PrimePeptides
dePanier 0

PrimePeptides

Privacy Policy

Last updated: 28 June 2026.

Controller

Controller: TODO: Unternehmensnamen nach Eintragung ergänzen, TODO: Adresse nach Eintragung ergänzen

Contact: support@primepeptides.xyz

Processing principles

We process personal data only as necessary to operate the shop, handle orders, communicate with customers, comply with legal obligations and protect legitimate interests. Legal bases include Art. 6(1)(b), Art. 6(1)(c), Art. 6(1)(f) and, where required, Art. 6(1)(a) GDPR.

Server logs

When the website is accessed, technical access data such as IP address, time, URL, referrer, browser, operating system and transferred data volume may be processed for security, troubleshooting and stable operation.

Account and orders

For accounts and orders, we process name, email, billing and shipping data, order contents, payment status, shipping status, communication data and technical security data.

RUO confirmation

We may document acceptance of RUO notices, terms, privacy information and related confirmations to evidence lawful order processing and separation from prohibited uses.

Bank transfer

For bank transfers, we process payment references, incoming payments and order numbers. We do not process credit card data.

Email contact

If you contact us by email, we process your information to handle the request.

Newsletter

Newsletters are sent only with consent. Consent can be withdrawn at any time with future effect.

Cookies

Technically necessary cookies or similar technologies may be used for cart, login, security, language settings and consent management. Non-essential tracking should be used only with consent.

Recipients

Data may be shared with technical providers, hosting providers, shipping providers, payment institutions, tax advisors, authorities or other recipients where necessary.

External reports

Product pages may link to external analysis or report pages. When visiting external links, the privacy policy of that provider applies.

Retention

Data is deleted when no longer required and no statutory retention period applies. Tax and commercial records may be retained for up to ten years.

Your rights

Data subjects have rights of access, rectification, erasure, restriction, portability, objection and complaint with a supervisory authority under the GDPR.

Security

We use technical and organizational measures to protect data against loss, misuse, unauthorized access and alteration.

Changes

This privacy policy may be updated if legal, technical or organizational requirements change.