en
Fifth generation of artisan confectioners

Privacy Policy

Legal notice: This document was created for informational purposes only. By using it, you accept this notice and acknowledge that Webnode is not responsible for any actions taken or uses based on the content of this website. We strongly recommend that you seek legal advice and adjust this document to meet the needs of your business.

The Store […] on the website […] with identification number […] and based in […] processes personal data provided by the User to comply with and, additionally, confirm the Terms and Conditions, to process orders and online shipments, and for the necessary communication during the time period established by law. 

General rules

1. The data controller, in accordance with the GDPR (hereinafter referred to as the "Regulation"), is […..], identification number [….], located at [….] (hereinafter referred to as the "Controller"); 

2. The contact details of the Controller are: email: [……], phone: [………];

3. Personal data refers to any information relating to an identified or identifiable natural person. 

The source of the personal data

1. The controller processes personal data obtained with the Customer's consent, collected through the purchase order and the fulfillment of the order created in the online store. […];

2. The controller processes only the identification and contact data of the Customer that are necessary for the fulfillment of the purchase contract;

3. The controller processes personal data for the purposes of shipping the order and accounting, and for necessary communication between the contracting parties for the period stipulated by law. Personal data will not be made public and will not be transferred to other countries."

Purpose of data processing

The controller processes the Customer's personal data for the following purposes:

1. Registration on the website [….] in accordance with Chapter 4, Section 2 of the GDPR;

2. For the fulfillment of the online order created by the Customer (name, address, email, phone number)

3. To comply with the law and regulations arising from the contractual relationship between the Customer and the Controller;

4. Personal data is necessary for the fulfillment of the purchase contract. The contract cannot be concluded without personal data.

Duration of personal data storage

1. The controller stores personal data for the period necessary to fulfill the rights and obligations arising from the contractual relationship between the controller and the customer and for the 3 years following the conclusion of the contractual relationship; 

2. The controller must delete all personal data after the expiration of the stipulated period for personal data storage. 

Recipients and processors of personal data 

The third parties that process the Customer's personal data are subcontractors of the Controller. The services of these subcontractors are essential for the successful fulfillment of the purchase contract and the processing of the online order between the Controller and the Customer.

The subcontractors of the controller are: 

  • Webnode AG (online store platform);
  • Shipping company;
  • Google Analytics (website analysis);

Customer Rights 

In accordance with the Regulation, the Customer has the right to:

1. The right to access personal data;

2. The right to rectify personal data;

3. The right to erase personal data;

4. The right to object to the processing of personal data;

5. The right to data portability;

6. The right to withdraw consent for the processing of personal data in writing or via email sent to: [….];

7. The right to file a complaint with the supervisory authority in case of suspected non-compliance with the Regulation.

Personal data security 

1. The controller declares to take all necessary technical and organizational precautions for the protection of personal data;

2. The controller has taken technical precautions to protect the spaces where data is stored, in particular, ensuring access to the computer with a password, the use of antivirus software, and the regular maintenance of computers.

Final provisions 

1. By placing an electronic order on the website [….], the customer confirms that they are informed about all the personal data protection conditions and accepts them in their entirety;

2. The customer accepts these rules by ticking the checkbox in the order purchase form;

3. The controller may update these Rules at any time. The new updated version will be published on their website.

These Rules will come into effect on [date].