Privacy Policy

Last updated: December 5, 2025

At Mimora, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services. We are committed to protecting your personal data in compliance with GDPR and other applicable data protection laws.

1. Information We Collect

Personal Information You Provide

We collect information that you voluntarily provide to us when you:

  • Create an account
  • Place an order
  • Subscribe to our newsletter
  • Contact customer service
  • Participate in surveys or promotions

This information may include:

  • Name and contact information (email, phone, address)
  • Billing and shipping addresses
  • Payment information (processed securely by our payment provider)
  • Order history and preferences
  • Communications with our customer service team

Automatically Collected Information

When you visit our website, we automatically collect certain information:

  • Device and browser information
  • IP address and location data (country/city level)
  • Pages visited and time spent on our site
  • Referral source
  • Analytics data via Google Analytics (see our Cookies Policy)

2. How We Use Your Information

We use your personal data for the following purposes:

  • Order Processing: To process and fulfill your orders, send confirmations, and provide tracking information
  • Customer Service: To respond to your inquiries and provide support
  • Account Management: To maintain your account and order history
  • Marketing: To send you newsletters and promotional materials (only with your consent)
  • Improvements: To analyze usage patterns and improve our website and services
  • Legal Compliance: To comply with legal obligations and protect our rights

3. Legal Basis for Processing (GDPR)

We process your personal data based on:

  • Contract Performance: Processing necessary to fulfill our contract with you (order processing)
  • Consent: For marketing communications and analytics cookies
  • Legitimate Interests: For fraud prevention, security, and service improvements
  • Legal Obligation: For tax and accounting purposes

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your data with:

  • Service Providers: Payment processors, shipping companies, email service providers (all bound by data protection agreements)
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In the event of a merger, sale, or acquisition

5. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area. We ensure appropriate safeguards are in place through:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions by the European Commission
  • Privacy Shield certification (where applicable)

6. Data Retention

We retain your personal data only for as long as necessary:

  • Account Data: Until you request deletion or close your account
  • Order Data: For 10 years to comply with tax and accounting regulations
  • Marketing Data: Until you unsubscribe or withdraw consent
  • Analytics Data: In aggregated, anonymized form indefinitely

7. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restriction: Limit how we use your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests or for marketing
  • Right to Withdraw Consent: Withdraw consent at any time (without affecting prior processing)
  • Right to Complain: Lodge a complaint with your local data protection authority

8. Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • SSL/TLS encryption for data transmission
  • Secure servers and databases
  • Access controls and authentication
  • Regular security assessments

However, no method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

9. Children's Privacy

Our services are not directed to individuals under 16 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

10. Cookies and Tracking

We use cookies and similar tracking technologies. For detailed information, please see our Cookies Policy.

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these sites. We encourage you to review their privacy policies.

12. Updates to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice on our website or sending you an email. Your continued use of our services after changes constitutes acceptance of the updated policy.

13. Contact Us

For privacy-related questions or to exercise your rights, please contact us:

Email: privacy@mimora-watches.com

Phone: +40 750 463 661

Address: Int. Gheorghe Simionescu 19, Bucharest, Romania

Data Protection Officer (DPO): privacy@mimora-watches.com