Spring offer on verandas and glass sliding walls. You see business prices once your account is approved.
Free delivery from EUR 2505-year warrantyProduced in the Netherlands
info@mira-aluminium.nlAbout usTrade
EN
Mira AluminiumMira AluminiumWebshop
0

Privacy Policy

Mira Aluminium B.V. attaches great importance to the protection of your personal data. In this privacy policy we explain which personal data we process when you visit our website, create an account, purchase a product or request a quotation, why and on what legal basis we do so, how long we retain your data and which rights you have. We process personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable privacy legislation.

Data Controller

The controller responsible for the processing of your personal data is:

Mira Aluminium B.V. [vestigingsadres] Chamber of Commerce number: [KvK-nummer] VAT number: [BTW-nummer] Telephone: [telefoonnummer] Email: info@mira-aluminium.nl

For any questions about this privacy policy or about the processing of your personal data, you can contact us using the details above.

Which Personal Data We Process

Depending on your contact with us and the services you use, we process the following categories of personal data.

Contact and appointment data: when you complete the contact or appointment form, we process your name, email address, telephone number, the subject of your message and any additional information you provide yourself (for example about your project or desired appointment).

Account data: if you create an account, we process your login credentials via our authentication service (Supabase Auth), such as your email address and an encrypted password, as well as data you enter in your profile.

Order and quotation data: for an order or quotation request, we process your name and address details, delivery and billing address, the ordered or configured products, the dimensions and specifications of your custom work, order history, quotations and associated correspondence.

Business (B2B) organisation data: for approved business customers, we process data relating to your company, such as company name, Chamber of Commerce number, VAT number, business and billing address, contact persons and the agreements and terms linked to your account.

Payment data: payments are processed via our payment service provider Mollie (iDEAL, Bancontact and other Mollie payment methods). Mira Aluminium does not itself receive or store full payment or card details; from Mollie we receive only the payment status and the data needed to link your payment to your order.

Technical data and error monitoring: when you use our website, we process technical data such as your IP address, browser type, device information, pages visited and error messages. Error monitoring (via Sentry) is only loaded after you have given consent for this via the cookie banner.

Purposes and Legal Bases

We process your personal data solely for specified purposes and on the basis of a valid legal basis under the GDPR.

Performance of the contract (Article 6(1)(b) GDPR): for handling your order or quotation, producing and delivering custom products, carrying out installation, managing your account and handling payments, warranty and service.

Legal obligation (Article 6(1)(c) GDPR): for complying with legal obligations, including the statutory retention obligation for invoices and records.

Legitimate interest (Article 6(1)(f) GDPR): for answering questions and appointment requests, improving and securing our website and services, preventing misuse and fraud, and sound business operations. In doing so, we always weigh your interests and rights against our interests.

Consent (Article 6(1)(a) GDPR): for placing non-essential cookies and loading error monitoring, and for any newsletters or commercial messages. You can withdraw your consent at any time; this does not affect the lawfulness of the processing prior to the withdrawal.

Cookies

Our website uses cookies and similar techniques. Necessary cookies are required for the website to function properly; for analytical and other non-essential cookies and for error monitoring we ask for your consent in advance.

A full explanation of which cookies we use, for what purpose and how you can adjust your preferences can be found in our cookie policy at /cookiebeleid.

Processors and Sub-Processors

For our services we engage external parties (processors) that process personal data on our behalf. With these parties we conclude data processing agreements to ensure appropriate safeguards for your data. We use the following processors and sub-processors:

Supabase: hosting and database (servers in the EU/Frankfurt), including account authentication.

Vercel: hosting and delivery of the website (CDN).

Mollie: handling of online payments.

Sanity: content management system (CMS) for the content of the website.

Sentry: error monitoring, only loaded after you have given consent for this.

Email provider: a transactional email service for sending confirmation and service emails (planned).

We aim to process and store your personal data within the European Union. If any processing were to take place outside the EU, we ensure appropriate safeguards as required by the GDPR (for example the European Commission's standard contractual clauses).

Retention Periods

We do not retain your personal data longer than necessary for the purposes for which it was collected, or for as long as legally required.

We retain invoices and the underlying records for at least 7 years, in accordance with the statutory retention obligation.

We retain contact and appointment data for as long as necessary to handle your question or request, and thereafter for a reasonable period for follow-up.

We retain account, order and quotation data for the duration of your account and your relationship with us, and thereafter in accordance with the applicable statutory retention periods.

We retain technical data and error monitoring for a limited period necessary for security and resolving malfunctions.

After the retention period has expired, your data is deleted or anonymised.

Sharing with Third Parties

We do not sell your personal data to third parties. We share your data only with the processors mentioned above insofar as this is necessary for our services, and with third parties where we are legally obliged to do so (for example the Tax Authorities or competent authorities). Where we use engaged installers or carriers for delivery or installation, they receive only the data necessary to carry out their work.

Security

We take appropriate technical and organisational measures to protect your personal data against loss, misuse and unauthorised access. Our data is hosted within the EU, with encrypted connections, access control and strict authorisation on sensitive data (including a separated handling of payments via Mollie). Should a data breach unexpectedly occur despite our measures, we will act in accordance with our legal obligations.

Your Rights

Under the GDPR you have the following rights with regard to your personal data:

Right of access: you can request which personal data we process about you.

Right to rectification: you can have inaccurate or incomplete data corrected or completed.

Right to erasure ("right to be forgotten"): you can request that your data be erased, insofar as we are not legally obliged to retain it.

Right to restriction: you can request that the processing of your data be temporarily restricted.

Right to object: you can object to processing based on our legitimate interest.

Right to data portability: you can request to receive the data you provided in a common, machine-readable format, or to have it transferred.

Right to withdraw consent: if you have given consent, you can withdraw it at any time.

You can exercise your rights by sending a request to info@mira-aluminium.nl. We may ask you to identify yourself to ensure that the request comes from you. In principle, we respond to your request within one month.

Complaint to the Dutch Data Protection Authority

If you believe that we are not handling your personal data with due care, we ask you to inform us of this first, so that we can look for a solution together. In addition, you always have the right to lodge a complaint with the supervisory authority, the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) (www.autoriteitpersoonsgegevens.nl).

Changes to This Privacy Policy

We may amend this privacy policy from time to time, for example when our services, legislation or the processors we engage change. The most up-to-date version can always be found on our website. We advise you to consult this privacy policy regularly.

Contact

Do you have questions about this privacy policy or about the way we handle your personal data? Then please contact us:

Mira Aluminium B.V. [vestigingsadres] Telephone: [telefoonnummer] Email: info@mira-aluminium.nl

This is a first draft and should be submitted to a lawyer for review before it is published. The data placed between square brackets ([KvK-nummer], [BTW-nummer], [vestigingsadres], [telefoonnummer]) still need to be filled in. Last updated: [datum laatste wijziging].

Questions about this page or your data?

Contact us