Privacy Policy

Effective Date: March 2026

  1. Introduction
    At Shineza we are committed to protecting your privacy. This Privacy Policy explains how we process personal data when you contact us via our website (e.g., through the contact/landing page form) or email.

We act as the data controller under applicable data protection laws, including the EU General Data Protection Regulation (GDPR) where it applies.

  1. Data We Collect
    We collect only the personal data you voluntarily provide when contacting us, typically:
  • Your email address
  • Your name (if provided)
  • Any other information you include in your message (e.g., phone number, details about your inquiry)

We do not collect any other personal data automatically (no IP logging for tracking, no cookies, no analytics tools).

  1. Purpose and Lawful Basis for Processing
    We process your data solely to:
  • Respond to your inquiry or provide the information/services you requested.

The lawful basis is:

  • Article 6(1)(b) GDPR — processing is necessary for steps taken at your request prior to entering into a contract (i.e., responding to your service inquiry), or
  • Article 6(1)(f) GDPR — our legitimate interests in communicating with potential clients and answering inquiries, provided this does not override your rights and freedoms (we have assessed this balance and consider it reasonable for one-off communications).

We do not use your data for marketing, newsletters, profiling, automated decisions, or any other purpose. We do not sell, share, or disclose your data to third parties (except if legally required, e.g., court order).

  1. Data Retention
    We retain your email and message only as long as necessary to fully respond to your inquiry and handle any immediate follow-up (typically a few weeks to months, depending on the nature of the request). After that, we delete or anonymize it unless a longer period is required by law (e.g., accounting/tax obligations). We do not maintain long-term databases of inquiries.
  2. Data Security
    We take reasonable technical and organizational measures to protect your data, including encryption where appropriate and secure email handling. However, no transmission over the internet is 100% secure.
  3. Your Rights
    Under applicable data protection laws (e.g., GDPR), you have the right to:
  • Access your personal data
  • Request rectification if inaccurate
  • Request erasure (“right to be forgotten”)
  • Restrict processing
  • Object to processing (especially under legitimate interests)
  • Data portability (where applicable)

To exercise these rights, contact us at info@shineza.org. We will respond within one week (extendable if complex). You also have the right to lodge a complaint with your local data protection authority (e.g., in France: CNIL; find yours at edpb.europa.eu).

  1. International Transfers
    If your data is processed outside the EEA (unlikely in our case), we ensure adequate safeguards (not applicable here as processing occurs within secure, EEA-based or equivalent systems).
  2. Contact Us
    For questions, contact: info@shineza.org
  3. Changes to This Policy
    We may update this Privacy Policy. Changes will be posted here with a new effective date. We encourage periodic review.