GDPR Policy

At Amy.com, protecting your personal data and privacy is a top priority. This GDPR Privacy Policy explains how we collect, use, store, and protect your information in compliance with the European Union’s General Data Protection Regulation (GDPR).

Data We Collect

We may collect the following personal data when you interact with our website or services:

  • Name and contact details (email, mailing address)

  • Information you provide when subscribing to newsletters or contacting us

  • Usage data (such as IP address, browser type, and browsing behavior)

  • Payment details for book purchases (processed securely by third-party vendors)

How We Use Your Data

Your personal data is used only for purposes you consent to, including:

  • Delivering requested products or services

  • Sending newsletters, updates, and event invitations

  • Responding to inquiries and providing customer support

  • Improving our website and user experience

  • Complying with legal obligations

We do not sell or rent your data to third parties.

Legal Basis for Processing

Under GDPR, we rely on one or more of the following lawful bases to process your personal data:

  • Your consent

  • Performance of a contract with you

  • Compliance with legal obligations

  • Legitimate interests, such as improving our services

Data Sharing and Transfers

We may share your data with trusted third-party service providers who support our operations, such as payment processors, email platforms, and website hosting services. These partners are obligated to protect your data and use it only for authorized purposes.

If your data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place to protect your privacy.

Your Rights

Under GDPR, you have the right to:

  • Access your personal data

  • Request correction or deletion of your data

  • Object to or restrict processing

  • Withdraw consent at any time

  • Receive your data in a portable format

  • Lodge a complaint with a supervisory authority

Data Retention

We keep your personal data only as long as necessary to fulfill the purposes outlined above or to comply with legal requirements.

Security Measures

We implement appropriate technical and organizational measures to protect your data against unauthorized access, loss, or misuse.

Cookies and Tracking

Our website uses cookies and similar technologies to enhance user experience. You can manage your cookie preferences through your browser settings.