Privacy Policy - Tooluxe Home

Privacy Policy

How we collect, use, and protect your personal data

Last Updated: September 10, 2025
Effective Date: September 10, 2025

1. Company Information

Data Controller: Tooluxe Home SRL

Registration Number: J40/12345/2023

VAT Number: RO45123456

Registered Address: Calea Vitan 225, București 077085, Romania

Website: tooluxehome.shop

Contact Email: support@tooluxehome.shop

Phone: +40 721 345 678

Data Protection Officer (DPO)

Email: dpo@tooluxehome.shop

You can contact our DPO regarding any questions about data processing or your privacy rights.

2. Personal Data We Collect

Data Type Purpose Legal Basis
Name, Email, Phone Order processing, customer service Contract performance
Billing/Shipping Address Order fulfillment, invoicing Contract performance
Payment Information Transaction processing Contract performance
IP Address, Browser Info Security, analytics Legitimate interest
Purchase History Customer service, recommendations Legitimate interest
Marketing Preferences Email marketing (optional) Consent

Automatically Collected Information

  • Technical Data: IP address, browser type, device information
  • Usage Data: Pages visited, time spent, click patterns
  • Location Data: Country/city based on IP address
  • Cookies: See our Cookie Policy for detailed information

3. How We Use Your Data

Essential Business Purposes

  • Processing and fulfilling your orders
  • Payment processing and fraud prevention
  • Customer service and support
  • Legal compliance (tax, accounting records)
  • Warranty and returns management

Legitimate Business Interests

  • Website security and fraud prevention
  • Analytics and website improvement
  • Product recommendations
  • Business operations and administration

With Your Consent

  • Email marketing and newsletters
  • Personalized advertising
  • Social media integration
  • Customer feedback surveys

4. Data Sharing and Disclosure

Service Providers

We share data with trusted third-party service providers who help us operate our business:

  • Payment Processors: PayPal, Stripe, bank payment gateways
  • Shipping Partners: Fan Courier, DHL, UPS, DPD
  • Email Services: For order confirmations and customer communications
  • Cloud Hosting: Secure data storage and website hosting
  • Analytics: Google Analytics (anonymized data only)

Legal Requirements

We may disclose your data when required by Romanian or EU law:

  • Tax authorities (ANAF) for invoice and transaction records
  • Law enforcement agencies with valid legal requests
  • Regulatory bodies for compliance investigations
  • Courts in legal proceedings

International Transfers

Some of our service providers are located outside the EU. We ensure adequate protection through:

  • EU Commission adequacy decisions
  • Standard Contractual Clauses (SCCs)
  • Certified data protection frameworks

5. Data Retention

Data Category Retention Period Reason
Order & Payment Data 10 years Romanian accounting law requirements
Customer Communication 3 years Customer service and dispute resolution
Marketing Data Until consent withdrawn Marketing communications
Website Analytics 26 months Google Analytics default retention
Security Logs 2 years Security monitoring and fraud prevention

6. Your Privacy Rights (GDPR)

🔍 Right of Access

Request a copy of all personal data we hold about you, including how it's used and shared.

✏️ Right to Rectification

Request correction of inaccurate or incomplete personal data.

🗑️ Right to Erasure

Request deletion of your personal data (subject to legal retention requirements).

⏸️ Right to Restrict Processing

Limit how we process your data in certain circumstances.

📄 Right to Data Portability

Receive your data in a structured, machine-readable format.

🚫 Right to Object

Object to processing based on legitimate interests or for marketing purposes.

🤖 Rights Related to Automated Decision-Making

Not be subject to decisions based solely on automated processing.

How to Exercise Your Rights

Contact us at dpo@tooluxehome.shop or support@tooluxehome.shop

Response Time: We will respond within 30 days (extendable to 90 days for complex requests)

Verification: We may need to verify your identity before processing requests

No Cost: Exercising your rights is free of charge

7. Data Security

Technical Safeguards

  • SSL/TLS Encryption: All data transmission is encrypted
  • Secure Hosting: Data stored in secure, EU-based data centers
  • Access Controls: Restricted access on need-to-know basis
  • Regular Backups: Secure data backup and recovery procedures
  • Security Monitoring: 24/7 monitoring for security threats

Organizational Measures

  • Staff training on data protection requirements
  • Regular security audits and assessments
  • Data breach response procedures
  • Vendor security requirements and assessments

Data Breach Notification

In case of a data breach that may affect your rights and freedoms:

  • We will notify the Romanian supervisory authority within 72 hours
  • We will notify affected individuals without undue delay
  • We will provide clear information about the breach and recommended actions

8. Cookies and Tracking

We use cookies and similar technologies to improve your browsing experience. For detailed information about our use of cookies, please see our Cookie Policy.

Essential Cookies

Required for basic website functionality (shopping cart, checkout, security)

Analytics Cookies

Help us understand how visitors use our website (Google Analytics with IP anonymization)

Marketing Cookies

Used for personalized advertising (only with your consent)

9. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal data from children under 16. If you are a parent or guardian and believe your child has provided personal data to us, please contact us immediately.

If we discover that a child under 16 has provided personal data, we will delete such information promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements.

  • Notification: We will notify you of significant changes via email or website notice
  • Effective Date: Changes become effective 30 days after notification
  • Your Options: If you disagree with changes, you may close your account
  • Version History: Previous versions available upon request

📞 Contact Us About Privacy

Data Protection Officer: dpo@tooluxehome.shop

General Inquiries: support@tooluxehome.shop

Phone: +40 721 345 678

Address: Tooluxe Home SRL, Calea Vitan 225, București 077085, Romania

Supervisory Authority

You have the right to lodge a complaint with the Romanian supervisory authority:

ANSPDCP (Romanian Data Protection Authority)

Website: www.dataprotection.ro

Tooluxe Home SRL | VAT: RO45123456 | EU Registered Business

GDPR Compliant | Privacy by Design | Data Protection Certified

Tooluxe Home Footer

© 2024 Tooluxe Home SRL - All Rights Reserved

Website: tooluxehome.shop

All prices include VAT | Registered in Romania

Scroll to Top