FREE SHIPPING ON ALL ORDERS

Privacy Policy

Last updated: December 8th, 2025


This Privacy Policy explains how we collect, use and protect your personal data when you visit or use SilentSoul.design (the “Website”) or purchase our products.

Data controller:
InimDisain OÜ
Vaikuse tee 14, Suurupi, Harku, Harju, Estonia
Email: whisper@silentsoul.design

In this Policy, “we”, “us” and “our” refer to InimDisain OÜ. We process personal data in accordance with the EU General Data Protection Regulation (GDPR) and applicable Estonian law.

By using our Website, you agree that your personal data may be processed in accordance with this Privacy Policy.

1. What this Privacy Policy covers

This Privacy Policy applies to:

  • visitors to our Website;

  • customers who place orders in our online shop;

  • people who contact us by email or via forms;

  • subscribers to our newsletters or marketing communications (if offered).

It does not cover the privacy practices of third-party websites or services that may be linked from our Website.

2. What personal data we collect

We only collect personal data that we need for clear, specific purposes.

2.1. Data you provide directly

When you use our Website or contact us, you may provide:

  • Identity and contact data

    • name, email address, billing and shipping address, phone number (if provided).

  • Order and personalization data

    • products you order;

    • size, color and other product choices;

    • personalization inputs, including birth date, birth time, birth place and other data required to generate your Human Design chart or similar customized design;

    • any messages or notes you send with your order.

  • Marketing preferences

    • newsletter subscription, consents and opt-outs.

  • Communication data

    • content of emails or messages you send us, and our replies.

2.2. Data we collect automatically

When you visit the Website, we may automatically collect:

  • Technical data

    • IP address, browser type and version, device type, operating system;

    • date and time of access;

    • pages viewed and actions taken (e.g. adding items to cart);

    • error logs and basic diagnostic information.

  • Cookie and similar technology data

    • information collected via cookies and similar technologies to operate the site, enable checkout and understand how visitors use the Website.

2.3. Data from third parties

We may receive limited information from:

  • Payment providers (e.g. Stripe, PayPal, banks) – confirmation of payments, partial payment details (such as transaction IDs, payment status).

  • Delivery partners – information about delivery status and returned parcels.

  • Analytics or security services – aggregated data about site usage and security events.

We do not receive or store full card numbers from payment providers.

3. Why we process your data and legal bases

Under the GDPR, we must have a legal basis for each processing activity.
We process your data for the following purposes:

3.1. To provide our services and fulfil orders

Legal basis: contract performance (Art. 6(1)(b) GDPR)

  • processing and confirming orders;

  • generating personalized designs based on the data you provide (e.g. birth details);

  • processing payments and refunds;

  • arranging production and shipping;

  • providing customer support.

Without this data, we cannot process your order or provide the requested service.

3.2. To comply with legal obligations

Legal basis: legal obligation (Art. 6(1)(c) GDPR)

  • accounting and tax records;

  • consumer and e-commerce law requirements;

  • responding to lawful requests from authorities where required.

3.3. To operate, secure and improve our Website

Legal basis: legitimate interests (Art. 6(1)(f) GDPR)

We use technical and analytics data to:

  • keep the Website secure and prevent misuse or attacks;

  • diagnose technical problems and improve performance;

  • understand how visitors use our Website in aggregated form (e.g. which pages are popular), to improve content and user experience.

We balance these interests against your privacy rights and minimize data where possible (for example, by using aggregated or pseudonymized data).

4.4. Marketing communications

Legal basis: consent (Art. 6(1)(a) GDPR)

If we offer newsletters or similar communications:

  • we will only send you marketing emails if you have actively subscribed or otherwise given consent;

  • you can withdraw your consent at any time by using the “unsubscribe” link in our emails or contacting us at whisper@silentsoul.design.

We may also send you important service emails (e.g. order confirmations, updates about your order), which are not considered marketing and are necessary to fulfill the contract.

5. Cookies and similar technologies

The Website uses cookies and similar technologies to:

  • enable core functions such as cart and checkout;

  • remember your preferences;

  • perform basic analytics and security.

  • Strictly necessary cookies are required for our site to function and are used without consent.

  • Non-essential cookies (such as analytics or marketing cookies) are used only with your consent, where required by law.

