Privacy Policy
We appreciate your visit and interest in Thalie Vintage's products. Protecting your privacy is very important to us. Below, we provide detailed information about how we process your data and for which purpose.
Page Content Overview:
- Purpose of Data Processing
- Transfer of Personal Data to Third Parties
- Transfer of Personal Data abroad
- Cookies / Tracking Tools
- Retention of Personal Data
- Data Security
- Your Data Protection Rights
- Contact
- Changes to the Privacy Policy
1. Purpose of Data Processing
1.1 Opening a Customer Account
When you create a customer account, we collect the following personal data:
- First and last name
- Billing and shipping addresses
- Phone number
- E-mail address
- Password
1.2 Shopping in the Online Shop
To process a purchase contract after you place an order in our online shop, either as a guest or through your customer account, we process the following personal data:
- First and last name
- Billing and shipping addresses
- Payment information (depending on the selected payment method)
- Telephone number
- Login details (for registered customers)
2. Transfer of Personal Data to Third Parties
We share your data with selected third parties where necessary to process your bookings. This includes transport service providers responsible for delivering the goods you have ordered, and payment providers.
If you choose to pay by credit card on our website, your credit card details will be transmitted to your credit card issuer and the respective credit card acquirer for the purpose of processing the payment. In this case, you will be required to provide all mandatory payment information.
The legal basis for this data transfer is the performance of a contract. For further information on how your credit card data is processed by these third parties, please refer to the terms and conditions and the privacy policy of your credit card issuer.
The personal data collected on our website is processed by our hosting provider Swiss21 and our sales system PepperShop. The servers are located in Switzerland.
3. Transfer of Personal Data abroad
As described in previous section, we share your data with selected third parties where necessary to process your bookings. This includes transport service providers and payment providers. These recipients are primarily located in Switzerland but may also be based abroad. You must expect, in particular, that relevant data may be transferred to other countries in Europe and the USA, where our service providers are located.
4. Cookies / Tracking Tools
4.1 Use of cookies
We use cookies on our website. Cookies can be in the form of small files or other formats (pixels, etc.) that are stored on your device and save certain settings and data for exchange with our system via your browser. This storage helps us to tailor our online services to your needs and makes them easier to use, for example, by saving certain information you enter so that you don't have to repeat it constantly or on your next visit. Your browser allows you to restrict the use of cookies, but this may result in our services no longer functioning properly or at all. You can also delete cookies in your browser settings.
4.2 Session cookies
Session cookies are deleted after you close your browser.
4.3 Persistent cookies
We use cookies that remain on your hard drive. For your convenience, the expiration date is set to a future date. On a subsequent visit, it will automatically recognize that you have already been here and which entries and settings you prefer.
4.4 PepperShop Sales Systems
The PepperShop systems with purchasing options (software, hardware) use the following system-specific cookies. These allow us, for example, to maintain your shopping cart across multiple clicks and to automatically apply your language, currency, delivery country, and shipping method settings correctly on your next visit. They can be managed in the respective consent manager (displayed upon entering the respective sales system):
PEPPERSESS: Session cookie that identifies your current session. This cookie is deleted after closing the browser. Retention period: Session.
PPS_LOCALE_INFOS: Persistent cookie that contains the language, country, currency, last session ID, cookie domain, and version of this cookie structure. This ensures that your usual settings are pre-configured on your next visit. Retention period: 2 years.
jsCookieCheck: Stores your consent to cookie data storage (consent management). Retention period: 1 year.
5. Retention of Personal Data
We process and store your personal data for as long as necessary to fulfill our contractual and statutory obligations, or otherwise for the purposes pursued by the processing. This includes, for example, the entire duration of the business relationship, as well as beyond that period in accordance with applicable statutory retention and documentation requirements.
Personal data may also be retained for the period during which claims can be asserted against our company and to the extent that we are otherwise legally obliged to retain it or legitimate business interests require it (e.g., for evidentiary and documentation purposes).
Once your personal data is no longer required for the above-mentioned purposes, it will, as a rule and where possible, be deleted or anonymized.
6. Data Security
Our service providers Swiss21 and PepperShop take appropriate technical and organizational security measures to protect your personal data from unauthorized access and misuse. These include internal compliance and security guidelines and training, IT and network security solutions, backups, access controls and restrictions, and strong encryption of transmitted data and login credentials.
You should always keep your login information confidential and close the browser window when you have finished communicating with us, especially if you share the computer with others. We do not store credit card data, but only tokens assigned to us by the respective payment service provider.
7. Your Data Protection Rights
Provided we can verify your identity and the legal requirements are met, you have the following rights regarding your personal data:
- Right of Access: Request a copy of the data we hold about you.
- Right to Rectification: Request corrections to inaccurate or incomplete data.
- Right to Erasure: Request the deletion of your data.
- Right to Restriction: Request that we limit how we process your data.
- Right to Data Portability: Request the transfer of your data to another service provider.
- Right to Object: Object to processing based on legitimate interests.
Key Terms and Conditions:
- Erasure Requests: We will honor deletion requests unless we are legally obligated to retain the data or require it for the establishment, exercise, or defense of legal claims.
- Withdrawal of Consent: You may withdraw your consent at any time for future processing. This does not affect the lawfulness of any processing conducted prior to the withdrawal.
- Legitimate Interests: If we process data based on legitimate interests, you may object. We will then stop processing unless we demonstrate compelling legitimate grounds that override your interests or for legal defense purposes.
- Data Provision: Providing your data is voluntary. However, withholding it may limit your access to certain website functions or prevent us from entering into a contractual relationship with you.
8. Contact Us
If you have any questions or wish to exercise your rights, please contact us via email at thalievintage@gmail.com.
9. Changes to This Privacy Policy
This Privacy Policy may be amended at any time with effect for the future, if necessary due to legal or technical changes or as a result of new or modified services, without prior notice.
Zürich, 19.02.2026