Privacy Policy

Privacy Policy

Overview of Data Protection

General Information The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data refers to any data that can personally identify you. Detailed information on data protection can be found in the privacy policy below.

Data Collection on This Website

Who is responsible for data collection on this website? Data processing on this website is carried out by the website operator. The operator’s contact details can be found in the section "Responsible Party Information" in this privacy policy.

How do we collect your data? Your data is collected in two ways:

  1. You provide it to us (e.g., via a contact form).

  2. It is automatically collected or with your consent when visiting the website through our IT systems. This primarily includes technical data (e.g., internet browser, operating system, time of page visit). This data is collected automatically when you visit the website.

What do we use your data for? Some data is collected to ensure the error-free provision of the website. Other data may be used to analyze your user behavior.

What rights do you have regarding your data? You have the right to request information about the origin, recipient, and purpose of your stored personal data at any time free of charge. You also have the right to request the correction or deletion of this data. If you have consented to data processing, you may withdraw this consent at any time. Additionally, under certain circumstances, you have the right to request the restriction of processing of your personal data. Furthermore, you have the right to file a complaint with the relevant supervisory authority.

For these and other questions regarding data protection, you may contact us at any time.

Analytics and Third-Party Tools

When visiting this website, your browsing behavior may be statistically analyzed. This is done primarily with analytics programs.

Detailed information about these analytics programs can be found in the following privacy policy.

Hosting

We host our website content with:

Shopify Our provider is Shopify International Limited, Victoria Buildings, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland (hereinafter referred to as “Shopify”).

Shopify provides website hosting and analytics tools. When you visit our website, Shopify collects your IP address, device information, and browser details. Additionally, visitor numbers, sources, and customer behavior are analyzed. If you make a purchase, Shopify also collects details such as your name, email, billing and shipping address, payment details, and other relevant purchase information (e.g., phone number, order amount, etc.). Shopify uses cookies for analytics.

Details can be found in Shopify’s privacy policy: https://www.shopify.com/legal/privacy.

The use of Shopify is based on Art. 6(1)(f) GDPR. We have a legitimate interest in ensuring a reliable presentation of our website. If consent has been obtained, processing is based solely on Art. 6(1)(a) GDPR and § 25(1) TTDSG, provided consent includes cookie storage or device access (e.g., device fingerprinting) as defined by TTDSG. Consent can be withdrawn at any time.

General Information and Mandatory Disclosures

Data Protection We take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with legal data protection regulations and this privacy policy.

When you use this website, various personal data are collected. This privacy policy explains what data we collect, how we use it, and for what purpose.

We point out that data transmission on the internet (e.g., email communication) can have security gaps. Complete protection of data against third-party access is not possible.

Responsible Party Information The responsible entity for data processing on this website is:

Hypestore (Omicron Asset Management EOOD)
Bulgaria, Sofia, ul. Dunav 70
Email: support@hype-store.eu

The responsible entity is the natural or legal person who, alone or jointly with others, determines the purposes and means of processing personal data (e.g., names, email addresses, etc.).

Storage Duration

Unless a specific storage duration is mentioned in this privacy policy, your personal data remains with us until the purpose for data processing ceases. If you request deletion or withdraw your consent to data processing, your data will be deleted unless legally permissible retention reasons exist (e.g., tax or commercial retention periods). In the latter case, deletion occurs after the legal retention periods expire.

General Legal Bases for Data Processing

If you have consented to data processing, we process your personal data based on Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR (for special data categories). If personal data is transferred to third countries based on your explicit consent, processing is also based on Art. 49(1)(a) GDPR. If your data is necessary for contract fulfillment or pre-contractual measures, we process it under Art. 6(1)(b) GDPR. If processing is required for legal obligations, we process it under Art. 6(1)(c) GDPR. Additional processing may be based on our legitimate interest per Art. 6(1)(f) GDPR.

Recipients of Personal Data In our business operations, we collaborate with various external entities. Personal data is only shared if required for contract fulfillment, legally mandated (e.g., tax authorities), justified by legitimate interests under Art. 6(1)(f) GDPR, or otherwise legally permitted. In cases where data processors are involved, data is shared only based on valid data processing agreements.

Revocation of Your Consent to Data Processing

Many data processing activities require your explicit consent. You can withdraw your consent at any time. The legality of data processing conducted before the withdrawal remains unaffected.

Right to Object to Data Processing in Special Cases and Direct Marketing (Art. 21 GDPR)

If data processing is based on Art. 6(1)(e) or (f) GDPR, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation. This also applies to profiling based on these provisions.

If you object, we will cease processing your data unless compelling legitimate grounds exist that override your interests, rights, and freedoms, or if processing serves the establishment, exercise, or defense of legal claims.

If your data is processed for direct marketing, you have the right to object at any time. If you object, your personal data will no longer be used for direct marketing purposes.

Right to File Complaints with Supervisory Authorities In case of GDPR violations, affected individuals have the right to file a complaint with a supervisory authority, particularly in their place of residence, workplace, or the location of the alleged violation. This right applies without prejudice to other administrative or judicial remedies.

SSL and TLS Encryption

For security reasons and to protect the transmission of confidential data, such as orders or inquiries, this site uses SSL or TLS encryption. You can recognize an encrypted connection when the address bar in your browser changes from “http://” to “https://” and displays a lock icon.

When SSL or TLS encryption is activated, data you transmit cannot be read by third parties.

Encrypted Payment Transactions on This Website

If you are required to provide payment information after concluding a paid contract, these details will be used solely for payment processing.

Payments via common methods (Visa/MasterCard, direct debit) occur only over encrypted SSL or TLS connections. You can recognize an encrypted connection when the address bar in your browser changes from “http://” to “https://” and displays a lock icon.

With encrypted communication, your payment data cannot be read by third parties.

 

Payment Services

We integrate third-party payment services on our website. When you make a purchase, your payment data (e.g., name, payment amount, account details, credit card number) is processed by the respective payment provider. These transactions are subject to the terms and privacy policies of the respective providers. The use of these payment providers is based on Art. 6(1)(b) GDPR (contract fulfillment) and our legitimate interest in ensuring a smooth, convenient, and secure payment process (Art. 6(1)(f) GDPR). Where required, processing is based on your consent (Art. 6(1)(a) GDPR), which you may withdraw at any time.

The following payment providers are used on this website:

PayPal
Provider: PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg.
Privacy Policy: https://www.paypal.com/webapps/mpp/ua/privacy-full

Stripe
Provider: Stripe, Inc., 510 Townsend Street, San Francisco, CA 94103, USA.
Privacy Policy: https://stripe.com/privacy

Visa
Provider: Visa Europe Services Inc., 1 Sheldon Square, London W2 6TT, United Kingdom.
Privacy Policy: https://www.visa.com/legal/privacy-policy.html

Mastercard
Provider: Mastercard Europe SA, Chaussée de Tervuren 198A, B-1410 Waterloo, Belgium.
Privacy Policy: https://www.mastercard.us/en-us/about-mastercard/what-we-do/privacy.html

These payment providers may process and store personal data outside the EU. For data transfers, appropriate safeguards such as standard contractual clauses are applied.

This privacy policy applies to Hypestore (Omicron Asset Management EOOD). If you have any questions or concerns, feel free to contact us using the information provided above.