Privacy Policy

Privacy Policy & Data Management

1) Information on Data Collection and Contact Details

1.1 Thank you for visiting our website and for your interest in our brand.
Here you will find information on how we handle your personal data when you browse our site. “Personal data” means any information that can identify you directly or indirectly.

1.2 The data controller, under the General Data Protection Regulation (GDPR), is Evelyn’s Light.
The data controller is the individual or entity that determines the purposes and means of processing personal data.

1.3 To protect your data and sensitive content (such as orders or inquiries), our website uses SSL/TLS encryption.
You can recognize a secure connection by “https://” and the lock symbol in your browser.

2) Data Collected While Browsing

When you use our site without registering or entering personal information, we collect only the data automatically transmitted by your browser (server logs), including:

  • Website visited

  • Date and time of access

  • Amount of data transferred

  • Referring URL

  • Browser used

  • Operating system

  • IP address (possibly anonymized)

Processing is based on GDPR Art. 6(1)(f), our legitimate interest in improving site security and functionality.
Data will not be shared with third parties except where legally required or in cases of suspected unlawful activity.

3) Cookies

To improve your browsing experience, we use session cookies (deleted when you close your browser) and persistent cookies (saved to recognize your browser on future visits).

Some cookies make the checkout process easier (e.g., saving your cart).
If cookies process personal data, this is based on GDPR Art. 6(1)(b) (contract performance) or Art. 6(1)(f) (legitimate interest in site optimization).

We may work with advertising partners who place third-party cookies. You will receive a separate notice in such cases.

You can manage or block cookies in your browser settings:

  • Internet Explorer

  • Firefox

  • Chrome

  • Safari

  • Opera

❗ Blocking cookies may limit site functionality.

4) Contacting Us

When you contact us (via form or email), we collect the data you provide voluntarily.
This is used solely to process your request.

Legal basis: GDPR Art. 6(1)(f) (legitimate interest).
If your request relates to a contract, GDPR Art. 6(1)(b) also applies.

Data is deleted once the request has been completed, unless retention is required by law.

📩 Contact email: support@evelynslight.com

5) Account Creation & Contracts

Under GDPR Art. 6(1)(b), we process your data to complete orders or account registrations.
Required fields are marked as mandatory.
You may request account deletion at any time by emailing us.

6) Use of Data for Marketing Purposes

6.1 Newsletter
If you subscribe, you will receive updates and exclusive offers.
We only require your email and use a double opt-in system.
You can unsubscribe anytime via the link or by contacting us.

6.2 Existing Customers
If you provided your email during a purchase, we may send promotions about similar products.
You can opt out at any time.

7) Data Processing for Shipping

Your data is shared with carriers and payment providers only as needed to complete your order.
If you use PayPal or other third-party services, their policies apply.

8) Review Requests

With your consent, we may send you a one-time email inviting you to leave a review.
You can withdraw consent at any time.

9) Social Media & Plugins

We use plugins for Facebook, Instagram, and Google+ through the Shariff solution, which protects your data until you actively interact with the plugin.

10) Online Marketing

We may use Google Ads or DoubleClick, subject to your Google account privacy settings.

11) Web Analytics

We use Google Analytics with IP anonymization enabled to generate anonymous statistics on site usage.

12) Remarketing & Retargeting

We may use tools like Facebook Pixel or Google Ads Remarketing to show you relevant offers, subject to your explicit consent.

13) Your Rights

You have the right to:

  • Access your data

  • Correct or delete your data

  • Restrict processing

  • Data portability

  • Object to processing

  • Withdraw consent

  • File a complaint with a supervisory authority

14) Data Retention

We store your data only as long as necessary to fulfill the purposes for which it was collected or as required by law.
When no longer needed, your data will be deleted unless a legitimate interest justifies retention.