This GDPR Notice explains how we handle personal data for visitors located in the European Union (EU) or European Economic Area (EEA). Gitagia.com is based in Kenya and primarily serves customers in Kenya. We do not target or market to the EU/EEA. If an EU/EEA resident uses our website voluntarily, the following applies.
Data Controller
wanjikugitagia.com
wanjiku@gitagia.com
What We Process
If an EU/EEA visitor submits information, we may process:
– Contact details (name, email, address, phone)
– Order and payment details (processed by trusted third-party providers; we do not store card numbers)
– Technical data such as IP address, device information, and cookies
Legal Basis for Processing
For EU/EEA users, processing may occur under:
– Contract performance
– Legitimate interests (website operation, functionality, and security)
– Consent (email marketing or optional cookies)
– Legal obligations (tax, accounting, and compliance)
International Transfers
Personal data is stored and processed in Kenya. We may also use service providers located outside the EU. These providers use GDPR-compliant safeguards where required.
Your Rights (EU/EEA Users)
EU/EEA users have the right to:
– Access their data
– Request correction or deletion
– Restrict or object to processing
– Withdraw consent
– Request data portability
To exercise these rights, contact wanjiku@gitagia.com.
Data Retention
We retain personal data only as long as necessary for order fulfillment, customer support, security, and legal obligations.
Market Focus
Gitagia.com is focused on the Kenyan market. We do not direct our advertising, services, or content toward EU/EEA users. Any data from EU/EEA individuals is processed only when voluntarily provided.
Contact
For GDPR-related questions or requests, contact:
wanjikugitagia.com
wanjiku@gitagia.com(mailto:wanjiku@gitagia.com)