Privacy Policy
This Privacy Policy ("Policy") describes in detail how Suppliertrend ("we", "us", "our") collects, uses, stores, discloses, and protects your personal data when you access or use the website suppliertrend.world, including all subpages, our daily skincare guides, skincare tips, information about our skincare products (including the Gentle Daily Cleanser, Nourishing Face Serum, and Daily Moisturiser SPF 20), contact forms, and any other services or features we offer. We are committed to transparency, fairness, and full compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) and the German Federal Data Protection Act (Bundesdatenschutzgesetz – BDSG) where applicable. This Policy applies to all visitors and users of our website and services, regardless of their place of residence or establishment.
Data Controller and Contact
The data controller responsible for the processing of your personal data in connection with this website and all skincare-related services is Suppliertrend. Our registered business address is Reinhardtstraße 15, 10117 Berlin, Germany. As the data controller, we determine the purposes and means of the processing of your personal data. For any questions, requests, or complaints regarding this Privacy Policy, your personal data, or the exercise of your rights, you may contact us in writing at the address above, or via the contact form available on our website. We aim to respond to all legitimate requests within the timeframes required by applicable law (typically one month under the GDPR, which may be extended where necessary). You may also contact the relevant supervisory authority for data protection in your country or region; for Germany, the competent authority is the Berlin Commissioner for Data Protection and Freedom of Information (Berliner Beauftragte für Datenschutz und Informationsfreiheit).
Personal Data We Collect
We may collect and process the following categories of personal data in connection with our website, daily skincare guides, skincare tips, and product-related services. The amount and type of data we collect depend on how you interact with us and which services you use.
- Contact and identification data: This includes your name, email address, and any other contact details you voluntarily provide when you submit an enquiry through our contact form, request information about our skincare products (such as our Gentle Daily Cleanser, Nourishing Face Serum, or Daily Moisturiser SPF 20), ask about product availability or pricing, request advice on skincare routines or product suitability for your skin type, or sign up to receive updates, newsletters, or marketing communications about our guides and product offerings. We collect this data only when you provide it voluntarily.
- Communication data: This includes the content of your messages, enquiries, and correspondence sent to us via the contact form, email, or any other channel we make available. It may include questions about daily skincare habits, skincare routines, product ingredients, ordering information, shipping, or returns. We process this data to respond to your enquiries, provide customer support, and maintain a record of our communications where necessary for the performance of a contract, our legitimate interests, or legal obligations.
- Technical and usage data: This includes information about how you access and use our website, such as your IP address, browser type and version, device type and operating system, screen resolution, referring URL, pages visited, date and time of access, duration of visits, click streams, and similar usage data. This information may be collected automatically through cookies, log files, and similar technologies as described in our Cookies policy. We use this data to operate and secure our website, analyse trends, improve user experience, and troubleshoot technical issues. Where possible, we use aggregated or anonymised data for analytical purposes.
- Consent and preference data: Where you have given consent or expressed preferences (for example, in relation to cookies, marketing communications, or the processing of your personal data for specific purposes), we record your choices to ensure we comply with your wishes and to demonstrate our compliance with applicable law.
How We Use Your Data
We use your personal data only for specified, explicit, and legitimate purposes. We do not process your data in a manner that is incompatible with those purposes. The main purposes for which we use your personal data are set out below. Each purpose is carried out only where we have a valid lawful basis under applicable data protection law (see the section "Lawful Basis for Processing" below).
- To respond to your enquiries and provide customer support: When you contact us with questions about our daily skincare guides, skincare tips, or our product range, we use your contact and communication data to reply to you, provide the information or assistance you have requested, and follow up where necessary. This may include answering questions about product ingredients, suitability for different skin types, application methods, availability, pricing, or delivery options.
- To process and manage product-related requests and orders: Where you request information about purchasing our skincare products, place an order, or ask about availability or shipping, we use your data to process your request, manage the transaction, arrange delivery, and handle any related customer service. This may involve sharing data with payment processors, shipping providers, or other service providers necessary to fulfil your order, in each case subject to appropriate contractual and legal safeguards.
