Privacy policy

Privacy Policy

Scandinavian Pen Peptide

1. Introduction

The protection of your personal data is an absolute priority for Scandinavian Pen Peptide. This privacy policy explains how we collect, process, store and protect your personal data when you use our website or contact us.

By using this website, you agree to the practices described below, in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws. Our internal processes are regularly reviewed and updated in line with current legal and technical standards.

2. Data Controller

The data controller is:

KK INTER 26 EOOD Registration number BG208694906 25, Tsanko Tserkovski Boulevard, Lozenets district Sofia 1164, Bulgaria

📧 Email: scandinavianpenpeptide@protonmail.com

As data controller, KK INTER 26 EOOD determines the purposes and means of processing personal data related to the use of this website.

3. Types of Data Collected

We may process the following categories of personal data:

Identity and contact data: name, email address, phone number, billing and delivery address Transaction data: order information and payment status (payment data is processed exclusively by certified payment providers and is not stored by us) Technical data: IP address, browser type, device characteristics, operating system, referring URL, pages visited and visit duration (via cookies and analytics tools) Communication data: content of requests submitted via form, email or any other means of contact Marketing preferences: consents to receive information or communications

We do not collect sensitive personal data such as health data or national identification numbers.

4. Purposes and Legal Bases for Processing

Your personal data is processed for the following purposes:

  • Processing and dispatching orders
  • Responding to enquiries and communicating with customers
  • Improving website functionality and usability
  • Analysing website usage to optimise our services
  • Compliance with legal obligations
  • Enforcement of our terms and conditions
  • Prevention of fraud, abuse or security incidents

Processing is based on one or more of the following legal bases:

  • Performance of a contract (Art. 6(1)(b) GDPR)
  • Legal obligation (Art. 6(1)(c) GDPR)
  • Consent (Art. 6(1)(a) GDPR)
  • Legitimate interest (Art. 6(1)(f) GDPR), in particular for security and analytics

5. Data Sharing

We do not sell or rent your personal data.

Data is only shared with carefully selected and trusted service providers, including:

  • Payment providers
  • Shipping and logistics companies (e.g. DHL Express)
  • IT and hosting providers
  • Analytics and statistics services
  • Competent authorities, where required by law

All recipients are contractually bound to confidentiality and must maintain appropriate security measures.

6. Transfer of Data to Third Countries

Where service providers are established outside the European Economic Area (EEA), transfers of personal data take place only with appropriate safeguards in place, including through EU Standard Contractual Clauses (SCCs) or equivalent GDPR-compliant protection mechanisms.

7. Retention Period

Personal data is retained only for as long as necessary for the purposes for which it was collected, or for as long as required by legal retention obligations.

Upon expiry of the processing purpose, data is deleted or anonymised.

8. Data Security

We implement appropriate technical and organisational measures to protect your data, including:

  • SSL/TLS encryption
  • Secure servers and firewalls
  • Access restricted to authorised personnel
  • No local storage of sensitive payment data

Despite these measures, absolute security cannot be guaranteed. We accept no liability for security incidents beyond our control.

9. Your Rights

Under the GDPR, you have the following rights:

  • Right of access to your data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restriction of processing
  • Right to object to processing
  • Right to withdraw consent
  • Right to data portability (where applicable)
  • Right to lodge a complaint with a supervisory authority

To exercise your rights, please contact us at: 📧 scandinavianpenpeptide@protonmail.com

10. Cookies

Our website uses cookies to ensure basic functionality, improve the user experience and carry out statistical analysis.

We use in particular:

  • Necessary cookies (e.g. security, shopping cart)
  • Analytical cookies (e.g. usage statistics)
  • Marketing cookies (e.g. audience measurement)

You can manage or disable cookies through your browser settings. Please note that certain features may be limited as a result.

11. Protection of Minors

This website is intended exclusively for persons aged 18 and over. We do not knowingly collect data relating to minors. Should such data be identified, it will be deleted immediately.

By placing an order, you confirm that you are at least 18 years of age.

12. Changes to the Privacy Policy

We reserve the right to modify this policy at any time. The current version is available on this page. We recommend that you consult it regularly.

13. Contact

For any questions relating to data protection or the processing of your personal data, please contact us at:

📧 scandinavianpenpeptide@protonmail.com