Skip to content
FREE SHIPPING On orders $34.99+

Privacy policy

Last updated: April 2026

1. Introduction

Welcome to MimiSquishy ("we", "us", "our"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, store and protect your personal data when you visit our website mimisquishy.com or make a purchase with us.

Please read this policy carefully. If you have any questions please contact us at contact@mimisquishy.com.

2. Who We Are

MimiSquishy is an e-commerce store specialising in squishy toys and stress relief products. Our website is hosted on Shopify Inc.

Contact: contact@mimisquishy.com Website: mimisquishy.com

3. What Data We Collect

When you visit our website or place an order we may collect the following personal data:

Identity & Contact Information

  • Full name
  • Email address
  • Phone number (if provided)
  • Delivery and billing address

Payment Information

  • Payment card details — processed securely by our payment providers. We never store your full card details on our servers.

Order Information

  • Products purchased
  • Order history
  • Transaction details

Technical Information

  • IP address
  • Browser type and version
  • Device information
  • Pages visited and time spent on our website
  • Referring website

Communications

  • Messages sent to us via email or contact form
  • Customer service correspondence

4. How We Collect Your Data

We collect data in the following ways:

  • Directly from you — when you create an account, place an order, contact us or sign up to our newsletter
  • Automatically — through cookies and tracking technologies when you browse our website
  • From third parties — payment providers, shipping carriers and analytics services

5. How We Use Your Data

We use your personal data for the following purposes:

To process and fulfil your orders

  • Process payments and prevent fraud
  • Arrange delivery of your order
  • Send order confirmations and shipping updates
  • Handle returns and refunds

To communicate with you

  • Respond to your enquiries and customer service requests
  • Send transactional emails relating to your order
  • Send marketing emails and promotions — only if you have opted in

To improve our website and services

  • Analyse website traffic and user behaviour
  • Improve our product selection and customer experience
  • Detect and prevent fraud and security issues

To comply with legal obligations

  • Maintain accurate financial records
  • Comply with applicable laws and regulations

6. Legal Basis for Processing (UK & EU)

If you are based in the United Kingdom or European Union we process your personal data on the following legal bases:

  • Contract — processing necessary to fulfil your order
  • Legitimate interests — improving our services, preventing fraud, analysing website performance
  • Consent — sending marketing emails where you have opted in
  • Legal obligation — complying with applicable laws

7. Who We Share Your Data With

We never sell your personal data to third parties. We may share your data with the following trusted service providers solely to operate our business:

  • Shopify — our e-commerce platform and website host
  • Payment providers — Stripe, PayPal, Apple Pay, Google Pay
  • Shipping carriers — to deliver your order
  • Email marketing platforms — if you have opted in to our newsletter
  • Analytics providers — Google Analytics and similar tools

All third parties are required to handle your data securely and in accordance with applicable privacy laws.

8. International Data Transfers

As we operate internationally your data may be transferred to and processed in countries outside the United Kingdom or European Union — including the United States and China (via our fulfilment partner). Where such transfers occur we ensure appropriate safeguards are in place in accordance with applicable data protection law.

9. Cookies

Our website uses cookies — small text files stored on your device — to improve your browsing experience and analyse website traffic.

Types of cookies we use:

  • Essential cookies — necessary for the website to function properly
  • Analytics cookies — help us understand how visitors use our website
  • Marketing cookies — used to deliver relevant advertisements (only with your consent)

You can manage your cookie preferences at any time through your browser settings or our cookie consent banner. Please note that disabling certain cookies may affect the functionality of our website.

10. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy or as required by law.

  • Order data — retained for 7 years for accounting and legal purposes
  • Customer account data — retained until you request deletion
  • Marketing data — retained until you unsubscribe or request deletion
  • Technical data — retained for up to 26 months

11. Your Rights

Depending on your location you have the following rights regarding your personal data:

For UK and EU residents:

  • Right to access — request a copy of the personal data we hold about you
  • Right to rectification — request correction of inaccurate data
  • Right to erasure — request deletion of your personal data
  • Right to restrict processing — request that we limit how we use your data
  • Right to data portability — request your data in a portable format
  • Right to object — object to processing based on legitimate interests
  • Right to withdraw consent — withdraw marketing consent at any time

For US residents: Depending on your state you may have additional rights under applicable state privacy laws including the California Consumer Privacy Act (CCPA).

To exercise any of your rights please contact us at contact@mimisquishy.com. We will respond within 30 days.

12. Marketing Communications

If you have opted in to receive marketing emails from us you can unsubscribe at any time by clicking the unsubscribe link in any of our emails or by contacting us at contact@mimisquishy.com. We will never send you marketing emails without your explicit consent.

13. Data Security

We take the security of your personal data seriously. We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss, destruction or alteration. These measures include SSL encryption, secure payment processing and restricted access to personal data within our team.

However please note that no method of transmission over the internet is 100% secure. While we strive to protect your data we cannot guarantee absolute security.

14. Third Party Links

Our website may contain links to third party websites. We are not responsible for the privacy practices of these websites and encourage you to read their privacy policies before providing any personal data.

15. Children's Privacy

Our website is not directed at children under the age of 13. We do not knowingly collect personal data from children under 13. If you believe we have inadvertently collected data from a child please contact us immediately at contact@mimisquishy.com and we will delete it promptly.

16. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any significant changes by updating the date at the top of this page. We encourage you to review this policy periodically.

17. Contact Us & Complaints

If you have any questions, concerns or complaints about how we handle your personal data please contact us at:

📧 contact@mimisquishy.com

UK residents: You have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk if you believe your data has been handled unlawfully.

EU residents: You have the right to lodge a complaint with your local data protection authority.

MimiSquishy — mimisquishy.com 🌸

Your cart
Your cart is empty
Have an account? Log in to check out faster.
Continue shopping Continue shopping