MUJI Deutschland GmbH Website Privacy Policy



Welcome to the website of MUJI Deutschland GmbH. MUJI Deutschland GmbH respects your privacy and protects your personal data.

This Privacy Policy explains how we process and protect your personal data when you visit our website (regardless of where you access it from). This Privacy Policy is provided in a structured format so that you can click through to the areas listed below.

Please also refer to the glossary, which explains in more detail the meanings of some terms used in this Privacy Policy.

  1. Important information and who we are
  2. The data we collect about you
  3. How is your personal data collected?
  4. How we use your personal data
  5. Disclosure of your personal data
  6. International transfers
  7. Data security
  8. Data storage
  9. Your rights
  10. Glossary

1. Important information and who we are

Purpose of this Privacy Policy

This website is not intended for children and we do not collect information about children.

If you are under 16 years of age, you will need the consent of your parent/guardian before providing us with your personal information. Persons under the age of 16 are not permitted to provide us with their personal data without such consent.

It is important that you read this Privacy Policy together with any other notices we may provide to you when collecting or processing personal data about you so that you are fully aware of how and why we use your data. This privacy policy applies in addition to other notices or conditions that apply to the relationship with MUJI Deutschland GmbH and does not override them.


MUJI Deutschland GmbH is responsible for your personal data.

MUJI Deutschland GmbH is part of the Muji Group, further information can be found here. When we mention "Muji", "we", "us" or "our" in this Privacy Policy, we are referring to the Muji group of companies that is responsible for processing your data. Click here for more information about the countries in which we operate and which group companies operate in each country. We have appointed a Data Protection Officer who is responsible for answering questions in connection with this Privacy Policy. If you have any questions about this Privacy Policy, including requests to exercise your legal rights, please contact them.

Contact details


Address: Kurfürstendamm 236, 10719 Berlin
Phone number: +49 (0) 30 887 105 43
You have the right to lodge a complaint with the competent supervisory authority for data protection at any time. However, we would be pleased if we could deal with your request personally first before you contact the supervisory authority for data protection.

Changes to the Privacy Policy and our obligation to notify you of changes

This Privacy Policy was last updated on 16.02.22.

We will keep this Privacy Policy up to date and will notify you of any material changes to the Statement. Any notification of changes to this Privacy Policy will be displayed on a banner at the top of our website for 30 days after the change.

It is important that the personal data we hold about you is accurate and up-to-date. Please let us know if your personal data changes during your relationship with us.

Third Party

Links This Website may contain links to third party websites, plugins and applications. Clicking on these links or enabling these connections may allow third parties to collect or share information about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy statement of each website you visit.


2. The information we collect about you

Personal data is any information about an individual from which that person can be identified. This does not include any data that does not allow any conclusions to be drawn about you (anonymized data).

We may process different types of personal data about you, in particular:

  • Personal details include your first name, last name, user name or similar identifier, marital status, title, date of birth and gender.
  • Contact details include billing address, delivery address, email address and telephone numbers.
  • Transaction Data includes details of payments to and from you and other details of products and services you have purchased from us.
  • CV data includes details of your previous employment, your contact details, your address and your telephone number if you apply to us for a job listed in the careers section of our website.
  • Technical Data includes Internet Protocol (IP) address, your login details, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technologies on the devices you use to access this website.
  • Account profile data includes your username and password, purchases or orders, interests, preferences, feedback, and survey responses.
  • Usage Data includes information about how you use our website, products and services.
  • Marketing and Communications Data includes your preferences in receiving marketing materials from us and your preferred method of receiving such promotional communications.

We also collect and use aggregated data, such as statistical or demographic data. Aggregated data may be derived from your personal data, but is not considered personal data as this data does not directly or indirectly reveal your identity. For example, we may aggregate your usage data to calculate the percentage of users accessing a particular part of the Site. However, if we combine or connect aggregated data with your personal data so that we can identify you in a direct or indirect manner, we treat that combined data as personal data which will be used in accordance with this Privacy Policy.

We do not collect any special categories of personal data (this includes information about your race or ethnicity, religious or spiritual beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). In addition, we do not collect any data on criminal convictions and offences.

If you do not provide us with personal data

If we are required by law to collect personal data or we need personal data in order for us to enter into or perform a contract with you and you do not provide us with this data, we may not be able to perform the contract we have entered into or will enter into with you (for example, to deliver the goods ordered to you). In this case, we may need to cancel an order, but we will notify you at the relevant time if this is the case.


