Last updated: 04 March 2026
At vanitis, trust is at the heart of everything we create. We collect only the information necessary to deliver your order, improve your experience, and operate our business responsibly. We never sell personal data.
This Privacy Policy explains how we collect, use, process, store, and protect your personal information when you visit our website, place an order, or interact with us.
This policy aligns with:
• UAE Federal Decree-Law No. 45 of 2021 on Personal Data Protection
• International privacy best practices
• GDPR-level transparency standards for customers in the EU and UK
By using our website, you acknowledge that your personal data may be processed as described in this policy.
For general website rules please see our [Terms & Conditions].
Vanitis Cosmetics Trading Co LLC
Dubai, United Arab Emirates
Email: office@vanitis.com
Website: www.vanitis.com
• Full name
• Email address
• Phone number
• Billing address
• Shipping address
• Order history
• Customer service communications
Payment details are processed securely through third-party payment providers. vanitis does not store full credit card details.
When visiting our website we may collect:
• IP address
• Device and browser information
• Website interaction data
• Pages visited and session duration
• Cookies and tracking identifiers
We use personal data for the following purposes.
• Payment processing
• Shipping and delivery (see Shipping Policy)
• Customer service
• Fraud prevention
• Accounting and legal compliance
• Inventory management
• Customer relationship management (Odoo ERP system)
• Email newsletters (with consent)
• Website analytics
• Advertising performance measurement
You may unsubscribe from marketing communications at any time.
Personal data may be processed based on:
• Contractual necessity (order fulfillment)
• Legitimate business interests (fraud prevention, analytics)
• Consent (marketing and optional cookies)
• Legal obligations
Customer data may be processed in our Odoo ERP/CRM system, which securely stores:
• customer contact details
• order history
• transaction records
• customer service communications
Access is restricted to authorized personnel.
Our website uses cookies and similar technologies for functionality, analytics, and advertising.
Examples include:
• Google Analytics
• Google Ads
• Meta Pixel
Non-essential cookies are activated only after user consent where required by applicable law.
For detailed information please review our Cookie Policy.
We may share personal data with trusted service providers such as:
• payment processors
• shipping carriers
• hosting providers
• advertising platforms
• IT service providers
These partners process data only to provide services on our behalf.
Because we operate internationally, personal data may be transferred outside your country of residence.
Where required, such transfers are protected through appropriate safeguards such as contractual protections (including standard contractual clauses), adequacy decisions, or equivalent mechanisms designed to protect personal data.
Personal data is retained only as long as necessary.
| Data Type | Retention Period |
|---|---|
| Order records | typically 5–10 years for legal/accounting requirements |
| Customer accounts | while active |
| Marketing data | until consent withdrawn |
| Customer service communications | operational/legal purposes |
Data may be retained longer where required by law or necessary for fraud prevention.
Depending on your jurisdiction, you may have the right to:
• access personal data
• request correction of inaccurate data
• request deletion where legally permitted
• object to certain processing
• withdraw consent for marketing
Requests may be submitted to office@vanitis.com.
For security purposes we may require identity verification before processing requests.
We aim to respond within 30 days, or within the timeframe required by applicable law.
Requests may be refused where permitted by law (for example where data must be retained for legal obligations or fraud prevention).
If you are located in the EU or UK you may also lodge a complaint with your local data protection authority.
We use encrypted connections (SSL), secure hosting environments, and restricted access systems to protect personal data.
Our website and products are not intended for children under 18 without parental supervision.
This Privacy Policy may be updated periodically. The latest version will always be published on our website.