Privacy Policy (GDPR) – Moalie Wholesale

Version 2025

1. Introduction

At Moalie, we handle your business data with the same care and attention we put into our merino wool products. Transparency is key to our partnerships, and we want you to feel confident about how the information you entrust to us is managed.

Moalie respects the privacy of its business partners and processes personal data in accordance with the General Data Protection Regulation (GDPR / AVG). This Privacy Policy explains how personal data is collected, used and protected within our wholesale activities.

2. Data Controller

Moalie
Registered in the Netherlands
Email: info@moalie.nl

Moalie determines the purposes and means of the processing of personal data as described in this Privacy Policy.

3. Personal Data We Process

Moalie processes personal data provided by retailers or their representatives, including but not limited to:

  • Company name
  • Contact person name
  • Business address
  • Billing and shipping address
  • Email address
  • Telephone number
  • VAT number
  • Bank and payment details
  • Order history and transaction data
  • Communication relating to orders, deliveries or payments

Moalie does not intentionally process special categories of personal data as defined under the GDPR.

4. Purpose and Legal Basis of Processing

Personal data is processed for the following purposes:

  • Creating and managing wholesale accounts
  • Processing wholesale orders
  • Invoicing and payment administration
  • Shipping and logistics
  • Communication regarding orders, deliveries or payments
  • Compliance with legal and administrative obligations
  • Debt collection in case of overdue payments

Direct marketing (B2B)
Moalie may use the contact details of existing retailers to send updates about new collections, price lists or relevant business news. This processing is based on Moalie's legitimate business interest (Article 6(1)(f) GDPR). Retailers may object to such communications at any time.

The legal bases for processing are:

  • Performance of a contract (Article 6(1)(b) GDPR)
  • Legal obligation (Article 6(1)(c) GDPR)
  • Legitimate business interest (Article 6(1)(f) GDPR)

5. Use of Platforms and Third-Party Service Providers

Moalie uses external platforms and service providers to operate its wholesale business. Personal data is shared only where necessary for the purposes described in this policy.

5.1 Wholesale platform (Shopify)

Moalie uses Shopify as its wholesale ordering platform. Personal data entered into the wholesale environment (such as company details, contact information, orders and invoices) is processed by Shopify to facilitate:

  • Account management
  • Order processing
  • Invoicing
  • Platform functionality and support

Moalie has accepted Shopify's Data Processing Agreement to ensure that personal data is handled with the appropriate level of security and confidentiality. Retailers are advised to consult Shopify's own Privacy Policy for further information.

5.2 Shipping and logistics (Sendcloud and carriers)

For shipping wholesale orders, Moalie uses Sendcloud and affiliated transport partners. Personal data such as company name, contact person, shipping address and contact details may be shared to enable delivery and shipment tracking. Moalie has entered into Data Processing Agreements with Sendcloud and relevant logistics partners.

5.3 Payment, administration and accounting

Personal data may be shared with payment service providers, accounting and administrative service providers, and collection agencies where applicable. This sharing is limited to what is strictly necessary for contractual and legal obligations.

5.4 IT, hosting and communication providers

Moalie uses IT and hosting providers for website and platform hosting, email communication, and data storage and security. These providers may have limited access to personal data solely for technical and support purposes and are bound by confidentiality and data protection obligations.

Moalie does not sell or trade personal data to third parties.

6. Data Retention

Personal data is retained no longer than necessary for the purposes for which it is processed, unless a longer retention period is required by law (for example, tax and accounting obligations).

7. Security Measures

Moalie implements appropriate technical and organisational measures to protect personal data against loss, misuse, unauthorised access, disclosure or alteration. Access to personal data is restricted to authorised persons only.

8. Rights of Data Subjects

Retailers and their representatives have the following rights under the GDPR:

  • Right of access
  • Right to rectification
  • Right to erasure (where legally permissible)
  • Right to restriction of processing
  • Right to data portability
  • Right to object to processing

Requests can be submitted via email to sales@moalie.nlMoalie will respond within the statutory time limits.

9. Complaints

If a data subject believes that Moalie processes personal data unlawfully, they have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

10. Cookies & Analytics

Moalie uses functional and analytical cookies to ensure the proper functioning of the wholesale platform and to analyse usage patterns. These cookies are used to improve performance and user experience. Moalie does not use tracking cookies for third-party advertising within the wholesale environment.

11. Changes to this Privacy Policy

Moalie reserves the right to amend this Privacy Policy at any time. The most recent version will always apply and will be made available via the wholesale platform.

12. Contact

Moalie
Email: sales@moalie.nl