You can manage your cookie preferences via our cookie banner (if available) and through your browser settings.

6. How we share personal data

We do not sell your personal data.

We may share your data with trusted third-party service providers (“processors”) who assist us in running our business, for example:

  • Payment processors – Stripe, PayPal, banks or payment gateways processing card and bank payments.

  • Production and fulfillment partners – printers, warehouses and shipping partners who produce and deliver your order.

  • IT and hosting providers – website hosting, email hosting, backup and security providers.

  • Analytics and security tools – services that help us understand website performance and detect abuse.

  • Email / newsletter providers – for sending transactional and marketing emails (if applicable).

These providers only process your data on our instructions and for the purposes described here, under appropriate contracts and security measures as required by GDPR.

We may also disclose data where required by law, for example to tax authorities or law enforcement, if we are legally obliged to do so.

If our business is restructured, sold or merged, personal data may be transferred as part of the transaction, in compliance with applicable laws.

7. Data retention – how long we keep your data

We keep personal data only as long as necessary for the purposes for which it was collected, including to meet legal, accounting or reporting obligations. Typical retention periods:

  • Order and invoice data – kept for the period required by tax and accounting law (minimum of 7 years).

  • Customer support communication – kept for as long as needed to handle your request and for a reasonable period to protect our legitimate interests (e.g. for dispute resolution).

  • Marketing data – kept until you withdraw your consent or we clean up inactive records.

  • Technical logs and security data – kept for a limited time necessary for security and troubleshooting, unless a longer retention is needed in relation to a specific incident.

When data is no longer needed, we will delete it or anonymize it so that it can no longer be linked to you.

8. How we protect your data

We use a combination of technical and organizational measures to protect your personal data, including:

  • using secure (HTTPS) connections on the Website;

  • limiting access to personal data to people and providers who need it;

  • using strong passwords and security practices for systems and services;

  • working with reputable service providers who implement appropriate security measures.

No system is completely secure, but we strive to protect your data in line with industry standards and legal requirements.

9. Your rights under GDPR

You have the following rights in relation to your personal data, subject to legal conditions and limitations:

  • Right of access – to obtain confirmation whether we process your data and to receive a copy.

  • Right to rectification – to request correction of inaccurate or incomplete data.

  • Right to erasure (“right to be forgotten”) – to request deletion of your personal data in certain circumstances (for example, when it is no longer needed, or you withdraw consent and there is no other legal basis).

  • Right to restriction of processing – to request that we limit processing in certain cases.

  • Right to data portability – to receive your data in a structured, commonly used format and transmit it to another controller where technically feasible.

  • Right to object – to object to processing based on our legitimate interests, including profiling, and to direct marketing at any time.

  • Right to withdraw consent – where processing is based on consent, you may withdraw it at any time. This does not affect processing that took place before withdrawal.

To exercise your rights, contact us at whisper@silentsoul.design. We may need to verify your identity to protect your data.

9.1. Right to lodge a complaint

If you believe your data protection rights have been violated, you have the right to lodge a complaint with your local data protection authority. In Estonia, this is:

Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon)
https://www.aki.ee

We would, however, appreciate the chance to address your concerns first, so please contact us before contacting the authority if possible.

10. Children’s data

Our Website and products are not directed to children under 16 years of age, and we do not knowingly collect personal data from children under this age.

If you believe we have collected personal data about a child under 16 without appropriate consent, please contact us at whisper@silentsoul.design, and we will take steps to delete such data.

11. Changes to this Privacy Policy

We may update this Privacy Policy from time to time, for example to reflect changes in our practices, legal requirements or services.

The date at the top of this page shows when the Policy was last updated. If we make significant changes, we may notify you by email or via the Website where appropriate. Continued use of the Website after such changes means you accept the updated Policy.

12. Contact

If you have any questions about this Privacy Policy or how we process your personal data, you can contact us at:

Email: whisper@silentsoul.design
Website: https://SilentSoul.design/contact

SilentSoul

Uncover & Illuminate Your Unique True Self

whisper@silentsoul.design

Terms & Conditions | Legal | Privacy & Cookies | Delivery | Returns | Contact

Join Our Inner Circle

Get exclusive updates first!

SilentSoul
SilentSoul
SilentSoul
SilentSoul

Uncover & Illuminate Your Unique True Self

© 2025. All rights reserved