Home

Privacy Policy

Last updated:

1. Data controller

The controller of personal data is Vimreloxjroz, Storgatan 57C, 972 31 Luleå, Sweden. Public communication channels are listed as plain text on the website (info@vimreloxjroz.world, contact@vimreloxjroz.world, support@vimreloxjroz.world, help@vimreloxjroz.world). This notice applies to visitors and customers interacting with the Vireluna product pages, forms, and email correspondence.

2. Categories of data collected

We may process identity and contact data (name, email, optional phone), message content provided through inquiry forms, technical data such as IP address and browser type supplied by your device, and cookie-related signals described separately in the Cookie Policy.

3. Purposes and legal bases (GDPR Articles 6–7)

  • Contract and pre-contract steps: responding to product inquiries, preparing shipments, and managing warranties or returns where applicable (Article 6(1)(b)).
  • Legal obligation: accounting, tax, and regulatory record keeping (Article 6(1)(c)).
  • Legitimate interests: improving site security, preventing fraud, and analysing aggregated traffic patterns where compatible with your expectations (Article 6(1)(f)).
  • Consent: optional analytics or marketing cookies, marketing emails when no soft opt-in applies, and any voluntary survey beyond core service delivery (Article 6(1)(a)).

4. Storage locations and recipients

Data is processed within the European Economic Area whenever feasible. If processors outside the EEA assist us, we rely on Standard Contractual Clauses or adequacy decisions authorised by the European Commission. Categories of recipients include hosting providers, transactional email services, payment intermediaries where checkout applies, and professional advisers bound by confidentiality.

5. Retention

Inquiry records are kept for up to twenty-six months unless a longer period is required for an active contractual relationship, unresolved dispute, or statutory retention limit. Cookie retention periods are listed in the Cookie Policy. Accounting documents follow Swedish bookkeeping timelines.

6. Security measures

We apply transport encryption (HTTPS), access control for staff accounts, vendor due diligence, and segregated environments for production data. No security practice eliminates all risk; we review controls on a scheduled basis.

7. Your rights

You may request access, rectification, erasure, restriction, portability, and objection under GDPR Chapters II–III. You may withdraw consent where processing is consent-based without affecting earlier lawful processing. You may lodge a complaint with the Swedish Authority for Privacy Protection (IMY) or your local supervisory authority.

8. Automated decision-making

We do not use solely automated decisions that produce legal or similarly significant effects regarding the data subjects interacting with this storefront.

9. Children

The site is directed to adults. We do not knowingly collect data from individuals below the age at which parental consent is required in their jurisdiction.

10. Updates

Material revisions will be announced with a new “Last updated” date at the top of this page and, when required, additional notice through email or an on-site banner.