top of page

Privacy Policy 

Last updated:  July 8, 2024

 

CHIC LIFE ("we", "our", or "us") respects the privacy of our users and is committed to protecting their personal data in accordance with applicable data privacy laws, including the GDPR and Irish data protection laws. This Privacy Policy explains how we collect, use, and process personal data from you in connection with your use of our website (www.chiclifeatelier.com), our blog, and our online store ("Services"). By using our Services, you agree to the terms of this Privacy Policy.

1. Our Role

CHIC LIFE provides Services to both individual users ("Users") and businesses ("Merchants").

  • Users: If you use our Services for personal purposes (e.g., reading our blog), we are the data controller of your personal data.

  • Merchants: If you use our Services to sell products to customers, we act as both a data controller (for your contact and payment information) and a data processor (for your customers' information) in accordance with our Data Processing Terms.

Data Protection Laws

We comply with all applicable data protection laws, including the General Data Protection Regulation (GDPR) and Irish data protection laws.

​​​

2.  Information We Collect and How We Use It

The types of personal information we collect depend on how you interact with our Services. We collect the following categories of information:

  • Identifiers: Your name, email address, and other contact information.

  • Payment Information: Billing and payment details (we do not store full payment card information).

  • Commercial Information: Information about the Services you use and your preferences.

  • Device and Usage Information: IP address, device type, browser type, pages visited, and cookies.

  • Location Information: General location information based on your IP address.

We use this information for the following purposes:

  • To provide and improve our Services: We use your information to deliver our blog content, process orders in our online store, and improve your overall experience.

  • To communicate with you: We may use your information to send you marketing emails, respond to your inquiries, and provide customer support.

  • To personalize your experience: We may use your information to tailor content and offers to your interests.

  • To comply with legal obligations: We may process your information to comply with applicable laws and regulations.

We will only collect and process your personal data where we have a lawful basis to do so under the GDPR. This includes where it is necessary for the performance of a contract with you, where we have your consent, or where it is necessary for our legitimate interests (provided these are not overridden by your rights and freedoms).

Additional Considerations under Irish Law:

  • We will be transparent about how we collect and use your data.

  • We will only collect the minimum amount of data necessary to fulfill our purposes.

  • We will not keep your data for longer than is necessary.

  • We will take appropriate security measures to protect your data.

  • We will respect your rights under the GDPR, including the right to access, correct, and delete your data.

 

3.   How We Collect Your Data

We collect data from you in the following ways:

  • Directly from You: When you interact with our website, subscribe to our newsletter, make a purchase, or contact us.

  • Cookies and Similar Technologies: We use cookies and other tracking technologies to collect information about your browsing behavior on our website. For more information, please see our Cookie Policy [link to cookie policy].

  • Third-Party Services: We may receive information about you from third-party services that we use to support our business operations, such as payment processors, email marketing platforms, and analytics providers.

Under Irish Law and GDPR:

  • We will always obtain your consent before collecting any personal data using cookies or similar technologies.

  • We will clearly explain how we use cookies and other tracking technologies in our Cookie Policy.

  • We will only use third-party services that are GDPR compliant and have adequate safeguards in place to protect your personal data.

  • You have the right to object to the processing of your personal data for direct marketing purposes. You can unsubscribe from our marketing emails at any time by clicking the "unsubscribe" link at the bottom of the email.

4.    How We Use Your Data

We use your data for the following purposes:

  • Providing Our Services: To create and manage your account, process orders, provide customer support, and improve our services. For this, we collect and process identifiers, payment information, and commercial information.

  • Legal Obligations: To comply with applicable laws and regulations, including sanctions screening.

  • With Your Consent: To send you marketing communications, newsletters, or other information you have requested. We will only do this if you have explicitly given us your consent.

  • Analytics and Personalization: To analyze how you use our Services, personalize your experience, and improve our website and offerings. We use device and unique identifiers, as well as cookies and similar technologies, for this purpose.

  • Communications: To respond to your inquiries, provide customer support, and engage in conversations with you. We may monitor or record calls or chats for quality assurance and dispute resolution purposes.

  • Security and Fraud Prevention: To detect, investigate, and prevent fraudulent or illegal activity.

  • Service Improvement: To analyze usage patterns, improve our website and services, and develop new products.

  • Marketing and Advertising: To send you marketing emails and show you relevant ads, if you have consented to receive them.

