Privacy Policy

Important: This document has been created as a template for informational purposes only. By using it, you accept this section and understand that Webnode is not responsible for any actions caused by the website, or for any consequences arising from the website's content. We strongly recommend that you seek legal advice and adapt this document to the needs of your business.

The online store [….] on the website [….], with organisation number […], located in […], processes personal data provided by the Customer in order to fulfil and confirm the Terms of Use, process electronic orders and shipping, and maintain communication for the period permitted by law.

General Provisions

  1. The personal data controller, in accordance with GDPR (hereinafter referred to as the "Regulation"), is […], organisation number […], located in […], (hereinafter referred to as the "Controller");

  2. Contact details of the Controller: Email: […], Tel: […];

  3. Personal data is any information relating to an identified or identifiable natural person.

Source of Personal Data

  1. The Controller processes personal data obtained with the Customer's consent and collected through the contract in order to fulfil the purchase and the electronic order created in the online store […];

  2. The Controller processes only identifiable information and the Customer's contact details necessary for fulfilling the purchase contract;

  3. The Controller processes personal data for shipping, accounting, and communication between the parties to the contract for the period permitted by law.

Purpose of Processing Personal Data

The Controller processes the Customer's personal data for the following purposes:

  1. Registration on the website […], in accordance with Chapter 4, Section 2 of the Regulation;

  2. Fulfilment of the electronic order created by the Customer (name, postal address, email address, telephone number);

  3. Compliance with laws and regulations arising from the contractual relationship between the Customer and the Controller;

  4. Personal data is necessary to fulfil the purchase contract. The contract cannot be concluded without personal data.

Retention Period for Personal Data

  1. The Controller stores personal data for the period necessary to exercise rights and obligations arising from the contractual relationship between the Controller and the Customer, and for 3 years following the termination of the contractual relationship;

  2. The Controller must delete all personal data upon expiry of the retention period.

Recipients and Processors of Personal Data

Third parties that process the Customer's personal data are subcontractors of the Controller. The services provided by these subcontractors are essential for fulfilling the purchase contract and processing the electronic order between the Controller and the Customer.

The Controller's subcontractors are:

  • Webnode AG (online store system)

  • Shipping company

  • Google Analytics (website statistics)

Customer's Rights

In accordance with the Regulation, the Customer is entitled to:

  1. The right to access their personal data;

  2. The right to rectify their personal data;

  3. The right to erase their personal data;

  4. The right to object to the processing of their personal data;

  5. The right to data portability;

  6. The right to withdraw consent to the processing of their personal data in writing or by email to: […];

  7. The right to lodge a complaint with the supervisory authority if there is a suspicion of a breach of the Regulation.

Security of Personal Data

  1. The Controller declares that they take all technical and organisational measures necessary to protect personal data;

  2. The Controller has implemented technical measures to secure data storage, in particular securing access to the computer with a password, using antivirus software, and regularly checking the relevant computers.

Final Provisions

  1. By placing an electronic order on the website […], the Customer confirms they have been informed of all the terms of personal data protection and accepts them in full;

  2. The Customer agrees to these rules by ticking the checkbox in the order form;

  3. The Controller may update these Rules at any time. The new, updated version must be published on their website.

These Rules take effect on [Date].