🇮🇪 Privacy Policy — ROSARAT

Last updated: March 20, 2025

At Rosarat, we respect your privacy and are committed to protecting your personal data.
This Privacy Policy explains how we collect, use, store, and safeguard your information when you visit rosarat.com or make a purchase from us.

We comply with the EU General Data Protection Regulation (GDPR) and applicable Irish data protection laws.

1. Information We Collect

We collect personal data in the following ways:

1.1 Information You Provide Directly

  • Full name

  • Billing and shipping address

  • Email address

  • Phone number

  • Payment information (processed securely by third-party providers)

  • Order history

  • Account details (if you create an account)

1.2 Information Collected Automatically

When you browse our website, we may automatically collect:

  • IP address

  • Browser type and version

  • Device type

  • Pages viewed and time spent on the site

  • Interaction and usage data

  • Cookies and similar tracking technologies

1.3 Information from Third Parties

We may receive information from trusted third parties, including:

  • Shopify (our e-commerce platform)

  • Payment processors such as PayPal and Stripe

  • Logistics and fulfilment partners (delivery updates)

  • Analytics and marketing service providers

2. How We Use Your Information

We use your personal data to:

  • Process and fulfil your orders

  • Handle payments securely

  • Provide customer support

  • Send order confirmations and delivery updates

  • Send marketing communications only where you have given consent

  • Improve our website, products, and services

  • Prevent fraud and enhance security

  • Comply with legal and regulatory obligations

All data processing is carried out on a lawful basis under GDPR, such as:

  • Performance of a contract

  • Your consent

  • Legal obligation

  • Legitimate business interests

3. Sharing Your Information

We may share your personal data with trusted third parties, including:

  • Payment providers (PayPal, Stripe)

  • Service providers (Shopify, hosting, IT services)

  • Logistics partners and couriers

  • Analytics and performance tools

  • Marketing platforms (only with your consent)

  • Regulatory or legal authorities where required by law

We never sell your personal data.
All third parties are required to comply with GDPR and maintain appropriate data protection safeguards.

4. Cookies & Tracking Technologies

We use cookies and similar technologies to:

  • Ensure website functionality

  • Remember your preferences

  • Analyse site traffic and performance

  • Personalise content

  • Support marketing and advertising activities

You can manage or disable cookies through your browser settings at any time.
Please note that disabling cookies may affect certain site features.

A cookie consent banner and preferences tool is used to comply with EU regulations.

5. Your Rights Under GDPR

As an EU resident, you have the right to:

  • Access your personal data

  • Request correction of inaccurate data

  • Request deletion of your data (“right to be forgotten”)

  • Restrict or object to processing

  • Object to marketing communications

  • Request data portability

  • Withdraw consent at any time

You also have the right to lodge a complaint with the Data Protection Commission (DPC) in Ireland.

To exercise any of these rights, please contact us at:
📧 info@rosarat.com

6. Data Retention & Security

Data Retention

We retain your personal data only for as long as necessary to:

  • Fulfil orders and provide services

  • Meet legal, tax, and accounting requirements

  • Resolve disputes

  • Maintain accurate business records

Retention periods follow EU GDPR requirements.

Data Security

We implement industry-standard security measures, including:

  • SSL encryption

  • Secure servers

  • Restricted access controls

  • Monitoring for unauthorised activity

While we take all reasonable precautions, no method of data transmission or storage is completely secure.

7. International Data Transfers

Our website operates on Shopify and uses global service providers. As a result, your personal data may be transferred outside the European Economic Area (EEA).

When this occurs, we ensure appropriate safeguards are in place, including:

  • EU adequacy decisions

  • Standard Contractual Clauses (SCCs)

  • Additional security measures where required

8. Contact Us

If you have any questions about this Privacy Policy or how your data is handled, please contact:

📧 info@rosarat.com
Rosarat Customer Support