Under Irish Law and GDPR:

  • We will only use your data for the purposes we have stated in this Privacy Policy.

  • We will not use your data for any purpose that is incompatible with the purposes for which we collected it.

  • We will keep your data for no longer than is necessary for the purposes for which we collected it.

  • We will take appropriate technical and organizational measures to protect your data from unauthorized access, use, disclosure, alteration, or destruction.

  • You have the right to access, correct, and delete your personal data, as well as the right to object to the processing of your personal data for direct marketing purposes.


 

5.    Information Collected About Our Merchant's Customers

In providing services to our Merchants, we may collect and process personal data about their customers ("Customer Data") on their behalf. This data typically includes names, email addresses, shipping addresses, and other information necessary to fulfill orders.

Important Note for Customers of Merchants:

If you are a customer of one of our Merchants, please note that they are the data controller of your personal data. This means that they are responsible for how your data is collected, used, and protected. Please refer to the Merchant's privacy policy for more information about how they handle your data. You should contact the Merchant directly if you have any questions or concerns about their privacy practices.

CHIC LIFE's Role as Data Processor:

When processing Customer Data, we act as a data processor on behalf of our Merchants. This means that we only process the data according to their instructions and in compliance with applicable data protection laws, including the GDPR. We have implemented appropriate technical and organizational measures to ensure the security of your data.

6.    Sharing Your Personal Data

We may share your personal data with the following types of third parties:

  • Service Providers: We engage trusted third-party service providers to assist us in delivering our Services. These providers may have access to your personal data but are only permitted to use it for the specific purposes for which we have engaged them. This includes hosting providers, payment processors, email marketing platforms, and analytics providers.

  • Affiliates: We may share your personal data with our affiliated companies for business purposes.

  • Merchants (if applicable): If you are a customer of one of our Merchants, we may share your personal data with them to fulfill your order.

  • Legal Requirements: We may disclose your personal data if required to do so by law or in response to a valid legal request, such as a court order or subpoena.

  • Business Transfers: In the event of a merger, acquisition, or other business transaction, your personal data may be transferred to the new owner.

  • With Your Consent: We may share your personal data with other parties if you have given us your explicit consent to do so.

Under Irish Law and GDPR:

  • We will only share your personal data with third parties who have implemented appropriate safeguards to protect your data.

  • We will ensure that any transfer of your personal data outside of the European Economic Area (EEA) is done in accordance with the GDPR.

  • We will not sell your personal data to any third party.

  • You have the right to object to the processing of your personal data for direct marketing purposes.


7.    Data Retention

We will retain your personal data for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

  • If you have a CHIC LIFE account, we will retain your data for as long as your account is active or as needed to provide you with our Services.

  • If you have interacted with our website or blog without creating an account, we will retain your data for as long as necessary to comply with legal obligations, resolve disputes, or protect our legitimate interests.

  • We may retain anonymized or aggregated data for analytical purposes indefinitely.

Under Irish Law and GDPR:

  • We will not retain your personal data for longer than is necessary for the purposes for which it was collected.

  • We will review our data retention practices regularly and delete or anonymize data that is no longer needed.

  • You have the right to request that we delete your personal data if it is no longer necessary for the purposes for which it was collected.



8.    Information Security We take the security of your personal data seriously and are committed to protecting it from unauthorized access, use, disclosure, alteration, or destruction. We implement appropriate technical and organizational measures to safeguard your data, including:

  • Encryption of sensitive data in transit and at rest

  • Secure data storage and access controls

  • Regular security assessments and audits

  • Employee training on data protection best practices

We encourage you to take steps to protect your personal information as well, such as:

  • Creating strong, unique passwords for your CHIC LIFE account

  • Logging out of your account after each session

  • Avoiding sharing sensitive information with us that you do not feel comfortable disclosing

Under Irish Law and GDPR:

  • We are legally obligated to implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk of processing your personal data.

  • We will promptly notify you and the relevant authorities in the event of a data breach that is likely to result in a risk to your rights and freedoms.


9.    Your Choices Regarding Your Data

You have the following choices regarding your personal data:

A. Account Information: You can access, update, or delete your account information by logging into your CHIC LIFE account or contacting us at bmottadesing@icloud.com.

B. Marketing Communications: You can opt-out of receiving promotional emails from us by clicking the "unsubscribe" link at the bottom of any email or by contacting us at bmottadesing@icloud.com.

