Select Page

Privacy Policy

Last Updated: 25 April 2026

My Tiny Sanctuary at Leof. Aphaia 222, Agia Marina, Aegina, Greece, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website www.mytinysanctuary.com or make a purchase.

We comply with the General Data Protection Regulation (GDPR) (EU) 2016/679 and applicable Greek data protection laws.

1. Information We Collect

We collect information that you provide directly to us when you:

  • Create an account or make a purchase.
  • Subscribe to our newsletter.
  • Contact us via email or social media.

Types of data collected:

  • Personal Identification: Name, email address, phone number.
  • Billing & Shipping: Physical address, postal code, city, country.
  • Payment Information: Credit card details or IBAN. Note: We do not store your full credit card numbers. Payments are processed securely by third-party providers (Viva Wallet and Stripe).
  • Technical Data: IP address, browser type, device information (collected automatically for security and analytics).

2. How We Use Your Information

We use the collected data for the following specific purposes:

  • Order Fulfillment: To process payments, ship your orders, and provide invoices (required by Greek tax law).
  • Communication: To send you order updates, shipping notifications, and respond to your inquiries.
  • Marketing (With Consent): To send you our newsletter with updates on new collections, animal spirits, and workshops. You can unsubscribe at any time.
  • Legal Compliance: To comply with Greek and EU tax and consumer protection regulations.

3. Legal Basis for Processing (GDPR)

We process your data based on:

  • Contractual Necessity: To fulfill the contract of sale when you buy from us.
  • Legal Obligation: To keep tax records and invoices for the Greek authorities.
  • Consent: When you explicitly opt-in to our newsletter or cookie usage.
  • Legitimate Interest: To prevent fraud and ensure the security of our website.

4. Sharing Your Information

We do not sell your personal data to third parties. We only share data with trusted service providers who help us operate our business:

  • Shipping Carriers: (e.g., ELTA/Courier services) to deliver your package. They receive your name, address, and phone number.
  • Payment Processors: Viva Wallet and Stripe. They process your payment securely. We do not see or store your full credit card details.
  • Email Marketing: MailPoet and Infomaniak to send our email and newsletters.
  • Accounting/Tax: Our local accountant to fulfill Greek tax reporting obligations.

All third parties are required to respect the security of your personal data and to treat it in accordance with the GDPR.

5. Data Retention

  • Order Data: We retain your personal information associated with an order for 10 years to comply with Greek tax and commercial law obligations.
  • Newsletter Data: We retain your email address until you unsubscribe.
  • Account Data: We retain your account information as long as your account is active.

6. Your Rights (GDPR)

As a data subject, you have the following rights:

  • Right to Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can request correction of inaccurate or incomplete data.
  • Right to Erasure ("Right to be Forgotten"): You can request deletion of your data, subject to legal retention obligations (e.g., tax laws).
  • Right to Restrict Processing: You can request we pause processing your data.
  • Right to Data Portability: You can request your data in a structured, machine-readable format.
  • Right to Object: You can object to processing for direct marketing purposes.

To exercise these rights, please contact us at shop@mytinysanctuary.com

7. Cookies

Our website uses cookies to enhance your experience (e.g., keeping items in your cart).

  • Essential Cookies: Required for the shop to function (e.g., WooCommerce session).
  • Analytics Cookies: Help us understand how visitors use our site (e.g., Google Analytics).
  • Marketing Cookies: Used for retargeting (if applicable).

You can control cookie settings through your browser. Continuing to use our site implies consent to our use of cookies as described in our Cookie Policy.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. Our website is hosted on secure servers in Switzerland with SSL encryption.

9. International Transfers

If you order from outside Greece, your data may be transferred to shipping carriers in other countries. We ensure appropriate safeguards are in place for any such transfers in compliance with GDPR.

10. Contact Us

If you have any questions about this Privacy Policy, please contact us:

  • Owner: Christel Mesey, My Tiny Sanctuary
  • Email: hop@mytinysanctuary.com
  • Phone: +30 698 6249663
  • Mail: My Tiny Sanctuary, Leof. Aphaia 222, 18010 Agia Marina Aegina, Greece

You also have the right to lodge a complaint with the Hellenic Data Protection Authority (HDPA) (www.dpa.gr) if you believe our processing of your data violates GDPR.