Privacy Policy (GDPR Compliance)

Privacy Policy (GDPR Compliance)

Data Controller

Name: Katalin Engler, Sole Proprietor
Address: 5 Csíksomlyó Street, Building 4, Apartment 23, 1048 Budapest, Hungary
Email: home@dotandpaint.com
Website: https://dotandpaint.com/en

Hosting Provider

Websupport Magyarország Kft. – https://www.mhosting.hu/

Data We Collect

  • For orders: name, billing/shipping address, phone number, email address, and payment details (processed via Stripe).
  • For newsletters: email address (stored in Mailchimp, not on WordPress).
  • For abandoned cart reminders: email address (via FunnelKit plugin).

Purpose and Legal Basis

  • Order fulfillment: contract performance
  • Newsletter subscriptions: consent
  • Abandoned cart follow-up: legitimate interest or consent

Data Retention

  • Order data: stored for 8 years (as required by accounting and tax laws).
  • Newsletter data: stored until you unsubscribe or withdraw consent.
  • Abandoned cart data: automatically deleted after 14 days.

Data Sharing

We share personal data only with:

  • Mailchimp (newsletter management)
  • MPL, Packeta (shipping)
  • Stripe (payment processing)
    All third parties comply with GDPR or equivalent data protection standards.

THIRD-PARTY SERVICES

Google Web Fonts: For uniform representation of fonts, this website uses web fonts provided by Google. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly. For this purpose, your browser must connect to Google’s servers. As a result, Google learns that our website has been accessed via your IP address.

Microsoft Clarity: We use Microsoft Clarity to understand how you interact with our website through heatmaps and session recordings. This helps us improve the user experience. Clarity captures data such as how you navigate and click on our pages.

YouTube Videos: We embed videos from YouTube. When you play these videos, YouTube may set cookies and receive information about your activity for functional and advertising purposes.

Your Rights

Under the GDPR, you have the right to:

  • Withdraw consent at any time
  • Access, rectify, or erase your personal data
  • Restrict or object to processing
  • Data portability (receive and transfer your data)
  • Lodge a complaint with a supervisory authority

In Hungary, the relevant authority is:
National Authority for Data Protection and Freedom of Information (NAIH)
Website: https://www.naih.hu

To exercise your rights, contact us at home@dotandpaint.com. We respond within 30 days.

Automated Decision-Making

We do not use automated decision-making or profiling that produces legal or significant effects concerning you.

Cookies & Tracking

Our website uses cookies for essential functions, analytics, and marketing. You can manage cookies in your browser or through our cookie banner. For more information, see our Cookie Policy.

International Data Transfers

Where data is transferred outside the EU/EEA (e.g. to Mailchimp or Stripe), such transfers are based on adequacy decisions or standard contractual clauses in line with GDPR requirements.

Updates to This Notice

We may update this Privacy Notice from time to time. Continued use of our website after updates constitutes acceptance of the new version