Policy Privacy

This Website collects certain Personal Data from its Users. This policy outlines the methods of collection, processing, and protection of such data, in compliance with Regulation (EU) 2016/679 (GDPR).
Data Controller
MOOREA SWIMWEAR d.o.o.
Trgovačka ulica 1A, 52470 Umag, Croatia
Tax ID: HR74411184709
Controller’s email address: info@mooreaswim.com
Types of Data Collected
Personal Data collected by this Website, independently or through third parties, include:
  • Data voluntarily provided by the User: name, surname, email, phone number, billing address, shipping address, payment information, date of birth, city, postal code, country, username, password, purchase history.
  • Data collected automatically: Usage Data, Tracking Tools (e.g., cookies, web beacons), unique device identifiers for advertising (e.g., Google Advertiser ID, IDFA), device information (e.g., operating system, browser, language), session statistics, IP address, browsing history, clicks, page interactions (e.g., mouse movements, scrolling, touch events), video view data.
Detailed information on each type of Personal Data collected is provided in the dedicated sections of this policy or through specific information notices displayed prior to collection.
Personal Data may be freely provided by the User or collected automatically during Website use. Unless otherwise specified, the requested data are mandatory to provide the Service. Refusal to provide such data may prevent access to the Service. Optional data may be withheld without affecting the Service’s availability.
Users unsure about which data are mandatory may contact the Controller at info@mooreaswim.com.
The use of Cookies or other Tracking Tools aims to provide the requested Service, in addition to the purposes outlined in this policy and the Cookie Policy. The User is responsible for any third-party Personal Data shared through the Website and warrants their right to provide such data.
Methods and Location of Data Processing
Processing Methods
The Controller adopts appropriate technical and organizational security measures to protect Personal Data from unauthorized access, disclosure, alteration, or destruction. Processing is carried out using IT and/or telematic tools, with methods strictly related to the stated purposes.
In addition to the Controller, Personal Data may be accessible to personnel involved in the Website’s operations (e.g., administrative, commercial, marketing, legal, or system administration staff) or external parties (e.g., technical service providers, couriers, hosting providers, IT companies, communication agencies), appointed as Data Processors where necessary. The updated list of Data Processors is available upon request to the Controller.
Location of Processing
Data are processed at the Controller’s operational offices and any other location where involved parties operate. Personal Data may be transferred to countries outside the European Union or European Economic Area (EEA). In such cases, the Controller ensures compliance with the GDPR through measures such as standard contractual clauses, adequacy decisions, or, where applicable, the User’s explicit consent. For further details, contact the Controller.
Retention Period
Personal Data are retained for the time necessary to fulfill the purposes for which they were collected, unless longer retention is required by legal obligations or based on the User’s consent. Specifically:
  • Data collected for contractual purposes are retained until the contract is fulfilled.
  • Data collected for the Controller’s legitimate interests are retained until such interests are satisfied.
  • Data collected based on consent are retained until consent is withdrawn.
At the end of the retention period, Data will be deleted or anonymized, unless required by law.
Purposes of Data Processing
User Data are collected for the following purposes:
  • Provide the requested Service (e.g., order management, payments, shipping).
  • Comply with legal obligations (e.g., invoicing, record-keeping).
  • Respond to inquiries or support requests.
  • Protect the Controller’s rights and interests (e.g., fraud prevention, legal defense).
  • Send commercial and promotional communications (with User consent).
  • Analyze Website traffic and improve functionality (e.g., statistics, optimization).
  • Personalize the User experience and display relevant advertising content.
For details on processing purposes and data processed, refer to the section “Details on the Processing of Personal Data.”
Details on the Processing of Personal Data
1. Contacting the User
  • Contact Form: By filling out the contact form, the User consents to the use of their Data (e.g., name, surname, email) to respond to inquiries or quote requests.