3. How is your personal data collected?

We use different methods to collect information from and about you, namely:

  • Direct communication: You may provide us with your personal details, contact details and payment details by filling in forms or communicating with us by post, telephone, email or otherwise. This includes personal data that you provide to us when you:
    • purchase our products;
    • create an account on our website;
    • sign up to receive our offers or notifications, including Muji Mail;
    • request promotional material;
    • enter a sweepstakes, promotion or survey; or
    • You give us feedback.
  • Automated technologies or interactions: As you visit our website, we may automatically collect technical information about your device and your browsing activities and behaviours. We collect this personal data through the use of cookies, server logs and other similar technologies. We may also receive technical data about you when you visit other websites that use our cookies. For more details, please see our Cookie Policy.
  • Third parties or publicly available sources: We may receive personal data about you from various third parties as described below:
    • Technical data of the following parties:
      • providers of web analysis services, such as Google based outside the EU;
      • search engine providers such as Google.
    • Contact, credit and transaction data of providers for technical, payment and delivery services such as Barclaycard based within the EU.
    • Identity or contact data from publicly available sources, such as .dem commercial register or the electoral register based within the EU.
  • Applying for a job at Muji by e-mail: If necessary, you provide us with personal data as part of your application for a job at Muji.

4. How we use your personal data

  • We process your personal data only if permitted by law. In most cases, we will use your personal data as follows: When we need to perform the contract we intended to enter into with you or that we have already entered into with you.
  • Where it is necessary for our legitimate interest (or that of a third party) and that interest outweighs your interest or your fundamental rights and freedoms.
  • If we need to comply with a legal or regulatory obligation.

If we send you promotional material directly from third parties via e-mail or text message, this will only be done on the basis of your express consent. You have the right to withdraw your consent to receive advertising at any time by contacting us.

Purposes for using your personal data In the following, we have described in tabular form how we use your personal data and on which legal bases we rely on it. If necessary, we have also stated our legitimate interest in doing so.

Please note that we may process your personal data for more than one purpose, depending on the purpose for which we use your data. Please contact us ,if you require details of the legal basis on which we process your personal data if more than one basis is listed in the table.

PurposeTypes of dataLegal basis for processing, including the basis of legitimate interest
Entry as a new customer(a) Personal details
(b) Contact details
Performance of a contract with you Article 6 (1) (b) GDPR
Processing and delivery of your order including:
(a) Managing payments, costs and fees
(b)Collecting and collecting amounts owed to us
(a) Personal details
(b) Contact details
(c) Payment data
(a) Performance of a contract with you Article 6 (1) (b) GDPR
(b) Necessary for our legitimate interests (collection of owed claims)Article 6 (1) (f) GDPR
Managing our business relationship with you, which includes:
(a) Notification of changes to our Terms and Conditions or Privacy Policy
(b) Asking you to leave a review or participate in a survey
(a) Personal
(b) Contact data
(c) User profile data
(d) Marketing and communication
(a) Performance of a contract with you Article 6 (1) (b) GDPR
(b) Need to comply with a legal obligation Article 6 (1) (c) GDPR
(c) Necessary for our legitimate interests (to keep our records up to date and to determine how customers use our products/services)Article 6 (1) (f)GDPR
Enabling participation in a sweepstakes, contest or survey(a) Personal details
(b) Contact details
(c) User profile data
(d) Usage data
(e) Marketing and communication
(a) Expressly given consent Article 6 (1) (a) GDPR
(b) Performance of a competition contract with you Article 6 (1) (b) GDPR
Administering and protecting our business and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting, and hosting data)(a) Personal details
(b) Contact details
(c) Technical data
(a) Necessary for our legitimate interests (for our day-to-day business, the provision of administrative and IT services, network security, fraud prevention and in the context of a business reorganisation or group reorganisation)Article 6 (1) (f) GDPR
(b) Necessary to comply with a legal obligation Article 6 (1) (c) GDPR
Display of suitable website content and advertisements and determine or evaluate the effect of advertising in accordance with our cookie policy (a) Personal details
(b) Contact details
(c) User profile data
(d) Usage data
(e) Marketing and communication
(f) Technical data
(a) Necessary for our legitimate interests (to determine how customers use our products/services, to develop them, to expand our business and to inform about our marketing)Article 6 (1) (f) GDPR
(b) Explicit consent Article 6 (1) (a) GDPR
Using data analytics to improve the website, products/services, marketing, customer relationships and experiencesNecessary for our legitimate interests (to define types of customers for our products and services, to keep our website up to date and informative, to develop our business and to inform about our marketing)Article 6 (1) (f) GDPR
Make suggestions or recommendations regarding the goods or services that may be of interest to you (profiling and automatic processing).(a) Personal details(b) Contact details
(c) Technical data
(d) Usage data
(e) User profile data
Expressly given consent Article 6 (1) (a) GDPR
Artikel 6 Abs. 1 a) DSGVO

