🔒 Árija Skincare — Privacy Policy

Last Updated: 23.04.2025

Who We Are

Our website address is: www.arijaskincare.com.
Árija Skincare is operated by a private individual.
For any privacy-specific concerns, please contact: info@arijaskincare.com

What Personal Data We Collect and Why

We collect the following personal data:

  • Name, email address, billing and shipping addresses – for order fulfillment and communication.
  • Purchase history and transaction details – for accounting and customer support.
  • Technical data via cookies (browser, IP, device info) – for website performance tracking via Google Analytics.
  • Contact form submissions – via WPForms, retained for customer service purposes only.
  • Quiz responses related to skin health (in the future) – strictly confidential and never shared.

Legal basis: We collect personal data under GDPR Article 6, based on contract necessity, user consent, or legitimate interest.

Comments

Comments are disabled on our website.

Media

Our customers are currently not able to upload media to the website.

Contact Forms

Contact forms collect your name and email.
This data is used solely to respond to your queries.
We retain contact form submissions for up to 12 months for reference.

Cookies

We use cookies via:

  • WordPress core
  • Google Analytics
  • WPForms (session cookies) Visitors may adjust cookie settings through their browser.

Analytics

We use Google Analytics and Google Site Kit to analyze website traffic.
You can opt out by adjusting browser settings or using a browser plugin from Google.
Google’s Privacy Policy: https://policies.google.com/privacy

Who We Share Your Data With

We may share customer data with:

  • Stripe / Woo Payments – for secure transaction processing. Stripe Privacy Policy
  • Our manufacturer (Latvia) – for dropshipping purposes (shipping name, address, product ordered only).
    All third parties adhere to GDPR standards and use secure data transfer protocols.

How Long We Retain Your Data

  • Order data: 10 years (accounting and tax law compliance)
  • Contact forms: 12 months
  • Analytics: 26 months
  • Health quiz data (future): Until customer deletes their record or upon written request.

Your Rights

You have the right to:

  • Request a copy of your data
  • Request correction or deletion
  • Withdraw consent
  • File a complaint with a supervisory authority

Where Your Data Is Sent

Data is stored securely and may be transferred outside the EU to GDPR-compliant partners (e.g., Stripe).
Our manufacturer is located in Latvia (within the EU).

How We Protect Your Data

  • Secure hosting (SSL encryption)
  • Payment encryption via Stripe
  • Access limited to essential personnel only

Data Breach Procedures

In the event of a breach, we will notify affected users and relevant authorities within 72 hours as per GDPR guidelines.

Third Party Data

Currently, we do not receive user data from third-party advertisers or external sources.

Automated Profiling

We do not conduct any automated decision-making or profiling at this time.