top of page

Privacy Policy

Ele Da Muse Niche Art House • www.eledamuse.com
Prepared 2026-01-30

This policy is intended for the website, e-commerce, inquiries, the newsletter, registration for private art viewings, the administration of authenticity certificates, and other situations related to Ele Da Muse’s activities. It also includes short “personal data processing” notices suitable for use in forms and the checkout flow.

 

1. Data controller: MB Ele Da Muse, legal entity code 307572028, registered office address – Rungos g. 11A-8, LT-26110 Elektrėnai, Lithuania, email – studio@eledamuse.com.

If any of the above legal entity details change, this version of the privacy policy must be updated before it is published publicly.

2. To Whom This Policy Applies

• website visitors;

• buyers / collectors purchasing or reserving artworks through the website;

• persons who contact us by email, via the contact form, or register for private art viewings / in-person meetings, including registration through Calendly;

• newsletter subscribers and recipients of direct marketing communications;

• creators, partners and other persons who contact us regarding collaborations or bespoke commissions.

3. What Personal Data We May Process

• identification and contact data: first name, last name, email address, phone number, social media contact details, if you provide them;

• order and contract data: the ordered artwork, order number, order date, price, delivery method, communications relating to the order, return or dispute;

• payment data: the payer’s name, payment status, payment identifiers, partially masked payment information, invoicing details; we do not usually store full payment card details or the CVV code;

• delivery data: recipient’s first name, last name, address, phone number, email address, shipment tracking data, customs or insurance information where required for the specific shipment;

• inquiry, private service and appointment scheduling data: the content of your message, the artwork you are interested in, the meeting time, the date of the viewing or consultation, the selected location or format, notes, correspondence history and, where registration takes place through Calendly, technical booking data;

• authenticity and provenance data: the artwork identifier, certificate number, creator’s name or pseudonym, sales information, buyer data to the extent necessary to confirm the artwork’s authenticity, provenance and lawful circulation;

• marketing data: newsletter subscription status, consent records, marketing preferences, unsubscribe information;

• technical data: IP address, device type, browser information, session and security logs, and data from cookies and similar technologies.

4. Sources From Which We Obtain Data

• directly from you when you browse the website, fill in forms, subscribe to the newsletter, place an order or contact us;

• from the Wix platform, its e-commerce features and the booking / scheduling services we use, including Calendly, when you register for an in-person meeting or private art viewing;

• from payment, delivery, insurance, accounting and other service providers, to the extent necessary for the order or compliance with legal obligations;

• from public sources only to the extent necessary to respond to your inquiry or assess a collaboration proposal.

 

5. We process personal data for several purposes, each based on a specific legal ground and retained for a defined period.

For website operation, security and fraud prevention, we process IP addresses, session data, technical logs, cookies and security identifiers. This is based on legitimate interest under GDPR Art. 6(1)(f). Data is usually retained for up to 12 months, unless needed longer for investigations.

For order handling and customer service, we process names, contact details, order data, artwork selections and communication history. This is necessary for contract performance under Art. 6(1)(b). Data is kept during the contract and for 3 years after.

For payment administration, we process payer details, payment status and identifiers. This relies on contract performance and legal obligations under Art. 6(1)(b) and (c). Accounting records are typically retained for 10 years.

For delivery, returns and related logistics, we process contact details, addresses and shipment data. This is based on contract performance and legal obligations. Data is usually retained for 3 years after order completion.

For inquiries, consultations and bookings, we process contact and booking details. This relies on contract or legitimate interest. If no contract follows, data is kept for about 12 months.

For collaborations and commissions, we process contact details, portfolios and proposal content. This is based on pre-contract steps or legitimate interest. If no agreement is reached, data is kept for 12 months.

For authenticity certificates and provenance, we process artwork and buyer-related data. This is based on contract and legitimate interest. Data may be retained long-term where necessary.

For newsletters and marketing, we process email, name and consent data. This is based on consent or soft opt-in. Data is kept until consent is withdrawn or up to 2 years after last interaction.

For legal compliance and defence of rights, we process relevant documents and communications. This is based on legal obligation and legitimate interest. Data is retained as required by law or until disputes are resolved.

 

6. Are You Required to Provide Data

• Purchase, payment, delivery and invoicing data are necessary for us to enter into and perform a contract.

• If you do not provide the necessary data, we may be unable to accept your order, complete delivery, respond to your inquiry, or provide documents required by law.

• Newsletter subscription and marketing consent are always voluntary.