Please note: In accordance with Article 21 (2) of the EU General Data Protection Regulation ("GDPR"), you have the right to object to the processing of your personal data for marketing purposes, including profiling described above. Please refer to the subsection "Your rights" for a detailed explanation of your rights and how you can assert them.


Promotional offers from us

We use your personal data, contact, usage, user profile and technical data to give us an impression of what you want, need or what may be of interest to you. This is how we decide which products, services and offers could be relevant for you (marketing).

You will receive marketing communications from us if you have consented to receive information from us, for example if you have purchased goods from us or you have provided us with your data as part of your participation in a competition or when registering for a promotion and you have not opted out of receiving promotional material.

Third Party Marketing

We will obtain your explicit consent before sharing your personal data with any company outside the Muji group of companies for marketing purposes.

We will not sell, share or rent your personal information to third parties unless we have your permission to do so or is required to do so by law.


You can ask us to stop sending you advertising at any time by:

    • follow the opt-out links in any promotional message sent to you; or
    • by contacting us personally..

You can also opt-in or opt-out of receiving Muji Mail on your online account.


Your browser settings allow you to choose to refuse all or selected browser cookies or to be notified when websites use or access cookies. If you disable or refuse cookies, please note that you may no longer be able to access some parts of this website or may not function properly. For more information about the cookies we use, please see our Cookie Policy.

Change of purpose

We will only use your personal data for the Zeser reason is compatible with the original purpose. If you would like an explanation of the extent to which the processing for the new purpose is compatible with the original purpose, please contact us.

If we need your personal data for another purpose, we will notify you and provide you with the legal basis that allows us to do so.

Please note that we may process your personal data without your knowledge or consent in accordance with the above rules, where required or permitted by law.


5. Disclosure of your personal data

We need to share your personal data with the parties listed below for the purposes set out in the table in clause 4:

    • Internal third parties as described in the pending glossary.
    • External third parties as described in the pending glossary.

We require all third parties to respect the security of your personal data and to use it in accordance with the law. We prohibit external service providers from using your personal data for their own purposes and only allow the processing of personal data for specific purposes and in accordance with our instructions.


6. International transfers

We share your information within the Muji group of companies. This includes the transfer of your data outside the European Economic Area (EEA).

If we transfer your personal data outside the EEA, we will ensure that a similar level of protection is provided by ensuring that at least one of the following safeguards is in place:

Please contact us, if you would like more information about the specific mechanisms we use when we transfer your personal data outside the EEA.


7. Data security

We have put in place appropriate safeguards to prevent your personal information from being accidentally lost, used, altered, disclosed or accessed in an unauthorised manner. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who need to know this data by virtue of their activities. They will only process your personal data in accordance with our instructions and they are subject to a duty of confidentiality.

We have procedures in place to respond to suspected personal data breaches and will notify you and any relevant data protection authorities of such breach to the extent we are required to do so by law.


8. Data storage

How long will my personal data be used?

We will only retain your personal data for as long as necessary to fulfil the purposes for which we collected it, including for the purpose of complying with any legal, accounting or reporting requirements. You may be able to ask us to delete your data, see Request for deletion for more information.

In certain circumstances, we may anonymise your personal data (so that it can no longer be linked to you) for research or statistical purposes. In this case, we may use this information indefinitely without notifying you.


9. Your rights

You have various rights in relation to your personal data. Please click on the links below to find out more about these rights (or refer to the glossary below): Glossary:


In general, you do not have to pay any fees to access your personal data or to exercise any other rights. Exceptionally, we may charge a reasonable fee if your request is clearly unfounded or repetitive.

