Privacy Policy

Effective 01/01/2025

Privacy Policy

This Privacy Policy explains how Geberich OÜ (“We,” “Us,” “Our”) collects, uses, and processes your personal data in accordance with the General Data Protection Regulation (GDPR) and other relevant laws.

1. Data Controller & Contact

  • Data Controller: Geberich OÜ
  • Address: Laeva 2, Tallinn 10111, Estonia
  • Email: support@geberich.com

2. What Personal Data We Collect

  • Identity Data: Name, date of birth (if required), and other identifiers.
  • Contact Data: Address, phone number, email address.
  • Financial Data: Payment details (credit/debit card info), billing information.
  • Transaction Data: Details about payments, product orders, and returns.
  • Usage Data: Information about how you use our Website (see Cookies Policy).

3. How We Collect Data

  • Direct Interactions: When you place an order, contact us, or create an account.
  • Automated Technologies: Via cookies and analytics tools that capture your browsing actions and patterns.

4. Purposes & Legal Bases for Processing

We process your personal data for the following purposes:

  1. Order Fulfillment & Delivery
    • Legal Basis: Performance of a contract; legitimate interests (to ensure products are delivered correctly).
  2. Customer Service & Returns
    • Legal Basis: Performance of a contract; legal obligations.
  3. Payment Processing
    • Legal Basis: Performance of a contract.
  4. Marketing (Optional)
    • Legal Basis: Consent (if you opt in). You can withdraw your consent any time.
  5. Legal Compliance & Dispute Resolution
    • Legal Basis: Compliance with legal obligations; legitimate interests (fraud prevention).

5. Disclosure of Your Data

We may share your data with:

  • Payment Providers: To process transactions securely.
  • Courier or Logistics Partners: For shipping and delivery.
  • Service Providers: Such as IT support, hosting providers, or analytics services.
  • Regulatory Bodies or Law Enforcement: Where required by law.

6. International Transfers

We primarily store personal data within the EU/EEA. If we transfer your data to recipients in countries without an EU adequacy decision, we ensure appropriate safeguards (e.g., Standard Contractual Clauses).

7. Data Retention

We retain personal data only as long as necessary to fulfill the purposes outlined in this policy (e.g., to comply with legal, tax, or accounting requirements). Afterward, data is either erased or anonymized.

8. Your Rights Under the GDPR

You have the right to:

  • Access: Request information about your personal data we hold.
  • Rectification: Correct any incomplete or inaccurate data.
  • Erasure (“Right to be Forgotten”): Ask us to delete your data, subject to certain legal exceptions.
  • Restriction of Processing: Request the suspension of processing in certain scenarios.
  • Data Portability: Obtain a copy of your personal data in a machine-readable format.
  • Objection: Object to processing based on legitimate interests or direct marketing.

To exercise these rights, please contact us at support@geberich.com.

9. Security

We use appropriate security measures (encryption, secure servers, access controls) to protect your personal data against unauthorized access, alteration, disclosure, or destruction.

10. Updates to This Policy

We may modify or update this Privacy Policy from time to time. Updates will be posted on this page with a revised “Last Updated” date. Your continued use of our Website after any changes indicates your acceptance of the updated Policy.

Thank you for reading our Legal Notice, Cookies Policy, Shipping & Returns Policy, and Privacy Policy. By using www.geberich.eu or purchasing our Products, you confirm that you have read, understood, and agree to these policies.

Home Search Cart Products About