Shipping Policy Contact Us About Us Privacy Policy Refund Policy Terms & Conditions Blog Change store language
Menu
Shipping Policy Contact Us About Us Privacy Policy Refund Policy Terms & Conditions Blog Change store language

Privacy Policy

Last updated: 27 June 2026

This Privacy Policy describes Our policies and procedures on the collection, use and disclosure of Your information when You use the Service and tells You about Your privacy rights and how the law protects You.

We process Your Personal Data in accordance with the General Data Protection Regulation, also known as GDPR, and applicable data protection laws in Poland and the European Union.

By using the Service, You acknowledge that Your Personal Data will be collected and used in accordance with this Privacy Policy.

Interpretation and Definitions

Interpretation

The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

Definitions

For the purposes of this Privacy Policy:

Account means a unique account created for You to access our Service or parts of our Service.

Company referred to as either “the Company”, “We”, “Us” or “Our” in this Agreement refers to Amy’s Boutique, Aleja Krakowska 37, 05-090 Janki, Poland, +48 605 597 123.

Cookies are small files that are placed on Your computer, mobile device or any other device by a website, containing details of Your browsing activity on that website.

Country refers to: Poland.

Device means any device that can access the Service such as a computer, mobile phone or digital tablet.

GDPR means the General Data Protection Regulation, Regulation EU 2016/679.

Personal Data means any information that relates to an identified or identifiable individual.

Service refers to the Website.

Service Provider means any natural or legal person who processes data on behalf of the Company. It refers to third-party companies or individuals employed by the Company to provide the Service, perform services related to the Service, process payments, deliver orders, analyse website usage or support customer service.

Third-party Social Media Service refers to any website or social network through which a User can log in, create an account, communicate with Us or interact with Our Service.

Usage Data refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself.

Website refers to Amy’s Boutique, accessible from:

AmysBoutique.pl

You means the individual accessing or using the Service, or the company or legal entity on behalf of which such individual is accessing or using the Service.

Collecting and Using Your Personal Data

Types of Data Collected

Personal Data

While using Our Service, We may ask You to provide Us with certain personally identifiable information that can be used to contact You, identify You, process Your order or provide customer support.

Personally identifiable information may include, but is not limited to:

Email address
First name and last name
Phone number
Delivery address
Billing address
State, Province, ZIP/Postal code, City
Order details
Payment confirmation details
Invoice details
Customer support messages
Account login information, if applicable

Usage Data

Usage Data is collected automatically when using the Service.

Usage Data may include information such as Your Device’s Internet Protocol address, browser type, browser version, the pages of Our Service that You visit, the time and date of Your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

When You access the Service through a mobile device, We may collect certain information automatically, including the type of mobile device You use, Your mobile operating system, the type of mobile internet browser You use, unique device identifiers and diagnostic data.

Tracking Technologies and Cookies

We use Cookies and similar tracking technologies to track activity on Our Service and store certain information.

Tracking technologies used may include cookies, beacons, tags and scripts to collect and track information and to improve and analyse Our Service.

The technologies We use may include:

Cookies or Browser Cookies

A cookie is a small file placed on Your Device. You can instruct Your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if You do not accept Cookies, some parts of Our Service may not function properly.

Web Beacons

Certain sections of Our Service and Our emails may contain small electronic files known as web beacons, pixel tags or clear gifs that permit the Company to count users who have visited certain pages, opened an email or used certain website features.

Cookies can be Persistent Cookies or Session Cookies.

Persistent Cookies remain on Your device when You go offline. Session Cookies are deleted as soon as You close Your web browser.

We use both Session and Persistent Cookies for the purposes set out below.

Necessary / Essential Cookies

Type: Session Cookies
Administered by: Us

Purpose: These Cookies are essential to provide You with services available through the Website and to enable You to use some of its features, such as cart, checkout, account login, payment process and security.

Without these Cookies, the services You have requested cannot be provided.

Cookies Policy / Notice Acceptance Cookies

Type: Persistent Cookies
Administered by: Us

Purpose: These Cookies identify whether users have accepted or rejected the use of cookies on the Website.

Functionality Cookies

Type: Persistent Cookies
Administered by: Us

Purpose: These Cookies allow Us to remember choices You make when using the Website, such as login details, language preference, shopping cart items or delivery preferences.

Analytics and Marketing Cookies

Type: Persistent Cookies
Administered by: Us or third-party service providers

Purpose: These Cookies help Us analyse website traffic, understand customer behaviour, improve Our Service, measure advertising performance and show relevant offers.

Where required by law, We will ask for Your consent before using non-essential analytics or marketing cookies.

You may change or withdraw Your cookie consent at any time through the cookie settings available on Our Website, if such option is provided.

Use of Your Personal Data

The Company may use Personal Data for the following purposes:

To provide and maintain Our Service

Including to monitor usage of Our Service and ensure the Website functions properly.

To manage Your Account

To manage Your registration as a user of the Service and give You access to different functionalities available to registered users.

For the performance of a contract

To process, confirm, pack, ship and deliver products, items or services You have purchased through the Service.

To process payments

To manage payments, payment confirmations, refunds and fraud prevention. We do not store full card details. Payment information may be processed by third-party payment providers.

To contact You

To contact You by email, telephone, SMS, WhatsApp or other forms of electronic communication regarding Your order, delivery, payment, support request, product availability, return, complaint or security update.

To provide customer support

To respond to Your questions, complaints, returns, refunds, order issues or other requests.

To provide marketing communication

To provide You with news, special offers and general information about products, services and events which We offer, where You have consented or where permitted by law.

You may opt out of marketing communication at any time.

To manage legal and accounting obligations

To issue invoices, maintain accounting records, comply with tax obligations and meet legal requirements under Polish and EU law.

