Privacy Policy

Effective date: 2025-01-01

We care about your privacy. This Privacy Policy explains how we collect, use, and protect your personal data in accordance with the Saudi Personal Data Protection Law (PDPL) and, where applicable, the EU General Data Protection Regulation (GDPR).

Data Controller

Data Controller: Lyth Wear ("we", "us"). Contact: privacy@lythwear.com

Data We Collect

• Contact data: name, email, phone (optional).
• Marketing preferences and language.
• Technical data: IP address, device/browser info, and basic analytics (aggregated where possible).

Purposes of Processing

• Send double opt-in confirmations and service emails about your subscription.
• Provide localized content and communicate in your preferred language.
• Improve our site and prevent abuse or fraud.

Legal Bases

• Consent (GDPR Art. 6(1)(a)) for marketing communications and optional fields.
• Legitimate interests (GDPR Art. 6(1)(f)) for security, fraud prevention, and service improvement.
• PDPL lawful bases: processing limited to specific, clear purposes and with your knowledge/consent where required.

Data Retention

We keep personal data only as long as needed for the purposes above, and to comply with legal obligations. You can unsubscribe at any time to stop marketing emails.

Sharing with Third Parties

We may share data with service providers (e.g., email service Brevo) strictly to deliver our services. We require contractual safeguards and do not sell personal data.

International Data Transfers

Where data is transferred outside the Kingdom of Saudi Arabia or the EEA, we take appropriate safeguards (e.g., PDPL-compliant approvals/derogations, GDPR Standard Contractual Clauses) and ensure recipients provide an adequate level of protection.

Your Rights

• Access and obtain a copy of your personal data.
• Rectify inaccurate data and request deletion where appropriate.
• Object to or restrict processing, and withdraw consent at any time (does not affect prior processing).
• Complain to a supervisory authority (e.g., SDAIA under PDPL; an EU authority under GDPR).

Security

We implement reasonable technical and organizational measures to protect your data. No method of transmission or storage is completely secure; we continuously improve our safeguards.

Children

Our services are not directed to children. If you believe a child provided data, contact us to remove it.

Contact

Questions or requests? Email privacy@lythwear.com. We will respond in accordance with applicable law (PDPL/GDPR).

Back to Home