top of page

PRIVACY POLICY

This privacy policy describes how Candalous ("we", "our", or "us") collects, uses, and discloses your personal information when you visit or make a purchase from the website [candalous.com] (the "Site").

CONTACT

If you have any questions, require more information about our privacy practices, or would like to make a complaint, you can contact us using the details below:

Data Controller:
Candalous
C/O Samuel Eiler
Kesselbergstrasse 7, Munich, Germany 81539
Email: candalous.official@gmail.com

collecting personal data

When you visit our Site, we collect certain information about your device, your interaction with the Site, and information necessary to process your purchases. We may also collect additional information if you contact us for customer support. In this Privacy Policy, we refer to any information that can identify an individual ("Personal Information"). The types of personal information we collect and why are outlined below.

Device Information

  • Purpose of collection: To load the Site accurately for you and to perform analytics on Site usage to optimize our services.

  • Source of collection: Collected automatically when you access our Site using cookies, log files, web beacons, tags, or pixels.

  • Disclosure for a business purpose: Shared with our processor Wix.

  • Personal Information collected: Version of web browser, IP address, time zone, cookie information, what sites or products you view, search terms, and how you interact with the Site.

Order Information

  • Purpose of collection: To provide products or services to you, fulfill our contract, process your payment, arrange for shipping, and provide invoices and/or order confirmations. We may also use this information to communicate with you and, with your consent, provide marketing material.

  • Source of collection: Collected from you.

  • Disclosure for a business purpose: Shared with our processor Wix.

  • Personal Information collected: Name, billing address, shipping address, payment information (including credit card numbers), email address, and phone number.

Legal Basis for Processing

We process your personal information based on the following legal grounds under the GDPR:

  • Contractual necessity: To process your order and provide our services.

  • Consent: For marketing purposes, if you have given your explicit consent.

  • Legitimate interest: To analyze website performance, improve our services, and protect against fraud.

Sharing Personal Information

We share your Personal Information with service providers to help us provide our services and fulfill contracts, as described above. For example:

  • We use Wix to power our online store. You can read more about how Wix uses your Personal Information here: Wix Privacy Policy.

  • We use Google Analytics to understand how our customers use the Site. You can read more about how Google uses your Personal Information here: Google Privacy Policy. You can also opt-out of Google Analytics here: Opt-out of Google Analytics.

  • We use Kit to send you email marketing when you sign up and confirm your subscription. To know about their privacy policy, please find the information here: Kit Privacy Policy

We may also share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant, or other lawful requests, or to protect our rights.

Payment Methods

Behavioural Advertising

We use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. As described above, we use Google Analytics for this purpose. For more information about targeted advertising, please visit the Network Advertising Initiative’s educational page at here.

Cookies Policy

We use cookies and similar tracking technologies to collect information about your interactions with the Site. Cookies help us remember your preferences and understand your browsing behavior to improve our services.

  • Essential cookies: Necessary for the operation of the Site.

  • Analytics cookies: Help us understand website traffic and usage.

  • Marketing cookies: Track visitors across websites to display relevant ads.

You can manage your cookie preferences through our cookie consent banner or your browser settings. 

Data Retention

We will retain your Personal Information for our records unless and until you request us to erase this information. For more information on your right to erasure, see the ‘Your Rights’ section below.

Data Transfers Outside the EU

If we transfer your data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place, such as standard contractual clauses or adequacy decisions, to protect your personal data in line with GDPR requirements.

user rights

Under GDPR, you have the following rights regarding your personal data:

  • Right to access: You can request access to the personal information we hold about you.

  • Right to rectification: You can request corrections to any inaccurate or incomplete data.

  • Right to erasure ("Right to be forgotten"): You can request the deletion of your data in certain circumstances.

  • Right to restrict processing: You can ask us to limit the processing of your data.

  • Right to data portability: You can request a copy of your data in a structured, machine-readable format.

  • Right to object: You can object to processing your data for direct marketing purposes or based on legitimate interests.

  • Right to withdraw consent: You may withdraw your consent for marketing communications at any time.

 

To exercise any of these rights, please contact us at candalous.official@gmail.com.

Automated Decision-Making

We do not engage in fully automated decision-making that has a legal or otherwise significant effect using customer data. However, our processor Wix uses limited automated decision-making to prevent fraud that does not have a legal or otherwise significant effect on you, such as:

  • Temporary blacklist of IP addresses associated with repeated failed transactions (blacklist persists for a small number of hours).

  • Temporary blacklist of credit cards associated with blacklisted IP addresses (blacklist persists for a small number of days).

complaints

If you would like to make a complaint regarding the use of your personal data, please contact us at [candalous.official@gmail.com].

If you are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority. Our supervisory authority in Germany is the Bayerisches Landesamt für Datenschutzaufsicht (BayLDA):

Contact Information:
Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)
Promenade 27 (Schloss), 91522 Ansbach, Germany
Phone: +49 981 180093-0
Email: poststelle@lda.bayern.de

updates

We may update this Privacy Policy from time to time to reflect changes in our practices or for operational, legal, or regulatory reasons. Any changes will be posted on this page with an updated “Last Updated” date.

Last Updated: 20.10.2024

bottom of page