Privacy Policy
Last updated: 14 June 2026.
This Privacy Policy explains how Erebouni Khachik, Ditta Individuale, trading as Pikora ("we", "us", "Pikora") collects, uses, and protects the personal data of visitors and customers of pikora.it ("the Site"). We process personal data in accordance with the EU General Data Protection Regulation (Regulation (EU) 2016/679, "GDPR") and the Italian Codice della Privacy (Legislative Decree 196/2003 as amended).
1. Data controller
Erebouni Khachik — Ditta Individuale
Via Alfredo Catalani 43, 20131 Milano, Italy
P.IVA: 13726650966 · C.F.: KHCRBN87H51Z224D · REA: MI-2805107
Email: contact@pikora.it
2. Data we collect
When you visit, register, or order on Pikora, we collect:
- Account & order data: name, billing & shipping address, email, phone, order history, returns, customer-service correspondence.
- Payment data: processed entirely by our payment provider (Shopify Payments / Stripe). We do not store full card details on our servers.
- Technical data: IP address, browser type, device, pages visited, referring URL, session duration, cookies.
- Marketing data: newsletter subscription status, marketing engagement (opens, clicks), language and country preferences.
3. How we use your data
- Order fulfilment: process, ship, deliver, handle returns and refunds. Legal basis: contract performance, Art. 6(1)(b) GDPR.
- Customer service: respond to your enquiries by email, Instagram, or Telegram. Legal basis: contract / legitimate interest.
- Marketing newsletter: send updates about new collections and journal entries. Legal basis: your explicit consent, Art. 6(1)(a) GDPR. You may withdraw consent at any time via the unsubscribe link.
- Site analytics: understand how visitors use the Site, to improve it. Legal basis: legitimate interest, with analytics cookies subject to consent.
- Legal compliance: tax records, accounting, fraud prevention. Legal basis: legal obligation, Art. 6(1)(c) GDPR.
4. Who we share your data with
- Shopify Inc. — e-commerce platform hosting the Site, storing order and customer data.
- Shopify Payments / Stripe — payment processing.
- Packlink PRO — shipping orchestration with our chosen carriers (DHL, GLS, BRT, Poste Italiane).
- Google Analytics — anonymised site analytics, only where you have consented.
- Meta (Instagram / Facebook) — only with marketing-cookie consent or via shoppable Instagram tagging.
- Italian tax and accounting providers — for invoicing and Codice del Consumo compliance.
5. International transfers
Some processors (Shopify, Google) operate in the United States. Transfers are made under the EU-US Data Privacy Framework or Standard Contractual Clauses.
6. How long we keep your data
- Account data: as long as your account exists.
- Order & tax records: 10 years (Italian accounting law).
- Marketing data: until you unsubscribe.
- Analytics data: up to 14 months.
7. Your rights under GDPR
You have the right to access, rectify, erase, restrict processing, portability, object, and withdraw consent. You may also lodge a complaint with the Garante per la protezione dei dati personali (www.garanteprivacy.it).
To exercise your rights, write to contact@pikora.it. We will respond within 30 days.
8. Cookies
- Essential cookies — cart, checkout, login. Always on.
- Analytics cookies — optional, requires consent.
- Marketing cookies — off by default, opt-in only.
9. Children
Pikora is intended for users aged 18 or older.
10. Security
We protect data using TLS encryption in transit, PCI-DSS compliant payment processing, and admin access controls.
11. Changes
Material changes will be communicated to subscribers by email.
12. Contact
contact@pikora.it