Privacy Policy

Last Updated:

Sofia Kovalchuk ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website and use our custom t-shirt manufacturing services.

1. Data Controller

Sofia Kovalchuk

Praceta Dionísio Matias 9 R/C D

2770-051 Paço de Arcos, Oeiras, Portugal

Email: hello@blooma.pt

Phone: +351 922 280 992

NIF: 312292694

2. Personal Data We Collect

We collect the following personal information that you provide to us:

  • Name - to identify you and personalize our service
  • Email address - to communicate with you about your order and send confirmations
  • Phone number - to contact you regarding your order if necessary

We only collect data that is necessary for processing your order and providing our services.

4. How We Use Your Data

Your personal information is used for the following purposes:

  • Processing and fulfilling your custom t-shirt orders
  • Communicating with you about your order status
  • Responding to your inquiries and providing customer support
  • Sending order confirmations and shipping updates
  • Improving our products and services
  • Sending marketing communications (only with your explicit consent)

5. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties. We may share your data only in the following circumstances:

Service providers

Shipping companies and payment processors who help us fulfill your orders (they are bound by confidentiality agreements)

Legal obligations

When required by law or to protect our legal rights

Business transfers

In the event of a merger, acquisition, or sale of business assets

All third-party service providers are carefully selected and required to comply with GDPR requirements.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy:

Order data

7 years (as required by Portuguese tax and accounting laws)

Marketing consent data

Until you withdraw your consent

Inquiry data

2 years after the last communication

After these periods, your data will be securely deleted or anonymized.

7. Your Rights Under GDPR

You have the following rights regarding your personal data:

Right of access

Request a copy of your personal data we hold

Right to rectification

Request correction of inaccurate or incomplete data

Right to erasure

Request deletion of your data ("right to be forgotten")

Right to restriction

Request limitation of processing in certain circumstances

Right to data portability

Receive your data in a structured, machine-readable format

Right to object

Object to processing based on legitimate interests

To exercise any of these rights, please contact us at hello@blooma.pt or +351 922 280 992. We will respond to your request within 30 days.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:

  • 🔒SSL/TLS encryption for data transmission (HTTPS)
  • 🔒Secure servers and databases
  • 🔒Access controls and authentication
  • 🔒Regular security assessments
  • 🔒Confidentiality agreements with employees and partners

However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

9. Cookies and Tracking Technologies

Our website uses cookies to enhance your browsing experience. We use:

Essential cookies

Necessary for the website to function (no consent required)

Analytics cookies

To understand how visitors use our website (requires consent)

Marketing cookies

To show relevant advertisements (requires consent)

You can manage your cookie preferences through the cookie banner displayed on your first visit. You can also adjust your browser settings to refuse cookies.

For more information, please see our Cookie Policy.

10. International Data Transfers

Your data is primarily stored and processed within the European Economic Area (EEA). If we transfer data outside the EEA, we ensure adequate protection through:

  • EU Standard Contractual Clauses
  • Adequacy decisions by the European Commission
  • Other legally approved mechanisms

11. Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Updating the "Last Updated" date at the top of this policy
  • Sending you an email notification (for significant changes)

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us:

Sofia Kovalchuk

Email: hello@blooma.pt

Phone: +351 922 280 992

Address: Praceta Dionísio Matias 9 R/C D, 2770-051 Paço de Arcos, Oeiras, Portugal

14. Right to Lodge a Complaint

If you believe we have not handled your personal data properly, you have the right to lodge a complaint with the Portuguese Data Protection Authority:

Comissão Nacional de Proteção de Dados (CNPD)

Website: https://www.cnpd.pt

Address: Av. D. Carlos I, 134, 1º, 1200-651 Lisboa, Portugal

Phone: +351 213 928 400

Email: geral@cnpd.pt