Privacy Policy
Mayla Sangha is committed to protecting your privacy and handling your personal data with care, transparency and integrity. This Privacy Policy explains how we collect, use and safeguard your personal information when you visit our website, purchase products, book services or subscribe to our communications.
Mayla Sangha is operated by Mayla Sweden AB and is the data controller responsible for the processing of your personal data. If you have any questions regarding this policy or the way your information is handled, you may contact us at:
Mayla Sweden AB
556871-0247
Mörbyhöjden 11
182 32 Danderyd
We collect personal information that you voluntarily provide to us when you place an order, subscribe to our newsletter, contact us, or interact with our website. This may include your name, email address, billing and shipping address, telephone number, and payment information. Payment details are processed securely through our payment providers and are not stored directly by us.
When you browse our website, certain technical data may also be collected automatically, such as your IP address, device information and browsing behaviour. This information is used to improve the functionality, security and user experience of the website.
Your personal data is processed for the following purposes: to fulfil and manage purchases, deliver products and services, process payments, respond to enquiries, send order confirmations and service-related communication, and where you have provided consent, to send newsletters and marketing communication. You may withdraw your consent to marketing at any time by using the unsubscribe link in our emails or by contacting us directly.
The legal basis for processing your personal data is the performance of a contract (when you make a purchase or booking), compliance with legal obligations (such as accounting requirements), our legitimate interest in improving our services and communication, and your consent where applicable.
We may share your personal data with trusted third-party service providers who support our operations, such as website hosting providers (Wix), payment processors (Stripe), shipping providers (Sendify), email marketing platforms, and analytics and advertising partners (such as Google and Meta). These providers process personal data either on our behalf as data processors or as independent data controllers in accordance with their own privacy policies and applicable data protection legislation. We do not sell your personal data to third parties.
Where personal data is transferred outside the EU/EEA, we ensure that appropriate safeguards are in place in accordance with applicable data protection legislation.
We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy or as required by law. Accounting data may be stored in accordance with legal retention requirements. Marketing data is stored until you withdraw your consent.
You have the right to request access to your personal data, request correction of inaccurate information, request deletion of your data where legally permitted, object to certain processing activities, and request restriction or portability of your data. If you believe your data is being processed in violation of applicable laws, you have the right to lodge a complaint with your local data protection authority.
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure or destruction.
Our website may contain links to third-party websites. We are not responsible for the privacy practices of those websites and encourage you to review their privacy policies separately.
This Privacy Policy may be updated from time to time to reflect changes in our practices or legal requirements. The most current version will always be available on our website.
Last updated: 2026-02-14