Privacy Policy

Privacy Policy for Quirky Moose ApS

Last Updated: 14. Jan. 2025

At Quirky Moose ApS, we take your privacy seriously. This Privacy Policy outlines how we collect, use, store, and protect your personal data when you visit our website and make purchases through our webshop. Our practices are designed to comply with the General Data Protection Regulation (GDPR), the Danish Data Protection Act, and other relevant EU regulations.

1. Who We Are

We are Quirky Moose, a company registered in Denmark, with the following details:

  • Company Name: Quirky Moose ApS
  • CVR Number: 39080362
  • Address: Vasbygade 10A, 2450 Copenhagen SW, Denmark
  • Email: hello@quirkymoose.com
  • Phone Number: +45 31313297

As the data controller, we are responsible for processing your personal data in accordance with this Privacy Policy.

2. What Personal Data We Collect

When you use our webshop, we collect the following types of personal data:

  • Name
  • Email address
  • Phone number
  • Shipping address (including street address, city, postal code, and country)
  • Payment details (credit/debit card information, PayPal, etc.)
  • Order history (items purchased, quantity, price, etc.)
  • IP address (for security and analytics purposes)

We only collect the minimum necessary data to process your order, fulfill our contract with you, and comply with applicable laws.

3. How We Use Your Personal Data

We use your personal data for the following purposes:

  • Order processing: To fulfill your order, process payment, and deliver your items.
  • Customer support: To respond to your inquiries, complaints, or requests for refunds/returns.
  • Marketing communications: With your consent, we may send you promotional emails and newsletters. You can opt-out at any time by clicking the "unsubscribe" link in any email we send.
  • Legal compliance: To comply with legal obligations, such as tax and accounting requirements, and to prevent fraud.
  • Website functionality: To improve our website, monitor usage, and ensure its security.

4. Legal Basis for Processing Your Data

Under the GDPR, we process your personal data based on the following legal grounds:

  • Contractual necessity: We process your data to fulfill our contract with you when you place an order.
  • Consent: If you have opted in to receive marketing communications or other services, we process your data based on your consent.
  • Legal obligation: We process certain data to comply with our legal obligations, such as invoicing and tax reporting.
  • Legitimate interests: We may process your data to protect our legitimate business interests, such as fraud prevention and improving our website.

5. How We Share Your Data

We may share your personal data with the following third parties for the purposes outlined in this Privacy Policy:

  • Payment processors: To process payments securely.
  • Delivery partners: To ship your order.
  • Email marketing providers: If you have opted in to receive promotional emails, we may share your data with providers.
  • Legal authorities: If required by law, we may disclose your personal data to authorities for compliance with legal obligations or to protect our legal rights.

We ensure that these third parties comply with GDPR and data protection laws, and we have appropriate contracts in place to protect your privacy.

6. How We Store and Protect Your Data

We take appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction. This includes:

  • Encryption: All payment information is transmitted via secure, encrypted connections (SSL).
  • Access control: Only authorized personnel have access to your data, and we implement strict access control policies.
  • Data retention: We only retain your personal data for as long as necessary to fulfill the purposes for which it was collected, and in compliance with legal obligations (such as tax or accounting records).

7. Your Rights Under GDPR

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access: You can request a copy of the personal data we hold about you.
  • Right to rectification: You can request that we correct any inaccurate or incomplete data we hold about you.
  • Right to erasure: You can request that we delete your personal data, subject to certain conditions (e.g., when the data is no longer necessary for the purposes it was collected).
  • Right to restriction of processing: You can request that we limit the processing of your personal data in certain circumstances.
  • Right to data portability: You can request that we provide your personal data in a machine-readable format so you can transfer it to another service.
  • Right to object: You can object to the processing of your data, particularly if we are processing it based on legitimate interests or for direct marketing purposes.
  • Right to withdraw consent: If you have given us consent to process your data (e.g., for marketing), you can withdraw it at any time.

To exercise any of these rights, please contact us at hello@quirkymoose.com. We will respond to your request within one month, as required by law.

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Please review this policy periodically to stay informed about how we protect your personal data.

9. Contact Us

If you have any questions or concerns about how we process your personal data or about this Privacy Policy, please contact us at:

Email: hello@quirkymoose.com

Address: Vasbygade 10A, 2450 Copenhagen SW, Denmark.