Privacy policy
P.MU PAULINA MUCHA LTD
This Privacy Policy explains how P.MU PAULINA MUCHA LTD collects, processes, and protects your personal data when you use our website and services, including https://www.paulinamucha.com, or when you interact with us in other ways such as purchasing products, subscribing to newsletters, participating in training courses, or entering competitions.
We process your personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and where applicable the EU General Data Protection Regulation (EU GDPR).
By using our website, you confirm that you have read and understood this Privacy Policy.
1. Controller Details
P.MU PAULINA MUCHA LTD is the Data Controller responsible for your personal data.
We are committed to protecting your privacy and ensuring that your personal information is handled securely and transparently.
Controller Details
Company: P.MU PAULINA MUCHA LTD
Company Number: 15422670
Director: Paulina Mucha
Registered Address:
15 Derngate
Northampton
NN1 1TY
United Kingdom
Email: muchabeautyofficial@gmail.com
Website:
https://www.paulinamucha.com
If you have any questions regarding this Privacy Policy or wish to exercise your data protection rights, please contact us using the details above.
2. Legal Basis for Processing Personal Data (GDPR)
Under UK GDPR and EU GDPR, we rely on the following legal bases to process personal data:
Contractual Necessity
To process and fulfil orders, deliver products, and manage payments.
Legitimate Interests
To operate and improve our business, enhance customer experience, maintain website functionality, and communicate with customers.
Legal Obligations
To comply with applicable laws such as accounting, tax, and regulatory requirements.
Consent
Where you have explicitly agreed to receive marketing communications or newsletters.
You may withdraw consent at any time by contacting us.
3. The Data We Collect About You
We collect and process different types of personal data including:
Identity Data
First name, last name, username, title, date of birth, or similar identifiers.
Contact Data
Billing address, delivery address, email address, and phone number.
Financial Data
Payment card or bank details processed securely through payment service providers.
Transaction Data
Details about payments, orders, and products purchased from us.
Profile Data
Account details, purchase history, feedback, preferences, and survey responses.
Marketing and Communications Data
Your preferences regarding receiving marketing communications from us.
Usage Data
Information about how you use our website, products, and services.
Technical Data
IP address, browser type, operating system, device information, and browsing behaviour.
We do not intentionally collect Special Categories of Personal Data, such as information about health, religion, ethnicity, or political beliefs.
4. How We Collect Your Personal Data
We collect personal data through the following methods:
Direct Interactions
You may provide personal data when you:
• Create an account
• Purchase products
• Subscribe to newsletters
• Contact us via email or website forms
• Participate in promotions, competitions, or surveys
• Register for training or educational services
Automated Technologies
When you use our website, we may automatically collect certain technical information using:
• Cookies
• Analytics tools
• Website tracking technologies
These technologies help us understand website usage and improve user experience.
5. How We Use Your Personal Data
We use your personal data for the following purposes:
• To register you as a customer
• To process and deliver orders
• To manage payments and billing
• To communicate regarding orders or services
• To improve our website and services
• To provide customer support
• To send marketing communications where permitted
• To analyse customer behaviour and improve our products
We will only use your personal data for the purposes for which it was collected, unless we reasonably consider that we need to use it for another compatible reason.
6. Sharing Your Personal Data
We may share your personal data with trusted third parties including:
Payment Providers
Payment processors such as:
• PayPal
• Klarna
• Card payment providers
These providers securely process payment data in accordance with their own privacy policies.
Service Providers
Third parties that assist us with:
• Website hosting
• IT services
• Analytics
• Delivery and logistics
• Customer support
All service providers are contractually required to process personal data securely and in accordance with GDPR.
Legal Authorities
We may disclose personal data where required by law or regulatory authorities.
We do not sell or rent personal data to third parties for marketing purposes.
7. International Data Transfers
Some service providers may operate outside the United Kingdom or European Economic Area (EEA).
Where data transfers occur internationally, we ensure that appropriate safeguards are in place, including:
• Standard Contractual Clauses (SCCs)
• Adequacy decisions
• GDPR-compliant contractual protections
8. Data Security
We implement appropriate technical and organisational measures to protect your personal data.
These include:
SSL Encryption
Secure encryption is used to protect sensitive data during online transactions.
Access Restrictions
Only authorised personnel or service providers have access to personal data when required.
Secure Storage
Personal data is stored on secure servers with appropriate security measures.
9. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected.
Retention periods may depend on:
• Legal obligations
• Accounting requirements
• Business needs
Typically, customer transaction records are retained for up to 6 years in accordance with UK tax and accounting regulations.
10. Your Data Protection Rights (GDPR)
Under UK GDPR and EU GDPR, you have the right to:
• Request access to your personal data
• Request correction of inaccurate information
• Request deletion of your personal data ("right to be forgotten")
• Request restriction of processing
• Object to processing of your personal data
• Request transfer of your data to another service provider (data portability)
• Withdraw consent where processing is based on consent
To exercise any of these rights, please contact us:
You also have the right to lodge a complaint with the UK supervisory authority:
Information Commissioner’s Office (ICO)
https://ico.org.uk
11. Cookies and Tracking Technologies
Our website uses cookies and similar technologies to improve functionality and user experience.
Cookies may be used for:
• Website functionality
• Analytics and performance monitoring
• Marketing and advertising
For detailed information about cookies used on this website, please refer to our Cookie Policy.
12. Third-Party Links
Our website may contain links to third-party websites.
We are not responsible for the privacy practices or content of those websites. Users should review the privacy policies of any external websites they visit.
13. If You Fail to Provide Personal Data
Where personal data is required to fulfil a contract (for example to process an order), failure to provide that information may result in us being unable to complete the transaction or provide the requested services.
14. Changes to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in legal requirements or business practices.
The latest version will always be available on: