Privacy Policy

1. Introduction

Swryxelljrax ("we", "us", "our") is committed to protecting your personal data. This Privacy Policy explains what information we collect, why we collect it, how we use and protect it, and what rights you have under the General Data Protection Regulation (EU) 2016/679 (GDPR) and the Dutch implementation of the GDPR (Uitvoeringswet AVG).

2. Categories of Personal Data Collected

We may collect and process the following categories of personal data:

• Identification data: full name, email address, telephone number
• Delivery data: postal address, delivery instructions
• Order data: product ordered, quantities, transaction reference
• Communication data: messages sent via our order form or email correspondence
• Technical data: IP address, browser type, pages visited, cookie identifiers (subject to your consent)

3. Purposes and Legal Basis for Processing

We process your personal data for the following purposes:

• Order fulfilment: to process and deliver your order — legal basis: performance of a contract (Art. 6(1)(b) GDPR)
• Customer service: to respond to enquiries — legal basis: legitimate interests (Art. 6(1)(f) GDPR)
• Legal compliance: to meet obligations under Dutch and EU law — legal basis: legal obligation (Art. 6(1)(c) GDPR)
• Analytics and marketing: only with your explicit consent — legal basis: consent (Art. 6(1)(a) GDPR)

4. Data Retention

We retain personal data only for as long as necessary for the stated purpose:

• Order and transaction data: 7 years (Dutch fiscal record-keeping obligations)
• Customer service communications: 2 years from the date of last contact
• Analytics data: up to 26 months from collection (subject to consent withdrawal)

5. Sharing of Data

We do not sell, rent or trade your personal data. We may share data with:

• Logistics and courier partners necessary to fulfil your order
• Payment processors operating under their own privacy policies
• IT service providers acting as data processors under a data processing agreement
• Competent authorities when required by law

Any third parties we engage are contractually bound to process data only on our instructions and in compliance with GDPR.

6. International Transfers

Where data is transferred outside the European Economic Area (EEA), we ensure adequate safeguards are in place, including Standard Contractual Clauses approved by the European Commission.

7. Your Rights

Under the GDPR, you have the following rights regarding your personal data:

• Right of access (Art. 15 GDPR)
• Right to rectification (Art. 16 GDPR)
• Right to erasure ("right to be forgotten") (Art. 17 GDPR)
• Right to restriction of processing (Art. 18 GDPR)
• Right to data portability (Art. 20 GDPR)
• Right to object (Art. 21 GDPR)
• Right to withdraw consent at any time without affecting the lawfulness of prior processing

To exercise any of these rights, contact us at the details above. We will respond within 30 days. You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) at autoriteitpersoonsgegevens.nl.

8. Security Measures

We implement appropriate technical and organisational measures to protect your data against unauthorised access, disclosure, alteration or destruction. All data transmissions via our website use HTTPS encryption.

9. Cookies

We use cookies in accordance with our Cookie Policy. You can manage your cookie preferences at any time via the cookie banner on our website.

10. Changes to This Policy

We may update this Privacy Policy from time to time. The revised version will be published on this page with an updated date. For material changes, we will notify you where possible.

11. Contact

For any privacy-related questions, please contact us at the details listed above. We are committed to resolving any concerns promptly and transparently.