 

7. With Whom We May Share Data

• the Wix platform and related service providers providing hosting, website operation, e-commerce, privacy management and technical maintenance services;

• appointment scheduling and booking service providers, such as Calendly, when we use them to organise private art viewings, consultations or in-person meetings;

• payment service providers, banks, acquirers and other financial settlement intermediaries;

• courier, logistics, insurance, storage and customs service providers;

• accounting, audit, legal, IT, cybersecurity and business advisory service providers;

• the creator of the artwork, where necessary for a bespoke order, authenticity or provenance verification, or the resolution of a direct creative matter;

• courts, supervisory authorities, law enforcement or other public authorities where required by law or necessary for the defence of our rights.

We share data only to the extent necessary to achieve the relevant purpose. Where a supplier acts as a processor, appropriate data processing terms are concluded or otherwise applied.

 

8. International Data Transfers

• Some of our service providers or their subprocessors may operate outside the European Economic Area (EEA), particularly where we use international technology, payment, scheduling, marketing or cloud services (e.g. Wix, Calendly, or similar providers used in the future).

• In such cases, data are transferred only in compliance with Chapter V of the GDPR, for example on the basis of an adequacy decision of the European Commission, Standard Contractual Clauses, or another lawful transfer mechanism.

• Where a specific transfer is necessary for the performance of your order (e.g. delivery of an artwork to a non-EEA country at the address specified by you), data may be transferred to the extent necessary to provide that service.

 

9. Cookies and Similar Technologies

• The website uses necessary cookies and similar technologies required for security, session management, cart functionality, checkout, fraud prevention and core website functions.

• Functional, statistical or marketing cookies may be used only with your prior consent, unless a particular cookie is strictly necessary to provide a service expressly requested by you.

• You can accept, reject or later change your consent through the cookie banner / settings. Browser settings may help manage some cookies, but disabling them may affect website functionality.

If additional third-party tools are integrated into the website (e.g. Google Analytics, Meta Pixel, newsletter platforms, chat widgets or other advertising / analytics solutions), we will update this policy and, where required, the cookie banner / consent settings before activating them. This policy may describe the categories of such tools in advance, but the specific recipients, purposes and cookie types must be specified when we actually begin using them.

 

10. Direct Marketing

• We send electronic direct marketing communications only where we have prior consent, unless an exception provided by law applies to the marketing of our own similar goods or services to existing customers.

• Consent for marketing must be separate from other consents and may not be “hidden” in general terms or forms.

• In every marketing communication, we provide a clear, free of charge and easy-to-use way to opt out of such messages.

 

11. Automated Decision-Making and Profiling

• We do not normally carry out automated decision-making that produces legal effects concerning you or similarly significantly affects you.

• However, payment or fraud prevention service providers may apply automated risk assessment tools in accordance with their own privacy policies.

 

12. Data Security

• We apply reasonable technical and organisational measures to protect data against accidental or unlawful loss, alteration, disclosure or unauthorised access.

• Access to data is granted only to those persons and service providers who need it for business or contractual purposes.

• Although we seek to maintain a high level of security, no transmission of data over the internet or storage in any system can be considered absolutely secure.

 

13. Your Rights

• to know how your personal data are processed;

• to access your data;

• to request correction of inaccurate or incomplete data;

• to request erasure of data where the conditions established by law are met;

• to request restriction of processing;

• to receive or transfer data where the right to data portability applies;

• to object to processing based on legitimate interest;

• to withdraw your consent at any time where processing is based on consent;

• to lodge a complaint with the State Data Protection Inspectorate.

You may send requests concerning the exercise of your rights to studio@eledamuse.com. In order to protect your data, we may ask you to reasonably verify your identity. We respond to requests within the time limits set by the GDPR.

Supervisory authority in Lithuania: State Data Protection Inspectorate, L. Sapiegos g. 17, LT-10312 Vilnius, email ada@ada.lt.

 

14. Minors

The website and purchase services are not intended for persons under 18 years of age. If you believe that a minor has provided data to us without an appropriate legal basis, please contact us and we will assess and, where necessary, delete the data.

 

15. Third-Party Links and Social Media

The website may contain links to third-party websites or social media accounts. We are not responsible for the privacy practices of such third parties; we recommend reviewing their privacy documents separately.

 

16. Changes to the Policy

We may update this policy when our activities, tools used or applicable laws change. If we begin using new analytics, advertising, newsletter, scheduling or other third-party tools, we will update the policy and, where applicable, the cookie settings before or at the time those tools are activated. The latest version is always published on the website.

 

17. Contacts

For privacy and personal data matters, you may contact us at: studio@eledamuse.com • MB Ele Da Muse • Rungos g. 11A-8, LT-26110 Elektrėnai, Lithuania.

bottom of page