Privacy Policy

When you interact with Lilly Store — whether browsing, creating an account, or placing an order — we may collect the following types of information:

• Personal details: name, email address, phone number, and date of birth (if provided)
• Delivery information: shipping address and any delivery preferences
• Payment information: billing details processed securely through our payment provider (we do not store card numbers)
• Account data: username, password (encrypted), and order history
• Usage data: pages visited, products viewed, time spent on site, and device/browser information

We use the information we collect to:

• Process and fulfil your orders, and send order confirmations and updates
• Provide customer support and respond to your enquiries
• Send you relevant promotions, offers, and product updates (only if you've opted in)
• Improve our website, product range, and overall shopping experience
• Detect and prevent fraud or unauthorised account activity
• Comply with legal obligations applicable in Qatar

We will never use your data for purposes beyond what is described here without your explicit consent.

We do not sell, rent, or trade your personal information to third parties. We may share your data only with trusted partners who help us operate our business:

• Shipping providers: to deliver your orders to the correct address
• Payment processors: to securely handle transactions
• IT and platform providers: who power our website and store infrastructure
• Legal authorities: when required by law or to protect our rights

We use cookies and similar technologies to enhance your browsing experience, remember your preferences, and understand how visitors use our site.

• Essential cookies: required for the website to function (cart, session, login)
• Analytics cookies: help us understand site usage and improve performance
• Marketing cookies: used to show you relevant ads and offers (only with your consent)

You can manage or disable cookies through your browser settings at any time. Note that disabling essential cookies may affect your ability to use the site.

We take the security of your personal data seriously. We implement industry-standard measures including:

• SSL encryption on all pages where data is transmitted
• Secure, encrypted storage for sensitive account information
• Restricted access — only authorised team members can access customer data
• Regular security reviews of our systems and infrastructure

While we strive to protect your data, no method of transmission over the internet is 100% secure. If you suspect any unauthorised use of your account, please contact us immediately.

You have the following rights regarding your personal data:

• Access: request a copy of the personal data we hold about you
• Correction: ask us to correct any inaccurate or incomplete data
• Deletion: request that we delete your personal data, subject to legal requirements
• Opt-out: unsubscribe from marketing emails at any time via the link in any email
• Portability: request your data in a structured, machine-readable format

We retain your personal data only for as long as necessary to fulfil the purposes it was collected for, including legal, accounting, or reporting requirements.

• Active account data is kept for the duration of your account
• Order records are retained for up to 5 years for financial compliance
• Marketing preferences are stored until you opt out or request deletion

When data is no longer needed, it is securely deleted or anonymised.

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we do, we will revise the "Last updated" date at the top of this page.

We encourage you to review this page periodically. Continued use of our website after any changes constitutes your acceptance of the updated policy.