Privacy policy

Privacy Policy of the Online Store

1. General Information

1.1. This Privacy Policy defines the rules for processing and protecting personal data in connection with the operation of the Aroma Premium online store, available at www.aromapremium.eu.

1.2. The Data Controller for personal data processed within the Store's operations is:

AW Nexus Group Agnieszka Wyrozumska
ul. Olimpijska 2, 81-538 Gdynia, Poland
NIP: 5881771302
REGON: 220502027
E-mail: kontakt@aromapremium.eu
Phone: (0048) 786 686 068

1.3. The Controller takes special care to protect the privacy and personal data of Users, applying appropriate technical and organizational safeguards in compliance with GDPR and national regulations.

2. Scope and Purpose of Personal Data Processing

2.1. Users' personal data is processed for the following purposes:

  • Fulfilling orders and providing services available in the Store (Article 6(1)(b) GDPR),
  • Handling inquiries and customer support related to the Store’s offerings (Article 6(1)(b) or (a) GDPR),
  • Conducting marketing activities, including advertising on social media and email marketing, based on given consents (Article 6(1)(a) GDPR),
  • Using analytical tools such as Google Analytics to monitor and analyze website traffic (Article 6(1)(f) GDPR),
  • Fulfilling legal obligations, such as tax and accounting requirements (Article 6(1)(c) GDPR),
  • Protecting the Controller’s legitimate interests, such as establishing, asserting, or defending claims (Article 6(1)(f) GDPR).

3. Types of Collected Personal Data

3.1. The Store may collect the following categories of personal data:

  • Contact details (name, surname, email address, phone number),
  • Address details (shipping address),
  • Identification data (company name, VAT ID) in the case of business customers,
  • Transaction and order details,
  • Purchase history,
  • Technical data (IP address, cookies, browsing activity),
  • Social media interactions and advertising activity, as permitted by social media platforms' policies.

4. Social Media Data Processing

4.1. The Controller runs advertising campaigns on social media platforms such as Facebook, Instagram, TikTok, Messenger, WhatsApp, and Google Analytics.

4.2. The Controller may use tracking tools provided by advertising platforms (e.g., Facebook Pixel) to collect data about User activity on the website and interactions with social media ads. This data is used for:

  • User profiling to tailor advertising content,
  • Analyzing advertising campaign effectiveness,
  • Remarketing, displaying ads to users who visited the Store.

4.3. The Controller is not responsible for the privacy policies of external platforms such as Facebook, Instagram, TikTok, WhatsApp, and Google, and encourages Users to review their respective privacy policies.

4.4. The Controller may process aggregated interaction data from ads and content in social media. However, this data is processed in a non-identifiable form.

4.5. The Controller is not responsible for data processed independently by these platforms. More information can be found in the privacy policies of these entities (Google, Meta/Facebook, TikTok).

5. Marketing Communication and Newsletter

5.1. Consent to Marketing Communication

If you give your consent, we will send you information about news, promotions, and special offers related to Aroma Premium via email.

5.2. Withdrawal of Consent

You may withdraw your consent to receive marketing messages at any time by clicking the unsubscribe link in the footer of any email or by contacting us at kontakt@aromapremium.eu.

5.3. Processing of Personal Data for Marketing Purposes

Your personal data is processed in compliance with applicable data protection regulations. The data is used exclusively for marketing communication and is not shared with third parties without your consent, unless required by law.

6. Cookies and External Tools

6.1. Our website uses cookies and similar technologies to ensure proper store functionality and analyze user behavior.

6.2. Types of Cookies Used

  • Essential cookies – necessary for store operation (e.g., session cookies, security cookies).
  • Functional cookies – remembering user preferences (e.g., language, location).
  • Analytical cookies – collecting data on website traffic (Google Analytics).
  • Marketing cookies – enabling personalized ads (Facebook Pixel, TikTok Pixel).

6.3. We use analytics and marketing tools that may collect user data, including:

  • Google Analytics – analyzes website traffic (data may be transferred to the USA),
  • Facebook Pixel, TikTok Pixel – used for remarketing and conversion tracking,
  • Ceneo – collects customer reviews.

6.4. Third-party cookies may be stored on the user's device by external services such as Shopify, Google, Facebook, TikTok, and Ceneo.

6.5. Managing Cookies – Users have the right to:

  • Accept or reject specific categories of cookies via the cookie banner,
  • Change browser settings to manage cookies,
  • Withdraw consent for analytical and marketing cookies at any time by contacting kontakt@aromapremium.eu.

7. Customer Reviews and Satisfaction Surveys

7.1. The Controller uses Ceneo to collect customer reviews and assess satisfaction with products and services.

7.2. As part of this cooperation, we may ask Users to leave a review or complete a survey about purchased products.

7.3. Ceneo processes data related to User activity on our website, including:

  • Visited pages,
  • Time spent on the site,
  • Clicks and service usage,
  • Viewed products,
  • Device and browser information (including location).

7.4. The Controller has a data processing agreement with Ceneo, ensuring no personal profiling occurs within this tool.

7.5. Users can withdraw consent to data processing via Ceneo at any time by contacting kontakt@aromapremium.eu.

8. Data Retention Period

8.1. Personal data is stored for the period necessary to fulfill its purpose, specifically:

  • Order-related data – until the contract is fulfilled and for accounting purposes (up to 5 years),
  • Data processed based on consent – until consent is withdrawn,
  • Marketing data – until an objection is raised,
  • Legitimate interest data – until the statute of limitations expires.

9. User Rights

9.1. Users have the right to:

  • Access their data,
  • Correct incorrect data,
  • Request deletion ("right to be forgotten"),
  • Restrict processing,
  • Transfer their data,
  • Object to marketing data processing,
  • Withdraw consent at any time.

9.2. Users can exercise their rights by contacting kontakt@aromapremium.eu.

10. Sharing Personal Data

10.1. The Controller only shares personal data when necessary, including with:

  • Courier and postal services (for order delivery),
  • IT service providers and payment processors,
  • Analytical and advertising tool providers (Google, Facebook),
  • Authorities as required by law.

11. Data Transfers Outside the EEA

11.1. Some services used may transfer data outside the European Economic Area (EEA), particularly to the USA, including:

  • Shopify (hosting and traffic analysis),
  • Google (Google Analytics, Google Ads),
  • Facebook (advertising and conversion tracking),
  • TikTok (marketing and analytics),
  • Ceneo (product reviews).

11.2. Data transfers follow Standard Contractual Clauses (SCC) approved by the European Commission.

12. Data Security

12.1. The Controller implements technical and organizational measures such as SSL encryption, secured servers, and restricted data access to prevent unauthorized access.

13. Changes to the Privacy Policy

13.1. The Controller reserves the right to update this Privacy Policy. Users will be informed via the Store's website or email.

14. Contact Information

For any questions, complaints, or requests regarding personal data processing, contact:

📩 E-mail: kontakt@aromapremium.eu
📞 Phone: (0048) 786 686 068

Users also have the right to file a complaint with the Polish Data Protection Authority (PUODO) if they believe their data is being processed unlawfully.