Privacy Policy

1. Who We Are

EuroVitaLabs ("we", "us", "our") operates the website eurovitalabs.cloud and related product websites. We are the data controller responsible for your personal data collected through these websites.

We are committed to protecting your privacy in accordance with Regulation (EU) 2016/679 (the General Data Protection Regulation, "GDPR") and applicable national data protection laws.

2. Data We Collect

Depending on how you interact with our websites, we may collect:

• Identity data: name, surname
• Contact data: email address, phone number, delivery address
• Transaction data: details of products purchased, payment confirmation (we do not store full card data)
• Technical data: IP address, browser type and version, device identifiers, pages visited, time and date of visits
• Usage data: how you navigate and interact with our websites
• Marketing data: your preferences for receiving marketing and your communication preferences
• Cookie data: as described in Section 9

We do not collect special categories of personal data (such as health or biometric data) through our websites.

3. How We Use Your Data

We use your personal data for the following purposes:

• Processing and delivering your orders
• Managing your customer account and handling inquiries
• Sending transactional communications (order confirmations, shipping updates)
• Sending marketing communications where you have given consent or we have a legitimate interest
• Improving our website and product offerings through analytics
• Fraud prevention and security
• Compliance with legal obligations

4. Legal Basis for Processing

We process your data under the following legal bases:

• Contract performance: processing necessary to fulfil your order
• Legitimate interests: improving our services, preventing fraud, direct marketing to existing customers
• Consent: marketing communications, non-essential cookies
• Legal obligation: complying with applicable laws (e.g., tax record keeping)

5. Sharing Your Data

We share your personal data only in the following circumstances:

• Service providers: payment processors, logistics partners, email service providers, and hosting providers who act as data processors under our instruction
• Analytics providers: anonymised or pseudonymised data with analytics platforms (e.g., Google Analytics)
• Advertising platforms: hashed identifiers may be shared with Google and Meta for ad measurement purposes, subject to your cookie consent
• Legal requirements: where required by law or to protect our legal rights

We never sell your personal data to third parties.

6. International Transfers

Some of our service providers are based outside the European Economic Area (EEA). Where we transfer data internationally, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

7. Data Retention

We retain personal data only for as long as necessary for the purposes set out in this policy:

• Customer order data: 7 years (legal/tax obligation)
• Marketing consent records: until consent is withdrawn + 1 year
• Technical/analytics data: 26 months maximum
• Support communications: 3 years from last interaction

8. Your Rights

Under GDPR, you have the following rights regarding your personal data:

• Right of access: obtain a copy of the data we hold about you
• Right to rectification: correct inaccurate data
• Right to erasure: request deletion of your data ("right to be forgotten")
• Right to restrict processing: limit how we use your data in certain circumstances
• Right to data portability: receive your data in a machine-readable format
• Right to object: object to processing based on legitimate interests or for direct marketing
• Right to withdraw consent: at any time where processing is based on consent

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

9. Cookies & Tracking

We use cookies and similar technologies on our websites. For full details, please see our Cookie Policy.

In summary, we use:

• Essential cookies: required for the website to function (no consent needed)
• Analytics cookies: to understand how visitors use our site (requires consent)
• Marketing cookies: to measure ad campaign performance via Google and Meta pixels (requires consent)

You can manage your cookie preferences at any time via the cookie settings link in the website footer.

10. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include encrypted connections (HTTPS), access controls, and regular security assessments.

No method of transmission over the internet is 100% secure. If you believe your data has been compromised, please contact us immediately.

11. Contact & Complaints

For any privacy-related questions or to exercise your rights, contact our Data Protection team:

Email: [email protected]

If you are not satisfied with our response, you have the right to lodge a complaint with your national data protection authority. If you are based in the EU, you can find your local authority via the European Data Protection Board.

We may update this Privacy Policy from time to time. Material changes will be communicated via the website or by email where appropriate.