Privacy policy

General Information

Unless otherwise stated below, the provision of your personal data is neither legally nor contractually required, nor necessary for the conclusion of a contract. You are not obliged to provide your data. Failure to provide it will have no consequences. This only applies as long as no other information is provided in the specific processing activities described below.

"Personal data" means any information relating to an identified or identifiable natural person.

Orders via Our Online Shop

To process your order, we need to collect and process certain personal data, such as your name, shipping and billing address, contact details, and payment information. This data is used exclusively for the fulfillment of your order and, if applicable, to set up a customer account.

Your data will be shared only to the extent necessary with:

• The shipping provider (e.g. DHL) for delivery

• The payment service provider (e.g. PayPal, Klarna, Apple Pay) for payment processing

We use the online shop system provided by Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland (“Shopify”) for hosting and presenting our store, based on a data processing agreement.

All data collected on our website is processed on Shopify's servers. Data may also be transmitted to Shopify Inc. (Canada), Shopify Data Processing (USA) Inc., or Shopify Payments (USA) Inc. If transferred to Canada, GDPR-compliant data protection is ensured via an adequacy decision by the EU Commission. Shopify’s U.S. entities are certified under the EU-U.S. Privacy Shield.

More information: https://www.shopify.com/legal/privacy

Legal basis: Art. 6(1)(b) GDPR
Your data will be deleted once your order has been fully processed and any legal retention periods have expired. If you have created a customer account, your data will remain stored until you delete the account. Accounts with no activity for over two years will be deleted.

Newsletter

You can subscribe to our newsletter via our website. The data you enter (name, email address) is used solely for sending the newsletter.
Legal basis: Art. 6(1)(a) GDPR (consent)

We use MailChimp (The Rocket Science Group LLC, 675 Ponce de Leon Ave NE, Atlanta, GA 30308, USA) to manage and send newsletters. Your data is stored on MailChimp servers in the USA and processed on our behalf.

To improve our emails, we use MailChimp’s analytics tools (e.g. open rates, clicks). MailChimp may also use data to improve its own services. You can find more details in MailChimp’s privacy policy: https://mailchimp.com/legal/privacy/

You may withdraw your consent at any time by emailing info@may-mia.com or using the unsubscribe link in any newsletter.

Contact via Email

If you contact us by email, your personal data (e.g. name, email address) will be processed only for the purpose of handling your inquiry.
Legal basis: Art. 6(1)(f) GDPR or Art. 6(1)(b) GDPR (if related to a contract)

Your data will be deleted once your inquiry has been fully resolved. You can object to the processing of your data at any time by emailing info@may-mia.com.

Cookies

Our website uses cookies to enhance functionality, analyze usage, and improve the shopping experience. Cookies are small text files that are stored on your device and help us recognize your browser when you return.

Some cookies are essential for technical reasons, others help us analyze visitor behavior (e.g. through Google Analytics), or serve marketing purposes.

You can control cookie settings in your browser and delete stored cookies at any time. Please note that disabling cookies may limit website functionality.

Browser-specific cookie management guides:

• Chrome

• Firefox

• Safari

Your Rights

Under the GDPR, you have the following rights:

• Right to access your personal data (Art. 15)

• Right to rectification (Art. 16)

• Right to erasure (Art. 17)

• Right to restrict processing (Art. 18)

• Right to data portability (Art. 20)

• Right to object to processing (Art. 21)

• Right to withdraw your consent at any time (Art. 7(3))

• Right to lodge a complaint with a supervisory authority (Art. 77)

To exercise your rights, contact us at:
info@may-mia.com

Data Security

We implement technical and organizational measures to secure your data against unauthorized access, loss, or misuse. These measures are continuously improved in line with technological developments.