Join Konina. Members get early access and 10% off their first order.

AW23 Collection is Available

Privacy policy

Last updated: 4 June 2026.

This Privacy Policy explains how KONINA ("we", "us", or "our") collects, uses, and protects your personal data when you visit konina.studio or place an order with us. It is written in accordance with the General Data Protection Regulation (GDPR) and Dutch privacy law.

WHO WE ARE

KONINA is a sole proprietorship (eenmanszaak) registered in the Netherlands, acting as the data controller for the personal data processed through the Site.

  • Trade name: KONINA
  • Email for privacy matters: info@konina.studio
  • Chamber of Commerce (KvK) number: 98494732
  • VAT identification number (BTW-id): NL005336920B59
  • Place of establishment: Amsterdam, Netherlands
WHAT WE COLLECT

We collect only the personal data we need to operate the Site, fulfil your orders, and improve your experience. Depending on how you interact with us, this may include:

  • Contact details: name, email address, shipping and billing address, and telephone number where provided.
  • Order data: the products you purchase, order history, returns, and related correspondence.
  • Payment data: transactions are processed by our payment providers. KONINA does not store or have access to your full payment card details.
  • Account data: if you create an account, your login credentials and saved preferences.
  • Communications: the content of emails and messages you send to us.
  • Technical data: IP address, browser type, device information, and pages visited, collected automatically by the Site and by Shopify, our hosting provider.
  • Marketing preferences: your consent to receive marketing emails, if given.

In addition to data you provide directly, we may receive limited information about you from our service providers — primarily Shopify (analytics, fraud signals) and payment processors (transaction confirmations and risk indicators). Any such data is treated in accordance with this Policy.

WHY WE PROCESS YOUR DATA

We process your personal data on the following legal bases under Article 6 of the GDPR:

  • Performance of a contract (Article 6(1)(b)): to process orders, arrange delivery, handle returns, and respond to customer service requests.
  • Legal obligation (Article 6(1)(c)): to comply with tax, accounting, and consumer protection law in the Netherlands and the European Union.
  • Legitimate interest (Article 6(1)(f)): to maintain the security of the Site, prevent fraud, analyse aggregate site usage, and improve our products and services. Where we rely on this basis, we balance our interest against your privacy rights.
  • Consent (Article 6(1)(a)): to send marketing emails and to use non-essential cookies. You may withdraw consent at any time.
WHO WE SHARE DATA WITH

We share your personal data only with trusted service providers that help us operate the Site and fulfil your orders. Each provider acts as a data processor under our instructions:

  • Shopify: hosts the Site, processes orders, and provides analytics. Shopify is based in Canada and operates worldwide. Data is transferred under appropriate safeguards.
  • Payment providers: handle your payment securely. Providers shown at checkout may include Shopify Payments, iDEAL, Bancontact, PayPal, Apple Pay, and Google Pay.
  • PostNL: our shipping carrier, receives the name and address required to deliver your order.
  • Email service providers: deliver order confirmations, shipping updates, and where you have consented, marketing communications.
  • Accounting and tax software: Moneybird, used for bookkeeping and tax compliance.
  • Public authorities: where disclosure is required by law, court order, or regulatory request.

We do not sell your personal data, and we do not share it for the marketing purposes of third parties.

INTERNATIONAL TRANSFERS

Some of our service providers are based outside the European Economic Area. Where personal data is transferred outside the EEA, we rely on the safeguards required by the GDPR, such as the European Commission's Standard Contractual Clauses (SCCs) or an adequacy decision in respect of the recipient country, to ensure your data continues to be protected.

HOW LONG WE KEEP YOUR DATA

We retain your personal data only as long as necessary for the purposes set out in this Policy, or as required by law:

  • Order and invoice records: seven years, as required by Dutch tax law.
  • Customer accounts: for as long as your account is active. You may delete your account at any time.
  • Marketing data: until you withdraw your consent.
  • Customer service correspondence: up to two years after the last interaction, unless retained longer for warranty or legal reasons.
COOKIES

The Site uses cookies, pixels, web beacons, and similar tracking technologies to make the Site work, to remember your preferences, and where you have consented, to measure usage and personalise content. Essential cookies do not require consent. Non-essential cookies, including analytics and marketing cookies, are activated only with your consent through our cookie banner. You can change or withdraw your consent at any time by visiting Your Privacy Choices.

Where you have configured your browser to send a Global Privacy Control (GPC) signal, KONINA treats this as a valid opt-out of non-essential tracking for that browser and device. To learn more about GPC, visit globalprivacycontrol.org.

YOUR RIGHTS

Under the GDPR, you have the following rights regarding your personal data:

  • Access (Article 15): to receive a copy of the personal data we hold about you.
  • Rectification (Article 16): to correct inaccurate or incomplete data.
  • Erasure (Article 17): to request deletion of your data where the legal basis no longer applies.
  • Restriction (Article 18): to limit how we process your data in certain situations.
  • Portability (Article 20): to receive your data in a structured, machine-readable format and to transmit it to another controller.
  • Objection (Article 21): to object to processing based on legitimate interest or direct marketing.
  • Withdrawal of consent: to withdraw your consent at any time where processing is based on consent.
  • Complaint: to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) at autoriteitpersoonsgegevens.nl.

To exercise any of these rights, write to info@konina.studio. We respond within one month as required by law.

You may designate an authorised agent to exercise these rights on your behalf. We may require the agent to provide proof of your authorisation and may verify your identity directly with you before responding to the request.

SECURITY

We take reasonable technical and organisational measures to protect your personal data against unauthorised access, loss, alteration, or disclosure. Payments are processed by PCI DSS-compliant providers. Access to customer data within KONINA is restricted to those who need it for their work.

CHILDREN

The Site is intended for adults. KONINA does not knowingly collect personal data from children under sixteen. If you believe a child has provided us with personal data, write to info@konina.studio and we will delete it.

CHANGES TO THIS POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices or in the law. The version in force is the version published on this page at the time of your visit, indicated by the "Last updated" date at the top. Material changes will be communicated through the Site, and where appropriate, by email.

CONTACT

For any question about this Privacy Policy or about how we process your personal data, write to info@konina.studio. For the purpose of applicable data protection law, KONINA is the data controller of the personal data described in this Policy.

Konina

© 2026 KONINA · KvK 98494732 · BTW NL005336920B59 · Legal Notice · Terms of service · Privacy policy