Gist-Logo-Light

Privacy Policy

At gist.coffee, we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your personal information when you interact with our website, shop, and services.

1. Who we are (Data Controller)

The data controller responsible for processing your personal data is:

  • Legal entity: SC Gist Coffee Shop SRL
  • Registered address: Strada Grigore Ureche, Nr. 1–3, Spaţiu comercial, Bl. Walter Mărăcineanu, Etaj Mezanin, Iași, 700023, Romania
  • Trade Register / VAT number: RO42719231
  • Email: tudor@gist.coffee

No Data Protection Officer (DPO) has been appointed.

2. What personal data we collect

a) Contact forms

When you contact us via our contact form, we collect the information you provide (such as name, email address, phone number, and message). We use this data only to respond to your inquiry.

b) Online shop & customer accounts

When you place an order or create an account, we collect standard WooCommerce data, including:

  • Name and surname
  • Email address and phone number
  • Billing and shipping address
  • Company details and VAT number (if applicable)
  • Order notes

c) Payments

Payments are processed via :contentReference[oaicite:0]{index=0}, bank transfer, or cash on delivery. We do not store full card details on our servers.

d) Delivery

Orders are delivered via :contentReference[oaicite:1]{index=1} or collected locally. Necessary personal data is shared with the courier solely for delivery purposes.

e) Customer support

You may contact us via email or phone. Communications may be stored to handle your request and improve our services.

3. Newsletter & marketing communications

You can subscribe to our newsletter via:

  • Checkbox at checkout
  • Dedicated subscription forms
  • Pop-ups on the website

We use :contentReference[oaicite:2]{index=2} to send newsletters, transactional emails, and abandoned cart reminders.

We process newsletter data based on your explicit consent. You can unsubscribe at any time using the link in our emails.

4. Cookies, analytics & advertising

Our website uses cookies and similar technologies.

  • Analytics tools such as :contentReference[oaicite:3]{index=3}
  • Marketing and remarketing tools (e.g. Meta / Google Ads pixels)

Analytics and marketing cookies are activated only after you give consent via our cookie consent banner.

You can manage or withdraw your consent at any time from the cookie settings.

5. Legal bases for processing

  • Contract performance – for processing orders and deliveries
  • Consent – for newsletters, marketing, and analytics cookies
  • Legitimate interest – for website security, fraud prevention, and basic logs

6. Data retention

  • Order and invoice data: retained according to applicable accounting and tax laws
  • Newsletter data: until you unsubscribe
  • Contact form messages: up to 6 months
  • User accounts: until you request deletion

7. Data processors & third parties

We may share personal data with trusted partners only when necessary:

  • Hosting: :contentReference[oaicite:4]{index=4}
  • Payments: Viva Payments
  • Courier: Fan Courier
  • Accounting / POS: :contentReference[oaicite:5]{index=5}

8. International data transfers

Some tools we use may process data outside the EU/EEA. Where applicable, such transfers are protected using appropriate safeguards, such as Standard Contractual Clauses approved by the European Commission.

9. Your rights under GDPR

You have the right to:

  • Access your personal data
  • Request rectification or deletion
  • Restrict or object to processing
  • Withdraw consent at any time
  • Data portability

To exercise your rights, contact us at tudor@gist.coffee. For security reasons, we may request identity verification for sensitive requests.

We will respond within one month, as required by law.

10. Children & sensitive data

Our website is not intended for children under 16, and we do not knowingly collect data from minors.

We do not collect sensitive personal data or use automated decision-making with legal effects.

11. Events, reservations & future features

We may organize events, reservations, loyalty programs, or gift cards via our website. Any additional data processing related to these features will be covered by this Privacy Policy or supplementary notices.

12. Contact

If you have questions about this Privacy Policy or how we handle your data, please contact us at:

tudor@gist.coffee

Last updated: January 2026