To improve Our Service

To analyse data, identify usage trends, understand customer preferences, improve products, services, marketing and Your shopping experience.

For business transfers

We may use Your information to evaluate or conduct a merger, restructuring, reorganisation, sale or transfer of some or all of Our assets, where Personal Data may be transferred as part of that transaction.

To protect Our legal rights

To prevent fraud, protect the security of Our Website, enforce Our terms, resolve disputes and protect Our legal interests.

Legal Basis for Processing Personal Data Under GDPR

We process Your Personal Data on the following legal bases:

Performance of a contract — when processing is necessary to fulfil Your order or provide Our Service.

Legal obligation — when We are required to process data for tax, accounting, consumer protection or legal purposes.

Consent — when You subscribe to marketing communication or accept non-essential cookies.

Legitimate interest — when processing is necessary for customer support, fraud prevention, service improvement, security, direct communication or protection of legal claims.

You may withdraw Your consent at any time where processing is based on consent.

Sharing Your Personal Data

We may share Your personal information in the following situations:

With Service Providers

We may share Your information with Service Providers who help Us operate Our Website, process orders, deliver products, process payments, provide IT support, analyse website traffic or contact You.

With courier and delivery companies

We may share Your name, address, phone number and delivery details with courier partners for order delivery.

With payment providers

We may share necessary payment-related data with payment service providers to complete Your purchase.

With accountants and legal advisors

We may share necessary data with accounting, tax, legal or professional advisors for compliance and business purposes.

With business partners

We may share Your information with business partners only where necessary to provide services, promotions or products requested by You, and where permitted by law.

With authorities

We may disclose Your Personal Data if required by law, court order, government authority or legal process.

With Your consent

We may disclose Your personal information for any other purpose with Your consent.

We do not sell Your Personal Data.

Retention of Your Personal Data

The Company will retain Your Personal Data only for as long as necessary for the purposes set out in this Privacy Policy.

We will retain and use Your Personal Data to the extent necessary to comply with legal obligations, resolve disputes, enforce agreements and protect legal claims.

Order, invoice and accounting data may be retained for the period required under applicable Polish tax and accounting laws.

Marketing data will be retained until You withdraw Your consent or unsubscribe.

Usage Data is generally retained for a shorter period, except where it is used for security, fraud prevention or legal compliance.

Transfer of Your Personal Data

Your information, including Personal Data, may be processed at the Company’s operating offices and in other places where the parties involved in processing are located.

This means that Your information may be transferred to and maintained on computers located outside Your country, including outside the European Economic Area, where data protection laws may differ.

Where Personal Data is transferred outside the European Economic Area, We will take appropriate steps to ensure that Your data is protected in accordance with GDPR, including using appropriate legal safeguards where required.

Disclosure of Your Personal Data

Business Transactions

If the Company is involved in a merger, acquisition, restructuring or asset sale, Your Personal Data may be transferred. We will provide notice before Your Personal Data becomes subject to a different Privacy Policy.

Law Enforcement

Under certain circumstances, the Company may be required to disclose Your Personal Data if required by law or in response to valid requests by public authorities, such as a court or government agency.

Other Legal Requirements

The Company may disclose Your Personal Data in good faith where such action is necessary to:

Comply with a legal obligation
Protect and defend the rights or property of the Company
Prevent or investigate possible wrongdoing in connection with the Service
Protect the personal safety of Users or the public
Protect against legal liability
Enforce Our terms, policies or agreements

Security of Your Personal Data

The security of Your Personal Data is important to Us.

We use reasonable technical and organisational measures to protect Your Personal Data from unauthorised access, disclosure, alteration, loss or destruction.

However, no method of transmission over the internet or method of electronic storage is 100% secure. While We strive to use commercially acceptable means to protect Your Personal Data, We cannot guarantee absolute security.

Children’s Privacy

Our Service does not address anyone under the age of 16.

We do not knowingly collect personally identifiable information from anyone under the age of 16 without appropriate consent.

If You are a parent or guardian and You believe that Your child has provided Us with Personal Data, please contact Us. If We become aware that We have collected Personal Data from a child without appropriate consent, We will take steps to remove that information.

Your Rights Under GDPR

If You are located in the European Union or European Economic Area, You have the following rights under GDPR:

The right to access Your Personal Data
The right to correct inaccurate or incomplete Personal Data
The right to request deletion of Your Personal Data
The right to restrict processing of Your Personal Data
The right to object to processing of Your Personal Data
The right to data portability
The right to withdraw consent at any time
The right to lodge a complaint with a supervisory authority

To exercise Your rights, You can contact Us using the contact details provided below.

Right to Lodge a Complaint

If You believe that We have processed Your Personal Data unlawfully or violated Your privacy rights, You have the right to lodge a complaint with the Polish data protection authority:

President of the Personal Data Protection Office
Urząd Ochrony Danych Osobowych — UODO
Warsaw, Poland

You may also contact Us first so that We can try to resolve Your concern.

Links to Other Websites

Our Service may contain links to other websites that are not operated by Us.

If You click on a third-party link, You will be directed to that third party’s website.

We strongly advise You to review the Privacy Policy of every website You visit.

We have no control over and assume no responsibility for the content, privacy policies or practices of any third-party websites or services.

Changes to This Privacy Policy

We may update Our Privacy Policy from time to time.

We will notify You of any changes by posting the new Privacy Policy on this page.

We will update the “Last updated” date at the top of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes.

Changes to this Privacy Policy are effective when they are posted on this page.

Contact Us

If You have any questions about this Privacy Policy, You can contact Us:

By email: amysboutique.warsaw@gmail.com
By phone: +48 605 597 123
By address: Amy’s Boutique, Aleja Krakowska 37, 05-090 Janki, Poland
Website: AmysBoutique.pl