Privacy Policy

Effective Date: May 17, 2025

The Anointing Oil Shop, headquartered in The Netherlands, operates an international webshop and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your personal information in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) for EU residents. By using our webshop, you agree to the practices described in this policy.

1. Information We Collect

We collect the following personal information when you interact with our webshop:

• When you make a purchase: Name, billing and shipping address, email address, phone number, and payment details (processed securely by third-party payment providers).

• When you browse our webshop: Internet Protocol (IP) address, browser type, operating system, and device information, collected automatically to improve your experience.

• When you contact us: Name, email address, and any information you provide in your message.

• Marketing (optional): If you opt in, we may use your email address to send you updates about products, promotions, or events.

We do not knowingly collect personal data from individuals under 16 years of age without parental consent. If you believe we have collected such data, please contact us.

2. How We Use Your Information

We use your personal information for the following purposes:

• Order processing: To process and fulfill your orders, including arranging delivery through our shipping partners in the USA.

• Customer support: To respond to your inquiries or resolve issues.

• Webshop improvement: To analyze browsing behavior and optimize our webshop’s functionality.

• Marketing: To send promotional emails, only with your explicit consent.

• Legal compliance: To comply with applicable laws, such as tax or consumer protection regulations.

3. Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

• Contractual necessity: To fulfill your purchase orders (e.g., processing payments and shipping).

• Consent: For marketing emails or non-essential cookies, where you have explicitly opted in.

• Legitimate interests: To improve our webshop, prevent fraud, and ensure security, provided this does not override your rights.

• Legal obligation: To comply with regulatory requirements, such as record-keeping for tax purposes.

4. Consent and Your Rights

How We Obtain Consent

When you provide personal information to complete a purchase, we assume you consent to its use for that specific purpose (e.g., order fulfillment). For secondary purposes, such as marketing, we will request your explicit consent through clear opt-in mechanisms.

Withdrawing Consent

You may withdraw your consent at any time by:

• Unsubscribing from marketing emails via the link in each email.

• Contacting us at info@anointingoil.org

Your Data Protection Rights

Under GDPR and other applicable laws, you have the following rights:

• Access: Request a copy of your personal data.

• Rectification: Correct inaccurate or incomplete data.

• Erasure: Request deletion of your data, subject to legal obligations.

• Restriction: Limit how we process your data.

• Data portability: Receive your data in a structured, machine-readable format.

• Objection: Object to processing based on legitimate interests, including marketing.

• Withdraw consent: Stop processing based on consent.

To exercise these rights, contact us at info@love-unlimited.org. We will respond within one month, extendable by two months for complex requests.

5. Sharing Your Information

We share your personal data only when necessary:

• Shipping partners: To fulfill orders, we share your name, shipping address, and contact details with our USA-based shipping partners.

• Payment processors: Secure third-party providers (e.g., Shopify Payments, PayPal) process your payment details, encrypted to Payment Card Industry Data Security Standard (PCI-DSS).

• Service providers: IT, analytics, or marketing providers may access limited data to support our webshop, under strict data protection agreements.

• Legal requirements: We may disclose data if required by law or to protect our rights.

Some recipients may be located outside the European Economic Area (EEA), such as in the USA. We ensure appropriate safeguards, such as Standard Contractual Clauses, to protect your data.

6. Shopify Platform

Our webshop is hosted on Shopify Inc., which stores your data on secure servers behind firewalls. Shopify complies with PCI-DSS for payment processing, retaining transaction data only as needed to complete purchases. For details, see Shopify’s Privacy Policy (https://www.shopify.com/legal/privacy).

7. Security

We implement industry-standard measures to protect your data, including:

• Secure Socket Layer (SSL) encryption for data transmission.

• AES-256 encryption for stored payment information.

• Regular security updates and access controls.

No system is 100% secure, but we take reasonable steps to prevent unauthorized access, loss, or misuse.

8. Cookies and Tracking

We use cookies and similar technologies to enhance your experience:

• Essential cookies: Enable core functions, such as session management and cart storage.

• Analytics cookies: Track visits and behavior (e.g., _shopify_visit, _shopify_uniq) to improve our webshop.

• Marketing cookies: Support targeted ads, only with your consent.

You can manage cookie preferences via our cookie banner or browser settings. Note that disabling essential cookies may affect webshop functionality.

9. Data Retention

We retain your personal data only as long as necessary:

• Purchase data: Kept for 7 years to comply with Dutch tax and accounting laws.

• Account data: Retained until you request deletion or the account is inactive for 5 years.

• Marketing data: Stored until you unsubscribe or withdraw consent.

After these periods, we securely delete or anonymize your data.

10. International Data Transfers

As our shipping partners are based in the USA, your data may be transferred outside the EEA. We use GDPR-compliant mechanisms, such as Standard Contractual Clauses, to ensure equivalent protection. Contact us for more details.

11. Third-Party Links

Our webshop may contain links to third-party websites (e.g., payment processors). We are not responsible for their privacy practices. Please review their policies before sharing data.

12. Changes to This Privacy Policy

We may update this policy to reflect legal or operational changes. Updates will be posted on our webshop, with the effective date revised. For significant changes, we will notify you via email or a prominent notice. Please review this policy periodically.

13. Complaints

If you have concerns about our data practices, please contact us at info@anointingoil.org. You may also lodge a complaint with a supervisory authority, such as the Dutch Data Protection Authority (Autoriteit Persoonsgegevens): Autoriteit Persoonsgegevens, PO Box 93374, 2509 AJ, The Hague, The Netherlands. Website: https://autoriteitpersoonsgegevens.nl

14. Contact Us

For questions, requests, or complaints, contact our Privacy Officer: Stichting LoveUnlimited Ministries Email: info@love-unlimited.org

We aim to respond within one month, ensuring your privacy is respected.