top of page

Privacy Policy

Privacy Policy

Last Updated: 8 August 2025

 

Malta Providore, a brand operated by Malta Chocolate Factory Ltd., is committed to protecting your privacy in accordance with the General Data Protection Regulation (GDPR) and Malta’s Data Protection Act (Cap. 586). This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit our website (www.providore.mt), subscribe to our mailing list, or contact us. We act as the data controller for the personal data processed through our website.

​

**1. Who We Are**
Malta Providore is operated by Malta Chocolate Factory Ltd., with a registered office at 36 St Domenica St, Victoria, Gozo, Malta. For questions about this Privacy Policy or your personal data, please contact us at:
- Email: info@mcf.com.mt
- Address: 36 St Domenica St, Victoria, Gozo, Malta

 

**2. Personal Data We Collect**

We may collect and process the following personal data:

- Identity and Contact Data: Name, email address, phone number, and other details you provide when subscribing to our mailing list or submitting inquiries via contact forms.
- Technical Data: IP address, browser type, and device information collected via cookies or analytics tools (subject to your consent where required).
- Marketing Data: Preferences for receiving newsletters or promotional communications.

You can browse our website without providing personal data, but subscribing to our mailing list or submitting inquiries requires you to provide certain information. If you choose not to provide this data, you may be unable to access these features.

 

**3. How We Collect Your Data**
We collect personal data when you:

- Subscribe to our mailing list.
- Submit inquiries via contact forms or email.
- Browse our website, where cookies or analytics tools may collect technical data (subject to your consent).

 

**4. Legal Basis and Purposes for Processing**
We process your personal data based on the following GDPR legal grounds:

- Consent (Article 6(1)(a)): For sending newsletters or using non-essential cookies (you may withdraw consent at any time).
- Contractual Necessity (Article 6(1)(b)): To respond to inquiries or manage mailing list subscriptions.
- Legitimate Interests (Article 6(1)(f)): For website analytics and improving our services, provided your rights are not overridden.
- Legal Obligation (Article 6(1)(c)): To comply with applicable legal requirements, such as tax or data protection laws.

 

**5. Cookies and Tracking Technologies**
Our website may use cookies to enhance functionality, analyse traffic, or personalise content. Essential cookies are necessary for website operation, while non-essential cookies (e.g., for analytics) require your consent. For details, see our Cookie Policy.

 

**6. Where We Store Your Data**
Your personal data is stored in the Wix Contacts database, hosted on Wix’s secure servers, primarily in Ireland (within the European Economic Area). If data is transferred outside the EEA (e.g., to Wix servers in the United States), Wix ensures GDPR compliance through safeguards like Standard Contractual Clauses. For more information, refer to Wix’s privacy policy.

 

**7. Sharing Your Personal Data**
We may share your personal data with:

- Wix.com: Our website hosting and data management provider, acting as a data processor under our instructions.
- Service Providers: Third parties (e.g., email marketing platforms) that process data on our behalf, subject to GDPR-compliant agreements.
- Legal Authorities: When required by law or to protect our legal rights.

We do not sell your personal data.

 

**8. Data Retention**
We retain your personal data only as long as necessary:

- Mailing list and inquiry data is kept until you unsubscribe or request deletion, or as required for customer support purposes.
- Technical data from cookies is retained for up to 12 months.
- Data required for legal compliance (e.g., tax records) is kept for 7 years.

 

**9. Your Rights**
Under GDPR, you have the following rights:

- Access: Request a copy of your personal data.
- Rectification: Correct inaccurate or incomplete data.
- Erasure: Request deletion of your data (subject to legal obligations).
- Restriction: Limit how we process your data.
- Data Portability: Receive your data in a structured, machine-readable format.
- Object: Object to processing for marketing or legitimate interests.
- Withdraw Consent: Withdraw consent for newsletters or cookies at any time.

To exercise these rights, contact us at info@mcf.com.mt. We will respond within one month. If unsatisfied, you may lodge a complaint with Malta’s Office of the Information and Data Protection Commissioner (www.idpc.org.mt).

 

**10. Security**
We use robust security measures, including SSL/TLS encryption and Wix’s enterprise-grade infrastructure, to protect your personal data from unauthorised access, loss, or misuse.

 

**11. Third-Party Links**
Our website may include links to third-party sites. We are not responsible for their privacy practices, and we encourage you to review their policies.

 

**12. Children’s Data**
Our website is not intended for users under 16. We do not knowingly collect data from children without parental consent. If you believe we have such data, please contact us immediately.

 

**13. Changes to This Privacy Policy**
We may update this policy to reflect changes in our practices or legal requirements. We will notify you of significant changes via our website or email. Please check this page regularly.

 

**Contact Us**
For questions or to exercise your rights, please contact:
Malta Providore (Malta Chocolate Factory Ltd.)
Email: info@mcf.com.mt
Address: 36 St Domenica St, Victoria, Gozo, Malta

​

bottom of page