Privacy policy

Privacy Policy

Last updated: May 20, 2026

LooksZone operates this store and website, including all related information, content, features, tools, products and services, in order to provide you, the customer, with a curated shopping experience (the "Services"). LooksZone is powered by Shopify, which enables us to provide the Services to you. This Privacy Policy describes how we collect, use, and disclose your personal information when you visit, use, or make a purchase or other transaction using the Services or otherwise communicate with us. If there is a conflict between our Terms of Service and this Privacy Policy, this Privacy Policy controls with respect to the collection, processing, and disclosure of your personal information.

Please read this Privacy Policy carefully. By using and accessing any of the Services, you acknowledge that you have read this Privacy Policy and understand the collection, use, and disclosure of your information as described in this Privacy Policy.

1. Personal Information We Collect or Process

When we use the term "personal information," we are referring to information that identifies or can reasonably be linked to you or another person. Personal information does not include information that is collected anonymously or that has been de-identified so that it cannot identify or be reasonably linked to you.

We may collect or process the following categories of personal information, depending on how you interact with the Services, where you live, and as permitted or required by applicable law:

  • Contact details – your name, billing address, shipping address, phone number, and email address.
  • Financial information – credit card, debit card, and financial account numbers, payment card information, transaction details, form of payment, payment confirmation, and other payment details.
  • Account information – your username, password, security questions, preferences, and settings.
  • Transaction information – items you view, add to your cart, add to your wishlist, or purchase, return, exchange, or cancel, and your past transactions.
  • Communications with us – information you include in communications with us, for example, when sending a customer support inquiry.
  • Device information – information about your device, browser, or network connection, your IP address, and other unique identifiers.
  • Usage information – information regarding your interaction with the Services, including how and when you interact with or navigate the Services.
  • Marketing preferences – your preferences for receiving marketing communications from us.

2. Personal Information Sources

We may collect personal information from the following sources:

  • Directly from you – when you create an account, visit or use the Services, communicate with us, subscribe to our newsletter, or otherwise provide us with your personal information.
  • Automatically through the Services – from your device when you use our products or services or visit our websites, and through the use of cookies and similar technologies (see Section 9 – Cookies).
  • From our service providers – when we engage them to enable certain technology and when they collect or process your personal information on our behalf.
  • From our partners or other third parties.

3. Legal Basis for Processing (EU/UK/EEA)

If you reside in the European Economic Area (EEA) or the United Kingdom, we process your personal information on the following legal bases under the General Data Protection Regulation (GDPR) and UK GDPR:

  • Performance of a contract – to process your orders, manage your account, arrange shipping, and handle returns and exchanges.
  • Legitimate interests – to improve our Services, prevent fraud, ensure security, and send you relevant marketing communications (where you have not opted out).
  • Consent – to send you marketing emails via Klaviyo and to set non-essential cookies (analytics and marketing cookies). You may withdraw your consent at any time.
  • Legal obligation – to comply with applicable laws, such as tax, accounting, and consumer protection obligations.

4. How We Use Your Personal Information

Depending on how you interact with us or which of the Services you use, we may use personal information for the following purposes:

  • Provide, tailor, and improve the Services – to process your payments, fulfill your orders, manage your account, arrange for shipping, facilitate returns and exchanges, remember your preferences, send account notifications, and create a customized shopping experience.
  • Marketing and advertising – to send marketing, advertising, and promotional communications by email (via Klaviyo) and to show you online advertisements on third-party platforms including Meta (Facebook and Instagram), based on your activity on the Services. We will only send you marketing emails where you have provided your consent or where permitted by applicable law.
  • Security and fraud prevention – to authenticate your account, provide a secure payment and shopping experience, and detect, investigate, or take action regarding possible fraudulent, illegal, or malicious activity.
  • Communicating with you – to provide customer support and maintain our business relationship with you.
  • Legal reasons – to comply with applicable law, respond to valid legal process, enforce our terms or policies, and protect our rights and the rights of our users.

5. How We Disclose Personal Information

We may disclose your personal information to third parties for legitimate purposes subject to this Privacy Policy. Such circumstances include:

  • Shopify – our e-commerce platform provider, which hosts the Services and processes personal information on our behalf. See Section 6 for more detail.
  • Klaviyo – our email marketing platform. We share your email address and purchase data with Klaviyo to send you transactional and marketing emails. Klaviyo's privacy policy is available at klaviyo.com/legal/privacy-notice.
  • Meta Platforms (Facebook & Instagram) – we use Meta Pixel on our website to measure the effectiveness of our advertising and to show you relevant ads on Facebook and Instagram. Meta may collect information about your activity on our site. Meta's privacy policy is available at facebook.com/privacy/policy.
  • Payment processors – including Shopify Payments, PayPal, and other payment providers, to process your transactions securely.
  • Shipping and fulfillment providers – to arrange delivery of your orders.
  • Business and marketing partners – to provide marketing services and advertise to you, including personalized advertising based on your online activity. You may opt out of targeted advertising here.
  • Legal and compliance – when required by law, court order, or governmental authority, or to protect our rights and the rights of others.
  • Business transactions – in connection with a merger, acquisition, or sale of assets.

