Privacy policy

Who we are

This Privacy Policy describes how MB Diena is dienos, a Lithuanian small partnership (Mažoji bendrija) trading as HEIR Grooming Co., collects, uses, and protects your personal data when you visit heirgrooming.co or purchase from us.

For the purposes of the General Data Protection Regulation (Regulation (EU) 2016/679, the "GDPR"), MB Diena is dienos is the data controller of your personal data.

  • Trading name: HEIR Grooming Co.
  • Legal entity: MB Diena is dienos
  • Registered office: J. Galvydzio 5, Vilnius, Republic of Lithuania
  • Contact: hello@heirgrooming.co

What data we collect

When you visit, browse, or buy from us, we collect:

  • Identification data: name, billing address, shipping address.
  • Contact data: email address, phone number (if you provide it at checkout).
  • Order data: the products you bought, order value, currency, shipping option chosen, order history.
  • Payment data: partial card details (last four digits, expiry, brand) — we do not store full card numbers. Full payment processing is handled by Shopify Payments, Stripe, and PayPal, each acting as independent data controllers for that processing.
  • Technical data: IP address, device type, browser, operating system, referring URL, pages viewed, time spent.
  • Marketing data: email subscription status, the ads or campaigns that brought you to us.

Why we collect it (lawful bases)

  • To process your order — performance of a contract (Art. 6(1)(b) GDPR).
  • To deliver your order and handle returns — performance of a contract.
  • To comply with tax and accounting law — legal obligation (Art. 6(1)(c) GDPR).
  • To send marketing emails — consent (Art. 6(1)(a)), withdrawable at any time.
  • To improve our store, prevent fraud, and analyse traffic — legitimate interest (Art. 6(1)(f) GDPR).

Who we share data with

We share your personal data only with carefully selected processors who help us run the store:

  • Shopify International Limited — our e-commerce platform.
  • Payment processors: Shopify Payments, Stripe, PayPal.
  • Shipping carriers and our fulfilment partner — to deliver your order.
  • Email/SMS platform (Klaviyo): for transactional and marketing messages.
  • Reviews platform (Loox): to collect and display product reviews you choose to leave.
  • Meta (Facebook/Instagram) and TikTok — for advertising attribution. You can opt out of personalised ads in your account settings on each platform.
  • Tax authorities, courts, or regulators — only where legally required.

International transfers

Some of our processors are based outside the European Economic Area (notably in the United States). Where personal data is transferred outside the EEA, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission, or other valid transfer mechanisms, to ensure your data remains protected to an EU-equivalent standard.

How long we keep your data

  • Order and accounting records: 10 years from the date of the transaction (Lithuanian tax law).
  • Customer service correspondence: 24 months from your last contact.
  • Marketing data: until you withdraw consent, then deleted within 30 days.
  • Website analytics: 26 months in aggregated form.

Your rights under GDPR

You have the right to:

  • Request access to the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request erasure ("right to be forgotten"), subject to our legal retention obligations.
  • Restrict or object to processing.
  • Receive your data in a portable format.
  • Withdraw consent at any time (for processing based on consent).
  • Lodge a complaint with the Lithuanian State Data Protection Inspectorate (Valstybinė duomenų apsaugos inspekcija, vdai.lrv.lt), or your local supervisory authority.

To exercise any of these rights, email us at hello@heirgrooming.co. We will respond within 30 days.

Cookies and tracking

We use cookies and similar technologies to make the site work (essential cookies), to remember your preferences, to measure traffic, and to support advertising. You can manage your cookie preferences from the banner shown on your first visit, or in your browser settings at any time.

Children

HEIR products and this store are not intended for anyone under the age of 16. We do not knowingly collect personal data from minors. If you believe a minor has provided us with data, contact us and we will delete it.

Changes to this policy

We may update this policy from time to time. The current version will always be available at this URL, with the "last updated" date below. Material changes will be communicated to active customers by email.

Contact

Questions, requests, or complaints about your data:
hello@heirgrooming.co

Last updated: 19 May 2026