GDPR - Personal Data Protection
Last updated: December 5, 2025
Mimora is committed to protecting your personal data in accordance with Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR) and applicable Romanian legislation, including Law no. 190/2018.
1. Data Controller
The data controller is:
- Company: MIMIRS NEXUS DEVELOPMENT S.R.L.
- Address: Int. Gheorghe Simionescu 19, Bucharest, Romania
- Email: privacy@mimora-watches.com
- Phone: +40 750 463 661
2. Personal Data We Collect
We collect the following categories of personal data:
Identification Data
- First and last name
- Email address
- Phone number
- Shipping and billing address
Transaction Data
- Order history
- Product preferences
- Payment information (securely processed by our payment processor)
Technical Data
- IP address
- Browser and device type
- Website navigation data
- Cookies (see our Cookie Policy)
3. Purposes and Legal Bases for Processing
| Purpose | Legal Basis |
|---|---|
| Order processing | Contract performance (Art. 6(1)(b)) |
| Invoice issuance | Legal obligation (Art. 6(1)(c)) |
| Marketing communications | Consent (Art. 6(1)(a)) |
| Service improvement | Legitimate interest (Art. 6(1)(f)) |
| Fraud prevention | Legitimate interest (Art. 6(1)(f)) |
4. Your Rights Under GDPR
You have the following rights regarding your personal data:
Right of Access (Art. 15)
You can request a copy of the personal data we hold about you.
Right to Rectification (Art. 16)
You can request correction of inaccurate data or completion of incomplete data.
Right to Erasure - "Right to be Forgotten" (Art. 17)
You can request deletion of your data in certain circumstances.
Right to Restriction of Processing (Art. 18)
You can request limitation of how we use your data.
Right to Data Portability (Art. 20)
You can receive your data in a structured, commonly used, machine-readable format.
Right to Object (Art. 21)
You can object to processing for direct marketing or based on legitimate interest.
Right to Withdraw Consent (Art. 7)
You can withdraw consent at any time without affecting the lawfulness of prior processing.
5. Exercising Your Rights
To exercise your rights, you can:
- Send an email to privacy@mimora-watches.com
- Send a written request to our address
- Access your account settings for certain options
We will respond to your request within 30 days of receipt. In complex cases, this period may be extended by an additional 60 days, in which case you will be informed.
6. Data Retention Period
- Account data: Until account deletion + 30 days
- Order and billing data: 10 years (as required by Tax Code)
- Marketing data: Until consent withdrawal
- Technical data (logs): Maximum 12 months
7. International Data Transfers
Your data may be transferred outside the European Economic Area to service providers (e.g., cloud services, payment processors). In such cases, we ensure that:
- The destination country has an adequacy decision from the European Commission
- EU-approved Standard Contractual Clauses are implemented
- The recipient is certified under a recognized data protection framework
8. Data Security
We implement appropriate technical and organizational measures to protect your data:
- SSL/TLS encryption for all data transmissions
- Secure servers with restricted access
- Authentication and access control
- Regular backups and recovery plans
- Staff training on data protection
9. Complaints
If you believe that the processing of your data violates GDPR, you have the right to lodge a complaint with the supervisory authority:
National Supervisory Authority for Personal Data Processing (ANSPDCP)
Address: B-dul G-ral. Gheorghe Magheru 28-30, Sector 1, Bucharest, Romania
Phone: +40 318 059 211
Email: anspdcp@dataprotection.ro
Website: www.dataprotection.ro
10. Changes to This Policy
We reserve the right to update this GDPR policy. Any significant changes will be communicated via email or by posting a notice on the website. We encourage you to check this page periodically.
11. Contact
For questions about data protection or to exercise your rights:
Email: privacy@mimora-watches.com
Phone: +40 750 463 661
Address: Int. Gheorghe Simionescu 19, Bucharest, Romania
Data Protection Officer (DPO): privacy@mimora-watches.com