your personal information, please contact us at [email protected].

Updates

We may update this GDPR compliance document from time to time to reflect changes in our data processing practices or legal obligations. We encourage you to review this document periodically to stay informed about our GDPR compliance.