C. Cookies and Tracking Technologies: You can manage your cookie preferences through your browser settings. Most browsers allow you to block or delete cookies. However, please note that disabling cookies may affect your experience on ourwebsite. You can find more information about how we use cookies in our Cookie Policy.

D. Analytics: We use Google Analytics to analyze how users interact with our website. You can opt-out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on.

Under Irish Law and GDPR:

  • You have the right to access the personal data we hold about you.

  • You have the right to request that we correct any inaccurate personal data we hold about you.

  • You have the right to request that we erase your personal data in certain circumstances.

  • You have the right to restrict the processing of your personal data in certain circumstances.

  • You have the right to object to the processing of your personal data, including for direct marketing purposes.

  • You have the right to data portability, which means you can request that we provide you with your personal data in a structured, commonly used, and machine-readable format.

If you would like to exercise any of these rights, please contact bmottadesing@icloud.com.

 


10.    Additional Disclosure for European Residents

If you are a User or a data subject related to a Merchant located in the European Economic Area (EEA) or the United Kingdom (UK), you have certain rights under the General Data Protection Regulation (GDPR).

A. Roles

We may act as either a data controller or a data processor, depending on the circumstances:

  • Controller: When we collect and use your personal data for our own purposes, such as providing you with our blog content or processing your order in our online store.

  • Processor: When we process your personal data on behalf of a Merchant to fulfill their order.

B. Lawful Basis for Processing

We will only process your personal data where we have a lawful basis to do so under the GDPR. This includes:

  • Your consent

  • The performance of a contract with you

  • Compliance with a legal obligation

  • Our legitimate interests (provided these are not overridden by your interests and fundamental rights)

C. Data Transfers

Your personal data may be transferred to, and processed in, countries outside of the EEA, including the United States. We will ensure that any such transfers are made in compliance with the GDPR, such asby using standard contractual clauses.

D. Your Rights

Under the GDPR, you have the following rights:

  • Access: You have the right to request access to your personal data.

  • Rectification: You have the right to request that we correct any inaccurate or incomplete personal data.

  • Erasure: You have the right to request that we erase your personal data in certain circumstances.

  • Restriction of Processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.

  • Objection: You have the right to object to the processing of your personal data, including for direct marketing purposes.

  • Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to have it transmitted to another controller.

  • Withdrawal of Consent: If we are processing your personal data based on your consent, you have the right to withdraw your consent at any time.

GDPR Complaints

If you have a complaint about our data protection practices, you can contact our Data Protection Officer at bmottadesign@icloud.com. You also have the right to lodge a complaint with the Irish Data Protection Commission.



11.    Additional Disclosures for California Residents

This section provides additional information about the rights of California residents under the California Consumer Privacy Act (CCPA) as it relates to the personal information we collect and process in our role as a business.

A. Notice at Collection

For information about the personal information we collect, how we use it, how we collect it, and with whom we share it, please refer to sections 2, 3, 4, and 6 of this Privacy Policy, as well as our Cookie Policy. For information on how long we keep your information, please refer to section 7.

B. Categories of Personal Information Disclosed and Categories of Recipients

For details on the types of personal information we disclose and the categories of recipients, please refer to section 6 of this Privacy Policy.

C. Your Rights Under the CCPA

If you are a California resident, you have the following rights under the CCPA:

  • Right to Know: You have the right to request information about the personal information we have collected about you in the past 12 months, including the categories of information, the sources of the information, the purposes for collecting it, and the categories of third parties with whom we have shared it.

  • Right to Access: You have the right to request a copy of the specific personal information we have collected about you.

  • Right to Delete: You have the right to request that we delete your personal information, subject to certain exceptions.

  • Right to Correct: You have the right to request that we correct inaccurate personal information about you.

  • Right to Opt-Out of Sale/Sharing: You have the right to opt-out of the sale or sharing of your personal information, as defined under the CCPA.

D. Notice of Disclosure for Business Purposes

For information about the categories of personal information we have disclosed for a business purpose, please refer to section 6 of this Privacy Policy.

E. Notice of Use of Sensitive Personal Information

We do not collect or use sensitive personal information as defined by the CCPA.

F. Notice of Financial Incentives

We may offer discounts or other incentives in exchange for your personal information. We will always clearly disclose the terms of any financial incentive program and will obtain your opt-in consent before enrolling you in such a program.

To exercise your rights under the CCPA, please contact us using the information provided in section 17 of this Privacy Policy.



