Privacy Policy

At Nine Lives Apparel, operated by makscyle, we are committed to protecting your privacy and ensuring that your personal data is handled securely and in compliance with the General Data Protection Regulation (GDPR) and Finnish data protection laws. This Privacy Policy explains how we collect, use, and safeguard your personal information.

1. Data Controller

The Data Controller for Nine Lives Apparel is:
makscyle

  • Business Address: Kievarinkaari 2 D, 04300 Tuusula

  • Email: hi@ninelives.fi

2. What Personal Data We Collect

We collect personal data necessary to provide you with our services. This includes:

  • Contact Information: Name, email address, phone number, and postal address.

  • Transaction Information: Purchase history, payment details (processed securely via third-party providers), and billing details.

  • Account Information (if applicable): Username, password, and preferences.

  • Communication Data: Any messages or inquiries you send us.

  • Technical Data: IP address, browser type, device information, and website usage data collected via cookies (see Section 9).

3. Why We Collect Personal Data

We collect your personal data for the following purposes:

  • Order Fulfillment: To process and ship your orders and manage payments.

  • Customer Service: To respond to inquiries and provide support.

  • Marketing: To send you updates, offers, and news if you have opted in to receive such communications.

  • Compliance: To comply with legal and regulatory requirements, including tax and accounting obligations.

  • Improvement: To improve our website, products, and services by analyzing usage patterns.

4. Legal Basis for Processing

Under GDPR, we process personal data based on the following legal grounds:

  • Performance of a Contract: For fulfilling orders, payments, and customer support.

  • Consent: For sending marketing communications (you can withdraw consent at any time).

  • Legal Obligations: For compliance with Finnish and EU laws.

  • Legitimate Interests: To improve our services, secure our website, and prevent fraud.

5. How We Share Your Data

We do not sell your data to third parties. However, we may share your data with trusted service providers and partners for the purposes outlined above, including:

  • Payment Processors: For secure handling of transactions.

  • Shipping Providers: To deliver your orders.

  • IT and Analytics Providers: To improve our website functionality and performance.

  • Legal Authorities: If required by law or in response to lawful requests, such as fraud investigations or tax audits.

All third-party service providers are bound by GDPR-compliant agreements to protect your data.

6. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy:

  • Order Data: Retained for 6 years to comply with Finnish tax laws.

  • Marketing Data: Retained until you unsubscribe.

  • Account Data: Retained until you request deletion or close your account.

When no longer needed, your data will be securely deleted or anonymized.

7. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.

  • Correction: Request corrections to inaccurate or incomplete data.

  • Deletion: Request the deletion of your data (subject to legal obligations).

  • Restriction: Request restricted processing of your data under certain conditions.

  • Data Portability: Request transfer of your data to another provider.

  • Objection: Object to processing based on legitimate interests or direct marketing.

  • Withdraw Consent: Withdraw consent for marketing communications at any time.

To exercise these rights, contact us at hi@ninelives.fi with the subject line “GDPR Request”. We will respond within 30 days as required by GDPR.

8. Data Security

We implement robust security measures to protect your personal data from unauthorized access, loss, or misuse. These include:

  • Encrypted data transfers (SSL/TLS).

  • Secure storage of data on GDPR-compliant servers.

  • Regular audits and staff training on data protection.

However, no system is completely secure. You share your data at your own risk.

9. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance user experience and analyze website usage.

  • Necessary Cookies: Essential for website functionality (e.g., shopping cart).

  • Analytical Cookies: Help us understand usage patterns (e.g., Google Analytics).

  • Marketing Cookies: Used for targeted advertising if you have consented.

You can manage or disable cookies through your browser settings. For more information, see our [Cookie Policy] (if applicable).

10. International Transfers

If personal data is transferred outside the European Economic Area (EEA), we ensure adequate protection through mechanisms like:

  • EU-approved Standard Contractual Clauses (SCCs).

  • Transfers to countries with GDPR-equivalent protections.

11. Children’s Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect data from children.

12. Updates to This Policy

We may update this Privacy Policy to reflect changes in our practices or legal obligations. Any updates will be posted on our website, and significant changes will be communicated directly to you.

13. Contact Information

For questions or concerns about this Privacy Policy, or to exercise your GDPR rights, contact us at:

  • Email: hi@ninelives.fi


    Thank you for trusting Nine Lives Apparel with your personal data. We are committed to protecting your privacy.