General

Questions

Other topics

Privacy Policy

1. Introduction

This Privacy Policy applies to your use of the Mind Oasis website, mobile app, and the Mind Oasis proposition as a whole. Your personal data in this context is collected and processed by Rituals Cosmetics E-Commerce B.V. (Keizersgracht 683, 1017 DW Amsterdam, The Netherlands) (hereinafter: “Mind Oasis”, “we” or “us”).

The proper handling of personal data is extremely important to us. We take great care when processing and protecting your personal data, in accordance with applicable privacy laws (including the General Data Protection Regulation).

To ensure your privacy, we adhere to the following core values:

  • Information – We inform you why and how we use your personal data.
  • Limited Collection – We collect and use only what is necessary for selling our products and/or providing the Mind Oasis Services (as defined below).
  • Security – We take appropriate measures to secure your personal data and require the same from our partners. We continuously test our websites and apps with automated security scans.
  • Individuals’ Rights – We respect your rights under applicable privacy laws, including the right to access, correct, or delete your personal data.

This Privacy Policy describes how these principles are implemented and how we protect your privacy. It outlines how we use your personal data when you buy our products online (“Products”), access our website or mobile app, interact with us, or otherwise use our services (“Mind Oasis Services”).

2. Personal Data We Collect and Use

We collect personal data when you buy our Products or use the Mind Oasis Services (“Personal Data”), including:

  • Contact Details – Name, postal address, phone number, email address, and other contact information (including delivery address for online purchases).
  • Electronic Identification Data – Data automatically collected when you use the Mind Oasis Services, such as IP/MAC address, browsing behavior, products/services you like, abandoned basket content, and data from cookies/analytics (see our Cookie Policy).
  • Account Data – Name, email address, date of birth, phone number, and optionally gender. Mind Oasis accounts cannot use the same email address as Rituals accounts.
  • Purchase Data (in-store) – Data linked to your My Mind Oasis profile, such as purchase amount, date, product/service, store location, payment status, discounts, voucher codes, and optional personalization details.
  • Purchase Data (online) – Name, email, phone number, delivery details, purchase history, device used, payment method/status, bank account details, and applicable discounts/vouchers. Payment data may be shared with third-party payment providers in accordance with their privacy notices.
  • Mind Oasis at Home Mat & App Usage Data – Device specifications, Bluetooth connection data, session counts, online/offline status, and feedback via surveys/reviews.
  • Personalization Data – Custom names or images for personalized products or gift cards, stored for up to 12 months.
  • Newsletter Data – Email address and any optional profile data used for sending inspirational and promotional newsletters.
  • Communication Data – Information shared via email, phone, social media, or other channels.
  • Campaign/Contest Data – Data provided for raffles, contests, lead generation campaigns, or sampling activations.
  • Ratings & Reviews – Opinions, experiences, and feedback regarding our Products or Services.

3. Purposes of Use

Your Personal Data is used for:

A. Contract Performance – To fulfill our obligations, deliver Products/Services, manage accounts, process purchases, run loyalty programs, respond to inquiries, and provide customer support.

B. Legitimate Interests

  • Marketing and advertising (including targeted ads).
  • Validating account age requirements.
  • Analyzing and improving Products/Services.
  • Understanding customer behavior and preferences.
  • Preventing fraud and abuse.
  • Enabling corporate transactions (mergers, sales, reorganizations, etc.).

C. Consent – For sending direct marketing communications when you have not purchased Products, or for specific data uses you approve. Consent can be withdrawn at any time.

D. Legal Obligations – Compliance with regulatory, tax, or investigative requirements

4. Social Media

When participating in social media platforms (Facebook, Instagram, LinkedIn, etc.), be aware of their privacy settings and policies. Depending on your settings, certain personal data (e.g., interests, username, profile image) may be shared with us.

5. Sharing Your Personal Data

Your Personal Data may be shared with:

  • Rituals Group Entities – See the list of entities here.
  • Third-Party Suppliers – Including IT service providers, contact centers, marketing agencies, analytics providers (e.g., Google Analytics).
  • Corporate Transactions – In the event of mergers, sales, or asset transfers.
  • Legal Authorities – If required by law.
  • With Consent – For joint promotions or campaigns with partners.

All third parties must process your data securely and only for the purposes we specify.

6. International Transfers

While most processing occurs within the EU, we may transfer Personal Data to other countries. We ensure appropriate safeguards (e.g., EU Standard Contractual Clauses) and legal compliance. You can request copies of these safeguards via privacy@rituals.com.

7. Security

We implement technical, physical, and organizational measures to protect your Personal Data from unauthorized use, alteration, or loss. Access is limited to authorized personnel and trusted partners bound by confidentiality agreements.

8. Data Retention

We retain your Personal Data only as long as necessary for the purposes stated, unless a longer retention is required for legal compliance or to defend claims.

9. Your Rights

Under applicable law, you have the right to:

  • Access your personal data.
  • Rectify inaccurate/incomplete data.
  • Withdraw consent for marketing or other processing.
  • Delete personal data when no longer necessary.
  • Restrict processing under certain conditions.
  • Data portability for data provided under a contract or consent.
  • Object to processing based on legitimate interests or profiling.
  • Lodge a complaint with your national data protection authority.

To exercise your rights, use the Mind Oasis contact form on our website.

10. Changes to the Policy

We may update this Privacy Policy. If significant changes affect how your data is used, we will inform you before they take effect.

11. Contact Us

If you’d like, I can now also create a short, web-friendly version of this Privacy Policy for your website or app, so it’s easier for customers to skim while still linking to the full version. That way, you can have both a detailed legal policy and a simple summary for better UX. Would you like me to prepare that next?

Privacy Policy | Rituals - Mind Oasis