This Privacy Policy describes how www.myrashopstore.com (the “Site”), built on WordPress and WooCommerce, collects and processes personal data of users who browse the Site and purchase products.
1. Data Controller
The Data Controller is:
Ilpa Adesivi Srl
Via G. Ferorelli 4 – Z.I, 70132 Bari, Italy
R.E.A. no. 152397 | Company Register Bari no. 00465900728
Email: info@myrashopstore.com
2. Personal data collected
The Site collects and processes the following types of personal data:
Browsing data
IP addresses, browser type, operating system, visited pages, access times. These data are used for security and statistical purposes only.
Customer account data
Name, surname, email address, billing and shipping address, phone number.
Order data
Information required to process orders, payments, shipping, returns, and customer support.
Payment data
Payments are processed through secure third-party gateways.
The Data Controller does not store or directly access full payment card details.
3. Purpose of processing
Personal data are processed to:
-
allow website navigation;
-
manage WooCommerce customer accounts;
-
process and ship orders;
-
handle returns, refunds, and customer support;
-
comply with legal and tax obligations;
-
prevent fraud and misuse;
-
send marketing communications only with explicit consent.
4. Legal basis
Processing is based on:
-
performance of a contract;
-
compliance with legal obligations;
-
user consent;
-
legitimate interest related to security and service improvement.
5. Processing methods and security
Data are processed using electronic tools and appropriate technical and organizational security measures, including HTTPS encryption and restricted access.
6. Data retention
-
Order and tax data: retained as required by law;
-
Account data: until deletion is requested;
-
Marketing data: until consent is withdrawn.
7. Data sharing
Data may be shared with trusted third parties such as:
-
hosting and IT service providers;
-
shipping and logistics partners;
-
payment gateways;
-
accounting and legal consultants;
-
email marketing services.
These parties act as Data Processors or independent Controllers in compliance with GDPR.
8. Data transfer outside the EU
Some integrated services may transfer data outside the EU.
Such transfers take place only with adequate safeguards as required by GDPR.
9. User rights
Users have the right to access, rectify, delete, restrict or object to processing, withdraw consent, request data portability, and lodge a complaint with the competent authority.
Requests can be sent to info@myrashopstore.com.
10. Policy updates
This Privacy Policy may be updated at any time. Changes will be published on this page.