What we may need from you

We may require certain information from you to help us prove your identity before responding to a request. This is a security measure to ensure that personal data is not disclosed to unauthorized persons. We may contact you to ask for more information regarding your request so that we can speed up the process.

Time frame for a response

We aim to respond to all inquiries within one month. Occasionally, it may take longer than a month if, for example, your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you informed.


10. Glossary


Legitimate interest is our company's interest in conducting and managing our business so that we can provide you with the best service and the best and safest experience. We ensure that we consider and weigh any potential impact on you and your rights before processing your personal data on the basis of legitimate interest. We will not use your personal data for operations where the impact on you outweighs our interest (unless we have your consent or we are otherwise legally required or entitled to do so). You can find out more about how we balance our legitimate interest against the potential impact on you of certain activities by contacting us.

Performance of a contract means the processing of your data if this is necessary for the performance of a contract to which you are a party or to act on your requests before entering into such a contract.

Compliance with a legal or regulatory obligation means processing your personal data where this is necessary for compliance with a legal or regulatory obligation to which we are subject.


Internal Third Parties

Other companies in the Muji group of companies (click here for more information) that act as controllers or processors and provide IT and system administration services.External third parties

External third parties
    • Service providers acting as processors based in the Federal Republic of Germany who provide IT and system administration services.
    • Professional advisors acting as processors or controllers, including lawyers, bankers, auditors, and insurers based in the Federal Republic of Germany, who provide consulting, banking, legal, insurance and accounting services.
    • The tax office, regulatory authorities and other authorities acting as processors or controllers based in the Federal Republic of Germany and which require reporting on processing activities under certain circumstances.
    • Delivery services, based in Germany and Holland, which offer the delivery of products purchased through our website.
    • Third parties approved by you
      • such as social media sites to which you have linked your account or third party payment providers
      • our email marketing provider Klaviyo, to whom you agree that we tailor our marketing communications to you. With your consent, we only share the following information: your name, email address, products you have recently viewed and products you have added to your shopping cart during your visit to our website.


You have the right to:

Request information about your personal data (also as an "access request to stored data"). This allows you to obtain a copy of the personal data we hold about you and to check whether we are lawfully processing it.

The correction request the personal data we hold about you. This allows you to correct any incomplete or incorrect data we hold about you.

Deletion of your personal data Ihrer personenbezogenen Daten zu verlangen. Dies ermöglicht es Ihnen, personenbezogene Daten zu löschen oder zu entfernen, wenn für uns keine Grundlage besteht, diese weiterhin zu verarbeiten. Sie haben außerdem das Recht, uns aufzufordern, Ihre personenbezogenen Daten zu löschen oder zu entfernen, wenn Sie von Ihrem Recht auf Widerspruch gegen die Verarbeitung (siehe unten) erfolgreich Gebrauch gemacht haben. Außerdem besteht dieses Recht in Fällen, in denen wir Ihre Informationen möglicherweise ohne Rechtsgrundlage verarbeitet haben oder wir Ihre personenbezogenen Daten löschen müssen, um das geltende Recht zu erfüllen. Beachten Sie jedoch, dass wir möglicherweise aufgrund von rechtlichen Gründen nicht immer Ihrem Antrag auf Löschen der Daten nachkommen können. Sie werden hierüber, falls zutreffend, zum Zeitpunkt Ihrer Anfrage benachrichtigt.

Objection to processing of your personal data where we are relying on a legitimate interest (or that of a third party) and you wish to object to the processing for reasons relating to your particular situation. You also have the right to object if we process your personal data for direct marketing.

Restriction of processing of your personal data. This allows you to ask us to suspend the processing of your personal data in the following situations: (a) if you want us to determine the accuracy of the data; (b) where our use of the data is unlawful but you do not want us to erase it; (c) if there is a need for you to continue to store the data even though we no longer need it because you wish to assert or defend yourself against legal claims; or (d) you have objected to our processing of your information but we need to verify whether we have legitimate, overriding grounds to use it.

The transfer request your personal data to you or to third parties. We will provide you or your chosen third party with your personal data in a structured, commonly used, machine-readable format. Please note that this right only applies to automated information that you originally gave us consent to use or where we used the information to perform a contract with you.

Withdraw your consent at any time where your consent is the basis for processing your personal data. This does not affect the lawfulness of the processing that took place before you withdraw your consent. If you withdraw your consent, we may no longer be able to provide you with certain products or services. We will inform you if you withdraw your consent.