PRIVACY POLICY (GDPR)
1. Data Controller
- Controller: [company name]
- Contact email: [email]
2. Personal Data Collected
We may collect the following data:
- Name
- Email address
- Billing and shipping address
- Phone number
- Payment and order details
3. Purpose of Processing
Your data is used to:
- Process and deliver orders
- Provide customer support
- Send transactional communications
- Send marketing communications (only with consent)
- Improve website and services
4. Legal Basis
Processing is based on:
- Contract performance (orders)
- User consent (marketing, cookies)
- Legal obligations
5. Data Retention
Data is retained:
- As long as necessary for the purpose collected
- As required by legal obligations
6. Data Sharing
We may share your data with:
- Shipping providers
- Payment processors
- Hosting providers (e.g. one.com)
- Legal authorities when required
International transfers (e.g. to the USA) are carried out with appropriate safeguards (e.g. Standard Contractual Clauses).
7. User Rights
You have the right to:
- Access your data
- Rectify inaccurate data
- Request deletion
- Object to processing
- Request data portability
To exercise your rights, contact: [email]
8. Security Measures
We implement appropriate technical and organizational measures to protect your data.