Privacy Policy
Scope
This Privacy Policy explains how Vlozarinxim processes personal data when you visit our website, submit forms, or communicate with us. It applies in line with the General Data Protection Regulation (EU) 2016/679 (GDPR) and, where relevant, other applicable data protection laws.
Geographic scope
Our business is operated from Stuttgart, Germany. This website is primarily aimed at visitors and customers in the European Economic Area. If you access the site from other regions, we still apply this Policy where GDPR applies and use appropriate safeguards for any transfers as described below.
Topic of the website
The site presents general information about a food supplement sold as Navirio. We do not use personal data to infer health conditions or to target advertising based on sensitive health categories. Marketing activities, where used, are limited to product and shop-related messages in line with platform rules and consent where required.
Data we process
Depending on your interaction, we may process: identity and contact data (name, email address, telephone number if provided), message content you send, technical data such as IP address, browser type, device information, and time of access, and cookie data as described in our Cookie Policy.
Purposes and legal bases
We process data to respond to enquiries and order requests (Art. 6(1)(b) GDPR for steps prior to a contract, or Art. 6(1)(f) for general correspondence), to operate and secure the website (Art. 6(1)(f) legitimate interests in secure operation), to meet legal obligations such as tax and commercial record-keeping where applicable (Art. 6(1)(c)), and, where you give consent, for optional analytics or marketing cookies (Art. 6(1)(a)). Where we run online advertising (for example search or display campaigns), we use only data that platforms and our cookie settings allow, and we do not use special categories of personal data for targeting.
Retention
Contact and enquiry records are kept only as long as needed to complete the request and for any follow-up, typically up to twenty-four months unless a longer period is required by law. Server logs are kept for a limited period required for security monitoring. Cookie retention periods are listed in the Cookie Policy.
Recipients and transfers
We use service providers for hosting, email delivery, and similar technical services under strict data processing agreements where required. If data is transferred outside the European Economic Area, we rely on appropriate safeguards such as Standard Contractual Clauses where applicable.
Your rights
Under the GDPR you may request access, rectification, erasure, restriction of processing, data portability, and object to processing based on legitimate interests. Where processing is based on consent, you may withdraw consent at any time without affecting prior lawful processing. You may lodge a complaint with a supervisory authority, for example the competent authority in your Member State.
Security
We apply technical and organisational measures appropriate to the risk, including access restrictions, encryption where suitable, and procedures to ensure ongoing confidentiality and availability.
Contact
For privacy requests, contact us using the email addresses shown in the site footer or by post at the address above. Please describe your request clearly so we can verify and respond within statutory timelines.