6. Relationship with Shopify

The Services are hosted by Shopify, which collects and processes personal information about your access to and use of the Services in order to provide and improve the Services for you. Information you submit to the Services will be transmitted to and shared with Shopify as well as third parties that may be located in countries other than where you reside.

In addition, to help protect, grow, and improve our business, we use certain Shopify enhanced features that incorporate data and information obtained from your interactions with our Store, along with other merchants and with Shopify.

To learn more about how Shopify uses your personal information and any rights you may have, you can visit the Shopify Consumer Privacy Policy. You may also exercise your privacy rights with respect to data processed by Shopify at the Shopify Privacy Portal.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies on our website. Cookies are small text files placed on your device when you visit our website.

We use the following types of cookies:

  • Strictly necessary cookies – required for the website to function (e.g. shopping cart, login). These cannot be disabled.
  • Analytics cookies – help us understand how visitors interact with our website (e.g. pages visited, time on site). We use these to improve the Services.
  • Marketing cookies – used to deliver relevant advertisements to you on third-party platforms, including via Meta Pixel (Facebook/Instagram). These cookies track your activity across websites.

If you are located in the EU, EEA, or UK, we will ask for your consent before setting non-essential cookies. You may change your cookie preferences at any time via the cookie settings on our website.

You can also manage cookies through your browser settings. Note that disabling certain cookies may affect the functionality of the Services.

8. Third-Party Websites and Links

The Services may provide links to websites or other online platforms operated by third parties. If you follow links to sites not affiliated or controlled by us, you should review their privacy and security policies and other terms and conditions. We are not responsible for the privacy or security of such sites.

9. Children's Data

The Services are not intended for children under the age of 16 (or the age of majority in your jurisdiction, if higher). We do not knowingly collect personal information from children. If you are the parent or guardian of a child who has provided us with their personal information, please contact us using the details below and we will delete it.

As of the effective date of this Privacy Policy, we do not knowingly "sell" or "share" personal information of individuals under 16 years of age.

10. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, including:

  • Order and transaction records – retained for 7 years to comply with Czech and EU accounting and tax obligations.
  • Customer accounts – retained for the duration your account is active, plus 3 years after last activity.
  • Marketing data – retained until you unsubscribe or withdraw consent, after which we will stop sending marketing communications within 10 business days.
  • Legal and compliance records – retained for as long as required by applicable law.

After the applicable retention period, your personal information will be securely deleted or anonymized.

11. Security of Your Information

We take reasonable technical and organizational measures to protect your personal information against unauthorized access, loss, misuse, or alteration. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

We recommend that you do not share your account credentials with others and that you use a strong, unique password for your account.

12. International Transfers

We are based in the Czech Republic and your personal information may be transferred to, stored, or processed in countries outside your country of residence, including the United States and other countries where our service providers operate.

If we transfer your personal information out of the European Economic Area or the United Kingdom, we will rely on recognized transfer mechanisms such as the European Commission's Standard Contractual Clauses (SCCs), or equivalent contracts issued by the UK competent authority, unless the data transfer is to a country that has been determined to provide an adequate level of protection.

13. Your Rights and Choices

Depending on where you live, you may have some or all of the following rights:

  • Right to Access / Know – request access to the personal information we hold about you.
  • Right to Delete – request deletion of your personal information.
  • Right to Correct – request correction of inaccurate personal information.
  • Right of Portability – receive a copy of your personal information in a structured, machine-readable format.
  • Right to Opt Out of Sale or Targeted Advertising – opt out of the "sale" or "sharing" of your personal information for targeted advertising purposes here.
  • Managing Communication Preferences – you may opt out of marketing emails at any time by clicking "Unsubscribe" in any email we send you. We may still send you non-promotional communications related to your account or orders.

If you reside in the EEA or UK, you additionally have the right to:

  • Object to or restrict processing – ask us to stop or limit processing of your personal information for certain purposes.
  • Withdraw consent – where we rely on consent to process your personal information, you may withdraw it at any time without affecting the lawfulness of prior processing.

We will not discriminate against you for exercising any of these rights. We may need to verify your identity before processing your request. You may designate an authorized agent to submit requests on your behalf, subject to verification.

We will respond to your request within the timeframe required by applicable law (typically within 30 days for GDPR requests).

14. Complaints

If you have concerns about how we process your personal information, please contact us first using the contact details below. If you are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority.

For EEA residents, a list of national data protection authorities is available at edpb.europa.eu.

For UK residents, the relevant authority is the Information Commissioner's Office (ICO) at ico.org.uk.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes to our practices or for other operational, legal, or regulatory reasons. We will post the revised Privacy Policy on this website and update the "Last updated" date. Where required by applicable law, we will notify you of material changes.

16. Contact Us

If you have any questions about this Privacy Policy, wish to exercise your rights, or have concerns about how we handle your personal information, please contact us:

LooksZone s.r.o.
Email: support@lookszone.store
Address: Nové sady 988/2, 602 00 Brno, Czech Republic

For the purposes of applicable data protection laws, LooksZone is the data controller of your personal information.