Skip to content
MothSight
MothSight

Legal

PRIVACY POLICY

Last updated: 2026

1. Data Controller

MothSight (“we”, “us”) is the data controller for personal data collected through mothsight.eu. Contact: privacy@mothsight.eu

2. Data We Collect

  • Account data: name, email address, hashed password
  • Order data: shipping name, shipping address, order items, payment status (no card data — processed by Stripe)
  • Newsletter: email address (only if you subscribe)
  • Contact messages: name, email, subject, message content
  • Technical data: IP address (for rate limiting and fraud prevention), session tokens

3. Legal Basis (GDPR)

  • Contract performance: processing orders and account management
  • Legitimate interest: security, fraud prevention, rate limiting
  • Consent: newsletter subscription (you may unsubscribe at any time)

4. Data Retention

Order records are retained for 7 years for legal and tax compliance. Account data is retained until you request deletion. Newsletter subscriptions are retained until you unsubscribe.

5. Third Parties

  • Stripe — payment processing. Stripe's privacy policy applies to card data.
  • Google Fonts — font delivery (IP address shared with Google).

6. Your Rights

Under GDPR you have the right to access, rectify, erase, restrict, or port your data, and to object to processing. Contact privacy@mothsight.eu to exercise these rights. You may also lodge a complaint with your national supervisory authority.

7. Cookies

We use a session cookie for authentication (NextAuth.js). No third-party tracking or advertising cookies are set. See our Cookie Policy.