Privacy Policy

Last updated: 9 March 2025

1. Controller and contact details

The data controller responsible for the processing of your personal data in connection with this website is:

Vlozarinoavoneu
1/185 Macquarie St, Sydney NSW 2000, Australia
Email: notifyuse@vlozarinoavoneu.world
Phone: +61292211622

If you have questions about this Privacy Policy or about how we process your personal data, you may contact us at the above address or email.

2. Scope and applicability

This Privacy Policy applies to the website vlozarinoavoneu.world (the "Website") and to all personal data that we collect, use, store or otherwise process when you visit the Website, place an order, use our contact form, subscribe to communications, or otherwise interact with our services. We process personal data in accordance with applicable data protection laws, including the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth), and where relevant the General Data Protection Regulation (GDPR) for individuals in the European Economic Area.

3. Legal basis for processing (GDPR)

Where the GDPR applies, we process your personal data on one or more of the following legal bases:

• Contract (Art. 6(1)(b) GDPR): Processing necessary for the performance of a contract to which you are party, or in order to take steps at your request prior to entering into a contract (e.g. order processing, delivery, customer support).
• Legal obligation (Art. 6(1)(c) GDPR): Processing necessary for compliance with a legal obligation to which we are subject (e.g. tax, accounting, consumer law).
• Legitimate interests (Art. 6(1)(f) GDPR): Processing necessary for our legitimate interests (e.g. improving our services, security, fraud prevention), unless your interests or fundamental rights override those interests.
• Consent (Art. 6(1)(a) GDPR): Where you have given clear consent for one or more specific purposes (e.g. marketing, non-essential cookies).

You may withdraw consent at any time where processing is based on consent. Withdrawal does not affect the lawfulness of processing based on consent before its withdrawal.

4. Types of personal data we collect

We may collect and process the following categories of personal data:

• Identity and contact data: Name, email address, postal address, telephone number, when you place an order, use the contact form, or communicate with us.
• Transaction and order data: Order details, payment-related information (we do not store full card numbers; payment processing may be handled by third-party providers), delivery preferences, and correspondence relating to orders.
• Technical and usage data: IP address, browser type and version, device type, operating system, referring URLs, pages visited, date and time of access, and similar technical data collected automatically when you use the Website.
• Cookie and similar technologies data: Information stored or read from cookies and similar technologies, in accordance with our Cookie Policy and your preferences.
• Marketing and communication preferences: Where you have opted in, your preferences for receiving marketing and the fact that you have consented.

We do not knowingly collect special categories of personal data (e.g. health, race, religion) unless you voluntarily provide them in a message and we have a lawful basis to process them (e.g. responding to an enquiry).

5. Purposes of processing

We use your personal data for the following purposes:

• To provide the Website and our services, including processing and fulfilling orders, delivering products, and managing returns or refunds in accordance with our Terms of Service and Return Policy.
• To communicate with you about your orders, enquiries, and customer support requests.
• To send service-related messages (e.g. order confirmation, shipping updates) where necessary for the performance of the contract.
• To improve the Website, analyse usage patterns, and ensure technical operation and security (e.g. preventing fraud, ensuring HTTPS and secure transmission).
• To comply with legal obligations (e.g. tax, consumer law, responding to lawful requests from authorities).
• Where you have consented, to send marketing communications about our products and offers. You may opt out at any time.
• To manage cookie preferences and respect your choices regarding analytics and marketing cookies, as described in our Cookie Policy.

6. Retention periods

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, and to comply with legal, accounting or reporting requirements.

• Order and customer data: Retained for the duration of the contractual relationship and thereafter for a period required by law (e.g. tax and consumer law in Australia, typically up to 7 years for business records).
• Contact form and enquiry data: Retained for the time needed to handle your enquiry and for a reasonable period thereafter for follow-up and legal defence (e.g. up to 3 years unless a longer period is required by law).
• Technical and access logs: Retained for a limited period necessary for security and troubleshooting (e.g. up to 12 months), unless a longer period is required for legal or regulatory reasons.
• Cookie data: As set out in our Cookie Policy; session cookies are deleted when you close the browser; persistent cookies according to their lifespan or until you withdraw consent or delete them.
• Marketing data: Until you withdraw consent or object, and thereafter only as needed to record that you have opted out.

After the retention period, we securely delete or anonymise your data so that it no longer identifies you.

7. Security measures

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, loss or destruction. These measures include:

• Use of HTTPS and encryption in transit for all pages and form submissions to prevent mixed content and to protect data in transmission.
• Restriction of access to personal data to authorised personnel who need it for the purposes described in this policy.
• Secure storage and handling of data, including where applicable encryption at rest and secure disposal of data when no longer needed.
• Regular review of our security practices and, where we use third-party processors, selection of providers that offer adequate guarantees and contractual commitments to protect personal data.

While we strive to protect your data, no method of transmission or storage over the internet is completely secure. We encourage you to use strong passwords and to protect your account and device.

8. Sharing and recipients of personal data

We may share your personal data with:

• Service providers: Payment processors, shipping and logistics partners, email and hosting providers, and analytics or cookie providers, only to the extent necessary to provide our services and in accordance with our instructions and applicable law.
• Legal and regulatory bodies: When required by law, court order, or to protect our rights, safety or property.

We do not sell your personal data. Where we use processors outside the European Economic Area or Australia, we ensure appropriate safeguards (e.g. standard contractual clauses, adequacy decisions) as required by applicable law.

9. Your rights

Depending on your location and applicable law, you may have the following rights:

• Access (GDPR Art. 15; APP 12): To obtain confirmation as to whether we process your personal data and, where that is the case, access to that data and certain information about the processing.
• Rectification (GDPR Art. 16): To have inaccurate personal data corrected or completed.
• Erasure (GDPR Art. 17; "right to be forgotten"): To have your personal data erased in certain circumstances (e.g. where it is no longer necessary, or you withdraw consent where consent was the basis).
• Restriction of processing (GDPR Art. 18): To request that we restrict processing in certain situations (e.g. while we verify accuracy or where you object to processing).
• Data portability (GDPR Art. 20): To receive your personal data in a structured, commonly used and machine-readable format and to transmit those data to another controller where technically feasible and the processing is based on consent or contract.
• Objection (GDPR Art. 21): To object to processing based on legitimate interests or to processing for direct marketing at any time.
• Withdraw consent: Where processing is based on consent, to withdraw consent at any time.
• Complaint: To lodge a complaint with a supervisory authority. In the EU, you may contact the data protection authority in your country. In Australia, you may contact the Office of the Australian Information Commissioner (OAIC).

To exercise any of these rights, please contact us using the details in section 1. We will respond within the timeframes required by applicable law (e.g. one month under the GDPR, subject to extensions where permitted).

10. Children

Our Website and services are not directed at children under 16. We do not knowingly collect personal data from children under 16. If you believe we have collected data from a child under 16, please contact us and we will take steps to delete such information.

11. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, the Website, or legal requirements. The "Last updated" date at the top will be revised when we make material changes. We encourage you to review this page periodically. Where required by law, we will seek your consent or notify you of significant changes before they take effect.

12. Additional information for Australian users

Under the Privacy Act 1988 (Cth) and the APPs, you have rights to know how we manage your personal information, to request access and correction, and to complain to us or to the OAIC. Our collection, use and disclosure of personal information is intended to comply with the APPs. Our full contact details are set out in section 1.