Effective Date: April 11, 2025
At Tasha (t-a-s-h-a.com), your privacy is important to us. This GDPR Privacy Policy explains how we collect, use, and protect your personal data in accordance with the General Data Protection Regulation (GDPR).
1. Who We Are
Tasha is a lifestyle and fashion platform focused on curated content, community engagement, and brand collaboration. For the purposes of GDPR, we are the “data controller” of your personal information.
2. What Data We Collect
We may collect and process the following types of personal data:
- Contact Information: such as name, email address, and phone number.
- Demographic Data: including age, gender, and location (if provided).
- Website Usage Data: including IP address, browser type, pages visited, and time spent on our site.
- Cookies and Tracking Technologies: to enhance user experience and gather analytics.
- User-Generated Content: comments, reviews, and contributions submitted to the site.
3. How We Use Your Data
We use your data for the following purposes:
- To operate and maintain the website
- To send newsletters and promotional content (only if you opt-in)
- To respond to inquiries and provide customer support
- To analyze website performance and improve user experience
- To comply with legal obligations
4. Legal Basis for Processing
We process your personal data under the following legal bases:
- Your consent (e.g. newsletter sign-up)
- Performance of a contract (e.g. purchases or collaboration agreements)
- Compliance with legal obligations
- Our legitimate interests (e.g. improving our services and marketing)
5. Sharing Your Data
We do not sell or rent your personal data. However, we may share your data with:
- Service providers (e.g., email marketing platforms, analytics providers)
- Legal authorities if required by law
- Business partners only when consent has been given
All third parties are required to protect your data and use it only for the purposes we specify.
6. Data Retention
We retain your data only for as long as necessary to fulfill the purposes outlined in this policy or to comply with legal obligations.
7. Your Rights Under GDPR
Under GDPR, you have the right to:
- Access your personal data
- Request correction of inaccurate data
- Request deletion of your data (“right to be forgotten”)
- Object to or restrict processing
- Withdraw consent at any time
- Request data portability
To exercise any of these rights, contact us at [email protected].
8. Data Security
We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, loss, or misuse.
9. International Data Transfers
If your data is transferred outside the European Economic Area (EEA), we ensure adequate protection through standard contractual clauses or other legal safeguards.
10. Cookies
Our site uses cookies to improve functionality and enhance user experience. You can control cookie settings through your browser preferences. For more details, please see our Cookie Policy.
11. Contact Us
If you have any questions about this GDPR Privacy Policy or how we handle your data, you can reach us at:
Email: [email protected]
Address: [Insert business address, if applicable]
12. Changes to This Policy
We may update this Privacy Policy occasionally. The most recent version will always be posted on our website with the Effective Date clearly stated.