Privacy policy

1. Introduction

Thank you for visiting the chillobrand.com online store (“we”, “us”, “our”). We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our website and services, in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and applicable European Union and Polish data protection laws.

By using our website, you acknowledge that you have read and understood this Privacy Policy.

2. Data Controller

The controller of your personal data is:

chillobrand.com
E-mail: 

contacttochillo@gmail.com

3. Personal Data We Collect

Depending on how you use our website, we may collect the following personal data:

a) Identification and Contact Data

  • Name and surname

  • Email address

  • Phone number

b) Shipping and Billing Data

  • Delivery address

  • Billing address

  • Country, city, postal code

c) Payment Data

  • Transaction details

  • Payment method
    (Payment card details are processed directly by secure payment providers and are not stored by us.)

d) Account Data

  • Login

  • Encrypted password

  • Account preferences

e) Technical and Usage Data

  • IP address

  • Device type

  • Browser type

  • Operating system

  • Website activity

  • Cookies and similar technologies

f) Marketing and Analytics Data

  • Viewed products

  • Cart and abandoned cart data

  • Reactions to newsletters, advertisements, and promotions

  • Approximate location

  • Shopping preferences

g) Communication Data

  • Correspondence with us

  • Customer support requests

  • Complaints and inquiries

4. Sources of Data

We collect data from the following sources:

  • Directly from you (e.g., orders, account registration, newsletter signup)

  • Automatically through our website, cookies, and analytics tools

  • From payment operators and delivery companies

  • From marketing, analytics, and technology partners

  • From our e-commerce platform provider

5. Purposes of Processing

Your personal data may be used for the following purposes:

✔ 5.1 Providing and Operating the Store

  • Processing orders and payments

  • Delivering products

  • Managing user accounts

  • Handling returns only

  • Providing customer support

✔ 5.2 Marketing and Communication

  • Sending newsletters (email) and promotional messages

  • Sending SMS marketing and notifications (with your consent)

  • Sending discount codes and special offers

  • Running marketing campaigns and remarketing (including targeted advertisements)

  • Contacting users regarding abandoned carts

  • Personalizing emails, offers, and website content

✔ 5.3 Analytics and Improvement

  • Analyzing website traffic and user behavior

  • Improving products, services, and website performance

  • Creating sales and statistical reports

  • Optimizing advertising campaigns

✔ 5.4 Profiling

  • Personalizing product recommendations

  • Displaying targeted advertisements

  • Customizing marketing communications

Profiling does not produce legal effects or significantly affect the user.

✔ 5.5 Security and Legal Compliance

  • Preventing fraud, abuse, or other illegal activity

  • Ensuring website and payment security

  • Complying with legal and tax obligations

6. Legal Basis for Processing

We process personal data based on:

  • Article 6(1)(a) GDPR – your consent (e.g., newsletter, SMS, marketing)

  • Article 6(1)(b) GDPR – performance of a contract (e.g., order fulfillment)

  • Article 6(1)(c) GDPR – legal obligation (e.g., taxes, accounting)

  • Article 6(1)(f) GDPR – legitimate interest (e.g., website security, analytics, marketing)

7. Data Sharing

We do not sell your personal data.

We may share your data with:

  • Payment service providers

  • Shipping and logistics companies

  • IT and hosting providers

  • Marketing and advertising partners

  • Analytics providers

  • Newsletter and CRM systems

  • Accounting and legal service providers

  • Public authorities where required by law

All recipients process data based on agreements ensuring GDPR compliance.

8. International Transfers

Your data may be transferred outside the European Economic Area only to entities ensuring an adequate level of protection in accordance with GDPR, including the use of Standard Contractual Clauses.

9. Data Retention

We retain your personal data only as long as necessary to:

  • Perform contracts

  • Meet legal obligations

  • Handle disputes

  • Conduct marketing activities until consent is withdrawn

10. Your Rights

You have the following rights regarding your personal data:

  • Access your personal data

  • Rectify inaccurate data

  • Erase your data

  • Restrict processing

  • Data portability

  • Object to processing (including marketing and profiling)

  • Withdraw consent at any time

  • Lodge a complaint with a supervisory authority

To exercise your rights, contact us using the details below.

11. Cookies

We use cookies and similar technologies to:

  • Ensure proper website functioning

  • Remember preferences

  • Analyze traffic and user behavior

  • Conduct marketing activities (including remarketing and personalized ads)

You can manage cookies through your browser settings or via the cookie banner.

12. Children’s Data

Our website is not intended for persons under 16 years of age. We do not knowingly collect children’s data.

13. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website.

15. Contact

If you have any questions about this Privacy Policy or your personal data, contact:

CHILLO
E-mail: 

contacttochillo@gmail.com