12.  Additional Disclosures for Residents of Colorado, Connecticut, Delaware, Indiana, Iowa, Montana, Oregon,Tennessee, Texas, Utah, and Virginia

This section provides additional information about the rights of residents of these states under their respective data privacy laws ("Heightened U.S. Privacy Laws"). We act as a "Controller" under these laws when we collect and use your personal data for our own purposes.

A. Notice of Collection

Please refer to sections 2, 3, 4, and 6 of this Privacy Policy for details on the categories of personal data we collect, how we use it, how we collect it, and with whom we share it.

B. Your Rights Under Heightened U.S. Privacy Laws

If you are a resident of one of the states listed above, you may have the following rights:

  • Right to Access/Correct: You can request to access the personal data we have collected about you and to correct any inaccuracies.

  • Right to Delete: You can request that we delete your personal data under certain circumstances.

  • Right to Data Portability: You can request a copy of the personal data you provided to us in a portable format.

  • Right to Opt-Out of Sale: You can opt-out of the sale of your personal data. (Note: We do not sell personal data as defined under these laws.)

  • Right to Opt-Out of Targeted Advertising/Profiling: You can opt-out of targeted advertising and profiling.

  • Right to Opt-In to Processing of Sensitive Data: We will obtain your explicit consent before processing sensitive personal data.

  • Right to Appeal: If we deny your request, you have the right to appeal our decision.

How to Exercise Your Rights:

To exercise any of these rights, please contact us using the information provided in Section 17.

Important Note: These rights may be subject to limitations under the applicable state laws. Please refer to the specific laws of your state for more details.​​​​


13.    How to Exercise Your Legal Rights

If you are a resident of a jurisdiction with applicable data protection laws (e.g., GDPR, CCPA, or Heightened U.S. Privacy Laws), you may exercise your rights by following these procedures:

A. Verification Requirements

To protect your privacy and security, we may need to verify your identity before processing certain requests. We may ask for information such as your name, email address, and other details to confirm your identity.

B. Requests to Know, Access, and Delete Information

You can request to know, access, or delete your personal information by:

  • Logging in to your CHIC LIFE account: You can manage your personal information directly in your account settings.

  • Contacting us: You can send an email to bmottadesign@icloud.com with your request.

C. Correction Requests

You can correct your account information by logging into your CHIC LIFE account or contacting us at bmottadesign@icloud.com.

D. Right to Opt-Out of Sale, Profiling, and Targeted Advertising

We do not sell your personal information or engage in profiling for targeted advertising as defined under these laws. However, we use third-party services for analytics and advertising that may track your online activity. You can manage your preferences for these services through your browser settings and the opt-out mechanisms provided by these third parties.

E. Right to Data Portability

If applicable data protection laws grant you the right to data portability, you can request a copy of your personal data in a structured, commonly used, and machine-readable format by contacting us at bmottadesign@icloud.com.

F. Authorized Agents

Residents of certain jurisdictions (e.g., California, Colorado, and Connecticut) may designate an authorized agent to submit requests on their behalf. To do so, please provide us with written authorization from the individual whose data you are requesting.

G. Responding to Requests (as Controller)

We will respond to your requests within the timeframes required by applicable law. In most cases, we aim to respond within 30 days. We may need to extend this timeframe in certain circumstances, but we will always notify you if we need more time.

H. Responding to Requests (as Processor)

If your personal data was processed by us on behalf of a Merchant, we will forward your request to the relevant Merchant and assist them in responding to your request as required by law.

Please Note: The specific rights you have and the procedures for exercising them may vary depending on your location and the applicable laws.


14.    Links to Third-Party Sites

Our Services may contain links to third-party websites or services. These links are provided for your convenience and information only. Wedo not have control over the content or privacy practices of these third-party websites and are not responsible for their practices. We encourage you to review the privacy policies of any third-party websites you visit.


15.    Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will post the updated Privacy Policy on our website and indicate the date of the latest revision. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.


16.    Complaints

If you believe that we have processed your personal data in violation of applicable data protection laws, you have the right to lodge a complaint with the Irish Data Protection Commission (DPC).

However, we encourage you to contact us first at bmottadesign@icloud.com so we can try to resolve your concern directly.

If you are a customer of one of our Merchants and have a complaint about how they have handled your personal data,please contact the Merchant directly.


17.    Contact Information

If you have any questions about this Privacy Policy or our data protection practices, please contact us:

By Email: bmottadesign@icloud.com

bottom of page