Privacy Policy

Effective Date: April 15, 2026 Last Updated: April 15, 2026

1. Introduction

This Privacy Policy describes how Design Tati SRL ("we", "us", or "our") collects, uses, and protects your personal information when you visit cristihancu.com (the "Website") or make a purchase from the STRADAL online shop.

By using our Website, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

We collect the following types of information:

a) Information you provide directly:

Name, shipping address, billing address

Email address and phone number

Payment information (processed securely through Stripe — we never see or store your full card details)

Order details and purchase history

Any information you submit through contact forms or newsletter sign-ups

b) Information collected automatically:

IP address and browser type

Pages visited and time spent on the Website

Device type and operating system

Referral source (how you found our Website)

This data is collected through analytics tools, including Squarespace Analytics and Google Analytics 4.

3. How We Use Your Information

We use the information we collect for the following purposes:

To process and fulfill your orders

To communicate with you about your purchase (order confirmation, shipping updates)

To send you newsletters and updates about STRADAL (only if you have subscribed)

To improve our Website and customer experience

To comply with legal obligations (tax records, invoicing)

To prevent fraud and ensure secure transactions

4. Cookies and Tracking Technologies

Our Website uses cookies to improve your browsing experience and analyze traffic. Cookies are small text files stored on your device. You can manage your cookie preferences through the cookie banner displayed on your first visit, or by adjusting your browser settings.

We use the following types of cookies:

Essential cookies — required for the Website to function (shopping cart, checkout)

Analytics cookies — help us understand how visitors interact with the Website (Google Analytics, Squarespace Analytics)

5. Third-Party Services

We work with the following trusted third parties to operate our Website and services:

Squarespace — Website hosting and e-commerce platformStripe — Payment processing

Google Analytics — Website traffic analysis

Cargus / Sameday / Fan Courier — Shipping providers (we share only the information necessary to deliver your order)

Each of these services has its own privacy policy, which governs how they handle your data.

6. Newsletter and Marketing Communications

If you subscribe to our newsletter, we will use your email address to send you updates about new prints, collectibles, and project news. You can unsubscribe at any time by clicking the "unsubscribe" link at the bottom of any email.

7. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information. We only share your information with third parties when necessary to:

Fulfill your order (e.g., shipping providers)

Process payments (Stripe)

Comply with legal obligations

8. Data Retention

We retain your personal information for as long as necessary to:

Provide our services to you

Comply with legal, accounting, and tax requirements (typically 10 years for invoices under Romanian law)

Resolve disputes and enforce agreements

9. Your Rights (GDPR)

Under the General Data Protection Regulation (GDPR), you have the following rights:

Right to access — request a copy of the personal data we hold about you

Right to rectification — request correction of inaccurate data

Right to erasure — request deletion of your data ("right to be forgotten")

Right to restrict processing — request limitation of how we use your data

Right to data portability — receive your data in a structured, machine-readable format

Right to object — object to certain types of processing

Right to withdraw consent — at any time, for processing based on consent

To exercise any of these rights, please contact us at cristihancu@designtati.com.

You also have the right to lodge a complaint with the Romanian Data Protection Authority (ANSPDCP) at www.dataprotection.ro.

10. Data Security

We take reasonable technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. Payment information is processed through Stripe using industry-standard encryption (SSL/TLS).

11. International Data Transfers

Some of our service providers (such as Stripe, Squarespace, and Google) may store or process data outside the European Economic Area (EEA). When this happens, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

12. Children's Privacy

Our Website is not intended for individuals under the age of 16. We do not knowingly collect personal information from children.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The "Last Updated" date at the top of this page will reflect the most recent revision. Significant changes will be communicated via email or a notice on the Website.

14. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact us:

Design Tati SRL Strada Icoanei 37, 020457 București, Romania Email: cristihancu@designtati.com

Website: cristihancu.com