Privacy policy

Last updated: 16 May 2026

This Privacy Policy explains how The Gigi Store ("we", "us", "our") collects, uses, discloses, and protects your personal information when you visit our website, place an order, contact us, or otherwise interact with our store and services (collectively, the "Services"). Our store is powered by Shopify.

By accessing or using our Services, you confirm that you have read and understood this Privacy Policy. If you do not agree, please do not use our Services.

1. Who We Are (Data Controller)

The Gigi Store is the data controller responsible for your personal information. Our contact details are at the bottom of this page.

2. Personal Information We Collect

We may collect the following categories of personal information:

Contact details: name, billing and shipping address, phone number, email address.
Order & payment information: items purchased, transaction history, payment method details (processed by our payment providers — we do not store full card numbers).
Account information: username, password, preferences, language and currency settings.
Communications: messages, enquiries, support requests, and any photos or attachments you send to us.
Device & usage data: IP address, browser type, operating system, device identifiers, pages visited, referring URLs, timestamps.
Marketing data: your consent preferences and responses to our communications.

3. How We Collect Your Information

Directly from you when you create an account, place an order, contact customer service, or sign up for our newsletter.
Automatically through cookies, pixels, and similar technologies when you browse our store.
From service providers such as Shopify, payment processors, shipping carriers, and analytics providers.
From third parties such as marketing or advertising partners (with appropriate legal basis).

4. How We Use Your Information

Process and fulfil your orders, returns, refunds, and exchanges.
Manage your account and verify your identity.
Provide customer support and respond to your enquiries.
Send transactional emails (order confirmations, shipping updates, refund notifications).
Send marketing communications where you have consented, and allow you to unsubscribe at any time.
Personalise your shopping experience and improve our products and Services.
Prevent fraud, secure transactions, and protect our customers, staff, and business.
Comply with legal, tax, and regulatory obligations.

5. Legal Bases for Processing (GDPR)

Performance of a contract — to process your orders.
Legitimate interests — to operate, improve, and secure our store.
Consent — for marketing communications and non-essential cookies.
Legal obligation — for tax, accounting, and compliance.

6. Sharing Your Personal Information

We share your personal information only when necessary, including with:

Shopify (e-commerce platform & hosting).
Payment processors (e.g., Shopify Payments, PayPal, Klarna) to process your payment securely.
Shipping carriers to deliver your order.
Analytics & marketing partners (with consent where required by law).
Authorities when legally required, or to enforce our terms and protect our rights.

7. International Data Transfers

Some of our service providers operate outside the EEA. When we transfer data internationally we use appropriate safeguards (such as Standard Contractual Clauses) to ensure your data remains protected.

8. How Long We Keep Your Data

We retain personal information only for as long as necessary to fulfil the purposes set out in this Policy, including legal, accounting, or reporting requirements.

9. Your Rights

Depending on your location, you may have the following rights:

Access a copy of your personal information.
Request correction of inaccurate or incomplete data.
Request deletion of your personal information ("right to be forgotten").
Restrict or object to processing.
Data portability.
Withdraw consent at any time (without affecting prior lawful processing).
Lodge a complaint with your local data protection authority.

To exercise any of these rights, contact us at info@thegigistore.com

10. Cookies

We use cookies and similar technologies for essential site functionality, analytics, and (with your consent) marketing. You can manage cookie preferences via your browser settings or our cookie banner.

11. Children's Privacy

Our Services are not directed at children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us with information, please contact us so we can delete it.

12. Security

We use industry-standard security measures including SSL/TLS encryption, secured payment gateways, and access controls. No system is completely secure, but we take all reasonable steps to protect your data.