- To improve our website, content, and services: We analyse usage data (often in aggregated or anonymised form) to understand how visitors use our website, which pages or guides are most popular, and where we can improve content, navigation, or functionality. This helps us enhance the quality and relevance of our daily skincare guides, skincare tips, and product descriptions, and to fix technical issues.
- To send you updates and marketing communications: Where you have given your consent, we may send you newsletters, updates about new content or products, or other marketing communications. You may withdraw your consent or opt out at any time by contacting us or using the unsubscribe link in any marketing email. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
- To comply with legal and regulatory obligations: We may process your personal data where necessary to comply with applicable laws, regulations, court orders, or requests from public authorities, including tax, accounting, and reporting obligations, and to establish, exercise, or defend legal claims.
- To protect our rights and ensure security: We may use your data to protect the security and integrity of our website and systems, to detect and prevent fraud or abuse, and to enforce our Terms of Use and other policies.
Lawful Basis for Processing
Under the GDPR and other applicable data protection laws, we process your personal data only where we have a lawful basis. The lawful bases we rely on include the following: (a) Consent: Where you have given clear, specific, and informed consent for one or more specific purposes (e.g. non-essential cookies, marketing emails). You may withdraw consent at any time. (b) Contract: Where processing is necessary for the performance of a contract to which you are a party, or to take steps at your request prior to entering into a contract (e.g. processing your order, responding to a pre-purchase enquiry about our skincare products). (c) Legal obligation: Where processing is necessary for compliance with a legal obligation to which we are subject (e.g. tax, accounting, or regulatory reporting). (d) Legitimate interests: Where processing is necessary for the purposes of our legitimate interests or those of a third party, except where such interests are overridden by your interests or fundamental rights and freedoms. Our legitimate interests include operating and improving our website and services, providing customer support, analysing usage to improve our skincare guides and product information, ensuring security, and communicating with you about your enquiries. We balance these interests against your rights and will not process your data where your interests override ours. (e) Vital interests: In exceptional circumstances, we may process data where necessary to protect the vital interests of you or another person. We will inform you of the relevant lawful basis for each processing activity where required by law, and you may contact us at any time for clarification.
Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy any legal, accounting, regulatory, or reporting requirements. Retention periods depend on the type of data and the purpose of processing. Contact form submissions and correspondence related to enquiries about our skincare guides or products are generally retained for the period necessary to handle your enquiry and any follow-up (typically up to three years from the last meaningful contact, unless a longer period is required for legal or regulatory reasons). Where you have placed an order, we retain order and customer data for the period required by tax and commercial law (in Germany, typically ten years for certain accounting and tax records). Technical and usage data from cookies and log files may be retained for a shorter period (e.g. a few months) for security and analytics; where we use aggregated or anonymised data, it may be retained for longer as it no longer constitutes personal data. After the retention period has expired, we securely delete or anonymise your personal data so that it can no longer be attributed to you. You may request erasure of your data earlier where we are not legally required to retain it (see "Your Rights" below).
Sharing and Disclosure
We do not sell, rent, or trade your personal data to third parties for their marketing purposes. We may share your personal data only in the following circumstances and subject to appropriate safeguards: (i) Service providers and processors: We may share your data with carefully selected service providers who assist us in operating our website and delivering our services, such as hosting providers, email delivery services, analytics providers, payment processors, and shipping or logistics partners. These providers act as data processors on our behalf and are contractually bound to process your data only in accordance with our instructions and applicable law, and to implement appropriate technical and organisational measures to protect your data. We remain responsible for the processing carried out by our processors. (ii) Professional advisers: We may disclose your data to our legal, accounting, or other professional advisers where necessary for the provision of their services to us, subject to obligations of confidentiality. (iii) Law enforcement and public authorities: We may disclose your data to law enforcement agencies, courts, or other public authorities when required by applicable law, regulation, court order, or governmental request, or where we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others, or to detect or prevent fraud or illegal activity. (iv) Business transfers: In the event of a merger, acquisition, reorganisation, or sale of assets, your personal data may be transferred to the successor or assignee, subject to the same privacy protections. Any transfer of your personal data outside the European Economic Area (EEA) will be made only where the European Commission has decided that the third country ensures an adequate level of protection, or where we have put in place appropriate safeguards (such as standard contractual clauses approved by the European Commission or binding corporate rules) and you have enforceable rights and effective legal remedies. You may request a copy of the safeguards we use for such transfers by contacting us.
