Privacy Policy

This Privacy Policy applies to all services provided by Lisa & Hall Londen, accessible via info@lisaandhalllonden.com and our website www.lisaandhalllonden.com.

We respect the privacy of our customers and handle all personal data with care and confidentiality, in accordance with the General Data Protection Regulation (GDPR).

1. Data We Collect

We collect personal data that you provide to us when you place an order, create an account, or contact our customer service, including:

  • Full name
  • Shipping and billing address details
  • Email address
  • Telephone number
  • Payment information (processed securely by our payment providers; not stored on our own servers)
  • IP address and device/browser information
  • Order and transaction history
  • Data about your activity and behaviour on our website (via cookies and similar technologies)

2. Purposes of Processing

We process your personal data for the following purposes:

  • Order handling – to process, ship and invoice your orders
  • Customer service – to provide support, answer questions and handle any issues
  • Order updates – to send confirmations, shipping updates and other relevant communication about your purchase
  • Website and service improvement – to analyse how our website and products are used and to improve our assortment and user experience
  • Fraud prevention and security – to prevent, detect and investigate fraud or abuse of our services
  • Marketing communication – to send newsletters, promotions or personalised offers only if you have given your explicit consent (opt‑in)

3. Legal Bases

We process your personal data based on the following legal grounds:

  • Performance of a contract – for processing and delivering your order
  • Consent – for example, when you sign up for marketing emails
  • Legal obligation – such as tax and accounting requirements
  • Legitimate interest – including fraud prevention, securing our services and improving our webshop and customer experience

4. Sharing Data with Third Parties

We only share your data with third parties where this is necessary to provide our services, such as:

  • Payment providers – e.g. Stripe, PayPal, Klarna or similar, to process your payments securely
  • Shipping and delivery partners – such as national and international courier services, to deliver your order
  • Our fulfilment and product suppliers – to process and ship your order directly from the supplier where applicable (dropshipping)
  • Analytics and marketing service providers – for website statistics, performance tracking and (where applicable) marketing, in line with your cookie and privacy preferences

With all parties that act as data processors, we have appropriate data processing agreements in place where required. We never sell your personal data to third parties.

Because part of our fulfilment is handled directly by selected suppliers outside the EEA (for example, in China), your data may in some cases be transferred outside the European Economic Area. In such cases, we implement appropriate safeguards, such as Standard Contractual Clauses or equivalent mechanisms, to protect your privacy.

5. Retention Period

We do not store your personal data longer than necessary for the purposes for which it was collected, or longer than legally required. For example:

  • Order and invoice data are typically stored for 7 years in line with tax and accounting regulations.
  • Account and profile data are kept as long as your account is active or until you request deletion.
  • Data used for marketing is retained until you withdraw your consent (unsubscribe).

6. Cookies

Our website uses cookies and similar technologies to:

  • Improve the functionality and performance of the site
  • Analyse visitor behaviour and website traffic
  • Support relevant marketing and personalised content (where permitted)

For more detailed information, please refer to our separate Cookie Policy. You can adjust your cookie preferences at any time via the cookie banner on our website or through your browser settings.

7. Security

We take appropriate technical and organisational measures to protect your personal data against loss, misuse, unauthorised access, disclosure, alteration or destruction. Examples include:

  • Secure connections (SSL/TLS) on our website and checkout
  • Limited access to personal data within our organisation and with our processors
  • Regular monitoring of our systems for vulnerabilities

All online payments are processed via secure, encrypted connections by certified payment providers.

8. Your Rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access – to request a copy of the personal data we hold about you
  • Right to rectification – to correct inaccurate or incomplete data
  • Right to erasure – to ask us to delete your data where legally possible
  • Right to restriction of processing – to limit the way we use your data in certain situations
  • Right to object – to object to processing based on our legitimate interests or for direct marketing
  • Right to data portability – to receive your data in a structured, commonly used format or have it transmitted to another controller

To exercise any of these rights, please contact us via info@lisaandhalllonden.com.

You also have the right to lodge a complaint with your local supervisory authority. In the Netherlands, this is the Autoriteit Persoonsgegevens.

9. Contact

Lisa & Hall Londen
Email: info@lisaandhalllonden.com
Website: www.lisaandhalllonden.com