At Kimiko Pet, we are committed to protecting your privacy and handling your personal data in accordance with the highest standards, including the principles of the General Data Protection Regulation (GDPR).

1. Responsibility & Legal Basis

  • Data Controller: Kimiko Pet Ltd. (123 Pet Lane, London, UK) is responsible for the processing of personal data collected through our website and services.

  • Data Protection Officer (DPO): We have designated a Data Protection Officer who can be reached via our dedicated Privacy Portal or by emailing dpo@kimikopet.com.

  • Legal Basis for Processing: We process your personal data under the following legal grounds:

    • Contract Fulfillment (GDPR Article 6(1)(b)): Processing necessary for executing a sales contract, such as fulfilling your order or managing your customer account.

    • Legitimate Interests (GDPR Article 6(1)(f)): Processing for necessary business operations, such as preventing fraud or responding to general inquiries from interested parties.

    • Consent (GDPR Article 6(1)(a)): Processing based on your explicit permission, such as subscribing to our newsletter or allowing optional conversation recordings for training purposes.

2. Data Collection and Usage

  • Data Collected (for Orders & Accounts): When you register or place an order, we collect essential data, including:

    • Registration/Customer Data (Name, email, invoice/delivery address, phone number, customer ID).

    • Login Data (Email address, password).

    • Connection Data (IP address).

    • Payment Data (Payment information).

  • Purpose of Use: Your personal data is primarily used to process your orders, manage your Kimiko Pet account, and provide customer support.

  • Data Sharing:

    • We never share your personal data with advertisers or unauthorized third parties.

    • We only share the minimum necessary data with commissioned service providers (e.g., payment processors, delivery companies, and customer care teams) to execute the specific service you requested. These partners are legally bound to process your data strictly according to our instructions.

3. Data Security and Retention

  • Security: We protect your data during transmission (e.g., when sending payment or address details) using 128-Bit SSL encryption (Secure Sockets Layer protocol).

  • Data Retention:

    • Data related to your customer account remains stored for the duration of the account, unless you request deletion and there are no overriding legal retention obligations.

    • Data collected for specific, one-time purposes (like a customer care request) is generally deleted within 12 months after processing is complete, or retained based on statutory limitation periods for claims (up to thirty years in specific, legally required cases).

  • International Transfer: Kimiko Pet does not transfer your personal data to countries outside of the UK, the EU, or the European Economic Area (EEA), or to an international organization.

4. Your GDPR Data Subject Rights

You have the following rights regarding the personal data we hold about you:

Your Right Description
Right of Access To request confirmation of what personal data we process and access to that information.
Right to Rectification To have any inaccurate or incomplete data about you corrected.
Right to Erasure To request the deletion of your personal data (“Right to be Forgotten”).
Right to Restriction To limit how we process your personal data.
Right to Object To object to the processing of your data at any time, particularly processing based on legitimate interests.
Right to Data Portability To request your data be transferred to another controller in a structured, commonly used format.
Right to Withdraw Consent To revoke any consent you previously gave for data processing at any point.