Your Rights
Depending on your place of residence and applicable law, you may have the following rights in relation to your personal data. These rights are available in particular to data subjects in the European Union and the European Economic Area under the GDPR, and may also apply in other jurisdictions. Right of access: You have the right to obtain from us confirmation as to whether or not we process your personal data, and, where we do, access to that data together with certain information about the processing (purposes, categories of data, recipients, retention, etc.). We may provide a copy of your data in a commonly used electronic format where technically feasible. Right to rectification: You have the right to have inaccurate or incomplete personal data concerning you corrected or completed without undue delay. Right to erasure ("right to be forgotten"): You have the right to request the erasure of your personal data in certain circumstances, for example where the data is no longer necessary for the purposes for which it was collected, where you have withdrawn consent (and there is no other lawful basis), where the data has been unlawfully processed, or where erasure is required to comply with a legal obligation. This right is not absolute; we may be required or permitted to retain certain data for legal reasons. Right to restriction of processing: You have the right to request that we restrict the processing of your data in certain situations, for example where you contest the accuracy of the data, where the processing is unlawful but you prefer restriction to erasure, or where we no longer need the data but you need it for the establishment, exercise, or defence of legal claims. Right to data portability: Where the processing is based on consent or contract and is carried out by automated means, you have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format, and to transmit that data to another controller where technically feasible. Right to object: You have the right to object at any time to processing of your personal data that is based on legitimate interests or on the performance of a task in the public interest. We will cease processing unless we demonstrate compelling legitimate grounds that override your interests, or for the establishment, exercise, or defence of legal claims. You also have the right to object at any time to processing of your data for direct marketing purposes; in that case we will cease such processing. Right to withdraw consent: Where processing is based on your consent, you have the right to withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing based on consent before its withdrawal. Right to lodge a complaint: You have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement. In Germany, the competent authority is the Berlin Commissioner for Data Protection and Freedom of Information. To exercise any of these rights, please contact us using the details provided in this Policy. We will respond within the timeframes required by applicable law (generally one month under the GDPR). We may need to verify your identity before processing your request. If you are not satisfied with our response, you may lodge a complaint with the relevant supervisory authority.
Security
We implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk posed to your personal data, including protection against unauthorised or unlawful processing, accidental loss, destruction, or damage. Such measures may include: the use of encryption (e.g. TLS/SSL for data in transit) where appropriate; secure access controls and authentication; limitation of access to personal data on a need-to-know basis; regular review of our security practices and, where applicable, the security practices of our processors; and staff training on data protection and confidentiality. Despite our efforts, no method of transmission over the Internet or method of electronic storage is completely secure. We cannot guarantee the absolute security of your data and you acknowledge that you provide your data at your own risk. In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify the relevant supervisory authority and, where required by law, you without undue delay.
Children
Our website and services are not directed at children under the age of 16 (or such other age as may apply in your jurisdiction). We do not knowingly collect personal data from children. If you are a parent or guardian and believe that your child has provided us with personal data without your consent, please contact us and we will take steps to delete such information from our systems in accordance with applicable law.
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, the services we offer, the products we sell (including our skincare product range), technology, or legal or regulatory requirements. When we make material changes, we will post the updated Policy on this page and update the "Last updated" or revision date at the top. We may also notify you by email or through a prominent notice on our website where required by law or where we consider the change to be significant. We encourage you to review this Policy periodically to stay informed about how we protect your data. Your continued use of our website or services after the posting of changes constitutes your acceptance of the revised Policy to the extent permitted by law. If you do not agree with the changes, you should discontinue use of our website and contact us regarding your data.
Contact
For any questions, requests, or complaints about this Privacy Policy or our processing of your personal data in connection with our website, daily skincare guides, skincare tips, or skincare products, please contact Suppliertrend at Reinhardtstraße 15, 10117 Berlin, Germany. You may also use the contact form on our website. We will respond to your request as soon as reasonably possible and in any event within the timeframes required by applicable law.
customer@suppliertrend.world