  • Newsletter: By subscribing to the newsletter, the User’s email is added to a contact list for sending communications, including promotional ones, related to the Website. Users may be added to the list upon registration or purchase (with consent).
2. Payment Management
Payments are processed through external providers (e.g., PayPal, Stripe). The Website does not directly collect payment information but receives transaction confirmation. Processed Data include name, surname, email, payment information, billing/shipping address, and purchase history.
3. Statistics
Services like Google Analytics (with anonymized IP) monitor Website traffic to analyze User behavior and improve services. Processed Data include Usage Data, Tracking Tools, device information, and session statistics.
4. Advertising and Remarketing
Services like Google Ads and Meta Pixel use Tracking Tools to display personalized ads based on User behavior. Users can opt out via the respective service settings (e.g., Google Ad Settings).
5. Tag Management and Optimization
Services like Google Tag Manager and Cloudflare manage tags and optimize Website traffic, processing Usage Data and Tracking Tools.
6. Spam and Bot Protection
Services like Cloudflare Bot Management analyze traffic to protect the Website from malicious activities, processing Data such as IP address, session statistics, and page interactions.
7. Display of External Content
Services like YouTube and Google Fonts enable the display of external content, processing Usage Data and Tracking Tools.
Legal Basis for Processing
The Controller processes Personal Data based on one of the following legal grounds:
  • User consent for specific purposes.
  • Performance of a contract or pre-contractual measures.
  • Compliance with a legal obligation.
  • Pursuit of the Controller’s or third parties’ legitimate interests, unless overridden by the User’s interests.
Users may request clarification on the legal basis for each processing by contacting the Controller.
User Rights (GDPR)
Under the GDPR, Users have the right to:
  • Withdraw consent at any time.
  • Object to the processing of their Data for specific reasons or for direct marketing purposes.
  • Access their Data and obtain a copy.
  • Verify and request rectification of their Data.
  • Request restriction of processing.
  • Request deletion of their Data (right to be forgotten).
  • Receive their Data in a structured format or transfer them to another controller (portability).
  • Lodge a complaint with a supervisory authority (e.g., Croatian Personal Data Protection Agency).
To exercise these rights, contact the Controller at info@mooreaswim.com. Requests will be processed within one month, unless complex cases arise. The Controller will notify recipients of any rectifications or deletions, if requested.
International Data Transfers
If Data are transferred outside the EU/EEA, the Controller will ensure appropriate safeguards (e.g., standard contractual clauses, adequacy decisions). Users may request details on transfers and safeguards.
Cookie Policy
This Website uses Tracking Tools. For more details, consult the Cookie Policy available on the Website.
Changes to This Policy
The Controller reserves the right to amend this policy, notifying Users via this page or, where feasible, through direct communication. Users are advised to regularly review this page, noting the last modification date. If changes require renewed consent, this will be requested.
Additional Information
  • Legal Defense: User Data may be used for defense against misuse of the Website or in legal proceedings.
  • System Logs: The Website and third-party services may collect system logs containing Personal Data (e.g., IP address) for operational and maintenance purposes.
  • Further Information: Additional details on processing can be requested from the Controller.
Definitions
  • Personal Data: Information that identifies or makes a natural person identifiable.
  • Usage Data: Information collected automatically (e.g., IP, browser, operating system).
  • User/Data Subject: The individual to whom the Personal Data relates.
  • Data Controller: MOOREA SWIMWEAR d.o.o., responsible for determining the purposes and means of processing.
  • Data Processor: Entity processing Data on behalf of the Controller.
  • Tracking Tool: Technologies (e.g., cookies) used to track Users.

Last updated: May 28, 2025

Necessary cookies enable essential site features like secure log-ins and consent preference adjustments. They do not store personal data.
None
Functional cookies support features like content sharing on social media, collecting feedback, and enabling third-party tools.
None
Analytical cookies track visitor interactions, providing insights on metrics like visitor count, bounce rate, and traffic sources.
None
Advertisement cookies deliver personalized ads based on your previous visits and analyze the effectiveness of ad campaigns.
None