🔐 Privacy Policy (GDPR Compliance)
Last update: [06/15/2025]
1. Data Controller
The website Mystika is responsible for the collection and processing of your personal data.
Contact: contact@oravitae.fr
2. Data Collected
The data that may be collected includes:
-
First and last name
-
Mailing address
-
Email address
-
Phone number
-
Payment information (encrypted)
-
Browsing data (via cookies or anonymous analytics tools)
3. Purpose of Collection
Data is collected in order to:
-
Process orders
-
Manage customer relations
-
Ensure product delivery
-
Send transactional or informational emails
-
Comply with legal obligations
4. Legal Basis
Processing of your data is based on:
-
The sales contract (orders)
-
Your consent (newsletters, cookies)
-
Legal requirements
5. Data Sharing
Your data is shared only with:
-
Payment service providers
-
Shipping partners
-
Anonymous analytics tools
No data is sold.
6. Data Retention
Data is retained for:
-
3 years after last contact (for leads)
-
6 years for invoices
-
13 months for cookies (maximum)
7. Your Rights
In accordance with the GDPR, you have the following rights:
-
Access
-
Rectification
-
Objection
-
Deletion
-
Data portability
You may exercise your rights at any time by contacting: contact@oravitae.fr
8. Security
Mystika is committed to protecting your data using:
-
Technical safeguards (secure servers, SSL encryption)
-
Organizational measures (restricted access, password protection)