Privacy policy

Last updated: December 3, 2025

BREIGN UG (haftungsbeschränkt) (“BREIGN”, “we”, “us”, “our”) operates this online store and website (the “Services”). This Privacy Policy explains how we collect, use, disclose and safeguard your personal data when you visit our website, make a purchase, use our Services, or otherwise interact with us.
For the purpose of the European Union’s General Data Protection Regulation (“GDPR”), BREIGN is the data controller of your personal data.

By using our Services, you acknowledge that you have read and understood this Privacy Policy.

1. Personal Data We Collect

Depending on how you use our Services, we may collect the following categories of personal data:

1. Contact and Identity Information

Name, email address, telephone number, billing and shipping address.

2. Order and Transaction Data

Products purchased, payment details (handled securely by Shopify or third-party processors), order confirmations, delivery information, returns.

3. Account Data

Login information, preferences, saved items.

4. Communication Data

Information you send us via email, forms, or customer support.

5. Device and Technical Data

IP address, browser type, device identifiers, cookies and similar technologies, usage patterns.

6. Usage Data

Interactions with the website (page views, products viewed, content interactions).

We do not intentionally collect data from individuals under 16 years of age.

2. How We Collect Personal Data

We collect personal data:

  • Directly from you, e.g., when you place an order, sign up for emails, or contact us.

  • Automatically, e.g., through cookies, analytics, and Shopify’s platform infrastructure.

  • From third-party partners, where lawful and relevant, such as payment processors or logistics providers.

  • From Shopify, which hosts and powers our store.

3. Legal Bases for Processing (GDPR)

We process your personal data based on the following GDPR legal grounds:

  • Art. 6(1)(b) – Contract performance (e.g., processing your order)

  • Art. 6(1)(c) – Legal obligation (e.g., tax, accounting, consumer protection laws)

  • Art. 6(1)(f) – Legitimate interests (e.g., site security, fraud prevention)

  • Art. 6(1)(a) – Consent (e.g., marketing emails, non-essential cookies)

4. How We Use Your Personal Data

We may use your information for the following purposes:

Providing and improving our Services

Processing orders, shipping, returns, account management, personalizing your browsing experience.

Customer communication

Responding to inquiries, sending transactional notifications.

Marketing (with consent)

Sending promotional materials, newsletters, or product announcements.

Security and Fraud Prevention

Detecting, preventing, and responding to fraudulent or unlawful activity.

Compliance with Laws

Tax, accounting, e-commerce obligations, and responding to official requests.

5. How We Share Personal Data

We may disclose personal data to:

1. Shopify (Primary Processor & Host)

Our Services are powered and hosted by Shopify.
Shopify processes your data to operate our store, provide analytics, payment handling, infrastructure, fraud prevention, and related services.

2. Service Providers

Payment processors, shipping/fulfillment partners, IT and cloud providers, email service providers, analytics providers.

3. Marketing and Advertising Partners

Only where consented and permitted.

4. Legal Obligations

Authorities, courts, or regulators where legally required.

5. Business Transactions

Corporate transfers such as mergers, acquisitions, or restructuring.

We do not sell your personal data.

6. International Data Transfers

Shopify and some of our service providers operate outside the EEA/UK, including Canada and the United States.

Where data is transferred internationally, we rely on:

  • Standard Contractual Clauses (SCCs) issued by the European Commission

  • Adequacy decisions, where applicable

This ensures protection equivalent to EU law.

7. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to:

  • enable functionality

  • remember your preferences

  • analyze website usage

  • support marketing (if consented)

We use a GDPR-compliant cookie banner that appears on your first visit.
Non-essential cookies are only activated after you provide explicit consent.

You can change your cookie preferences at any time via the banner.

8. Your Rights Under GDPR

Depending on your jurisdiction, you may have the following rights:

  • Right of access (Art. 15 GDPR)

  • Right to rectification (Art. 16 GDPR)

  • Right to erasure (Art. 17 GDPR)

  • Right to restriction (Art. 18 GDPR)

  • Right to data portability (Art. 20 GDPR)

  • Right to object (Art. 21 GDPR)

  • Right to withdraw consent at any time

To exercise these rights, please contact us using the details below.
We may require verification of identity before acting on a request.

9. Data Retention

We retain personal data only as long as necessary to fulfill contractual or legal obligations, resolve disputes, enforce our agreements, or for other legitimate business purposes.

10. Third-Party Links

Our website may contain links to external websites.
We are not responsible for the privacy practices of third-party sites.

11. Changes to This Policy

We may update this Privacy Policy from time to time.
Changes will take effect upon posting the revised version on our website.

12. Contact

BREIGN UG (haftungsbeschränkt)
Kleiner Kielort 2
20144 Hamburg
Germany

Email: robert [at] breign.de

If you are in the EEA, you may also lodge a complaint with your local supervisory authority.