Privacy Policy

Last Updated: 08.05.2025

Privacy Policy - Social Shops OÜ

‍1. Introduction

‍This Privacy Policy explains how Social Shops OÜ ("we", "us", "our") collects, uses, shares, and protects personal data in accordance with the General Data Protection Regulation (EU) 2016/679 ("GDPR"). Social Shops OÜ is a private limited company registered in Estonia, with its address at Harju maakond, Tallinn, Kesklinna linnaosa, Tornimäe tn 5, 10145. Our services are intended for users who are at least 18 years old. By using our services, you agree to the collection and use of information in accordance with this policy.

‍2. What Data We Collect

‍We may collect the following types of data depending on your relationship with us (as an influencer partner or a store customer):

Influencers:
- Full name
- Email address
- Phone number (optional)
- Social media handles
- Payment details (e.g., bank info, PayPal)
- Tax ID or business registration number
- Business address (if applicable)

Customers:
- Full name
- Email address
- Shipping and billing address
- Purchase history
- Payment method (processed via third-party gateways)
- Order notes or preferences

Additionally, we collect data through cookies and analytics platforms (e.g., Google Analytics, Meta Pixel) including:
- IP address
- Device and browser type
- Session activity and page visits
- Referrer URLs

3. How We Use Your Data

‍We use personal data for the following purposes:

For Influencers:
- To onboard and manage your store
- To process payments and invoices
- To provide customer and technical support
- To communicate updates or changes to our services
- To analyze and improve your store performance

For Customers:
- To fulfill and deliver your orders
- To send transactional emails (e.g., order confirmations, shipping updates)
- To handle support inquiries or return requests
- To personalize your shopping experience
- To send marketing content (only with your consent)

We may also use your data to perform internal analytics, segment audiences, and improve platform functionality. We do not use your personal data for automated decision-making that significantly affects you.

‍4. Legal Basis for Processing

‍Under GDPR, we rely on the following lawful bases to process your data:
- Consent (for marketing, newsletters, and cookies)
- Contractual necessity (to fulfill orders and manage influencer partnerships)
- Legal obligations (e.g., tax reporting)
- Legitimate interests (e.g., platform improvements, fraud prevention)

‍5. Sharing Your Data

‍We only share your data with trusted third-party service providers who support the functionality of Social Shops. These include:
- Shopify (storefront hosting and processing)
- Stripe and PayPal (payment processing)
- Printful or similar (product manufacturing and fulfillment)
- Email service providers (e.g., Mailchimp)
- Analytics providers (e.g., Google Analytics, Meta Pixel)

Some of these services may store or process data outside the EU. When that occurs, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or the provider's adherence to an adequacy decision by the European Commission.

‍6. Cookies and Tracking Technologies

‍We use cookies and similar technologies to analyze traffic, understand user behavior, and improve our services. Our website displays a cookie consent banner allowing users to control their preferences.

Types of cookies used:
- Essential cookies (required for basic site functionality)
- Analytics cookies (to measure performance)
- Marketing cookies (for retargeting and advertising)

You can manage your cookie preferences through our banner or through your browser settings.

‍7. Marketing Communications

‍We may send marketing emails to users who have explicitly opted in through a form, checkbox, or subscription.

These emails may include:
- Product drops and launch updates
- Promotions and discounts
- Content and news about Social Shops

You can unsubscribe at any time by clicking the link in the footer of the email or contacting us directly at contact@social-shops.com. We also send necessary transactional emails regardless of opt-in status (e.g., receipts, order status).

‍8. Your Rights Under GDPR

‍Under the GDPR, you have the right to:
- Access the personal data we hold about you
- Request correction of inaccurate or incomplete data
- Request deletion of your data (right to be forgotten)
- Restrict or object to certain processing
- Data portability (where applicable)
- Withdraw consent (e.g., for marketing)
- Lodge a complaint with a supervisory authority

To exercise these rights, contact us at contact@social-shops.com. We will respond as fast as possible after receiving your request.

‍9. Data Security

‍We take data protection seriously and implement technical and organizational measures to safeguard personal data. This includes:
- Encrypted storage (where supported by third-party platforms)
- Role-based access control for our internal team
- Use of secure platforms like Shopify and Stripe for data-heavy operations
- Regular reviews of data access and internal security practices

‍10. Retention of Data

‍We retain personal data only for as long as necessary:
- For influencers, data is retained throughout the business relationship and as required for legal or accounting purposes.
- For customers, order data may be stored for up to 7 years in accordance with EU tax regulations.
- Marketing data is stored until you unsubscribe or request deletion.

‍11. Contact Us

‍If you have questions or concerns about this Privacy Policy or how we handle your data, you can reach us at:

Email: contact@social-shops.com 
Company: Social Shops OÜ 
Address: Harju maakond, Tallinn, Kesklinna linnaosa, Tornimäe tn 5, 10145 
Governing Law: EU General Data Protection Regulation (GDPR)


‍