GDPR Compliance Statement

Gigi Tools is committed to protecting the privacy and security of our users’ and customers’ data. We fully comply with the General Data Protection Regulation (GDPR) to ensure that our European customers can shop with total peace of mind.

1. Data Protection Principles

We process all personal data in accordance with the following principles:

• Lawfulness, Fairness, and Transparency: We only collect data necessary for fulfilling your orders.
• Purpose Limitation: Your data is used only for the reasons we have stated (shipping, payments, and site optimization).
• Data Minimization: We do not collect unnecessary personal information.
• Accuracy: We keep your data up to date and corrected.
• Storage Limitation: We only keep your data for as long as necessary to provide our services and meet legal tax/accounting requirements.
• Integrity and Confidentiality: We use high-level encryption to protect your data.

2. Your Rights Under GDPR

As a user of our services, you have the following rights regarding your personal data:

• The Right to Access: You can request a copy of the personal data we hold about you.
• The Right to Rectification: You can ask us to correct any information you believe is inaccurate.
• The Right to Erasure (“Right to be Forgotten”): You can request that we delete your personal data under certain conditions.
• The Right to Restrict Processing: You can ask us to limit how we use your data.
• The Right to Data Portability: You can request that we transfer your data to another organization.
• The Right to Object: You can object to our processing of your personal data (e.g., for direct marketing).

3. Legal Basis for Processing

We process your data based on the following legal grounds:

• Contractual Necessity: We need your address and payment details to fulfill your order.
• Legitimate Interests: We use cookies to provide the correct currency and for site security via our global performance layers.
• Consent: We only send marketing emails if you have explicitly opted-in.

4. Data Transfers

To provide a global service, we use trusted service providers (such as payment gateways and analytics tools) that may operate outside the European Economic Area (EEA). We ensure these partners adhere to strict data protection standards equivalent to GDPR.

5. How to Exercise Your Rights

If you wish to exercise any of your rights, or if you have questions about how we handle your data, please contact our Data Protection Team:

• Live Chat: Speak to a representative instantly.
• WhatsApp: Message our support team for a quick response.
• Email: Reach out via the provided email support@gigi-tools.com

We aim to respond to all data requests within 30 days.