Last updated
We take the protection of your personal data very seriously. Personal data is processed confidentially and in accordance with GDPR and applicable data protection laws.
When you visit our website, we temporarily process server log data (IP address, date/time, accessed URL, referrer, browser/OS) for technical provision and security. When ordering digital content, we process first name, last name, email, and transaction-related data. Payment data is processed by our payment processor Stripe; we do not store complete card information. For newsletter subscriptions, we store your email for delivery.
Legal bases: Contract performance (Art. 6(1)(b) GDPR) for providing digital content; consent (Art. 6(1)(a) GDPR) for newsletter and optional cookies; legitimate interests (Art. 6(1)(f) GDPR) in IT security and service improvement; legal obligations where applicable (Art. 6(1)(c) GDPR).
Subject to applicable law, you have the right to access, rectify, delete, restrict processing, data portability, and to object/withdraw consent. You also have the right to lodge a complaint with a data protection supervisory authority.
We retain personal data only as long as necessary for the stated purposes or as required by legal retention obligations (e.g., tax and commercial law). Server logs are typically deleted shortly after collection.
Controller: Stevan Milenkovic, Gesundes Darm (Zdrava Creva), Kattenbarg 42a, 26127 Oldenburg; Email: support@zdravacreva.rs; Phone: +49 176 22823521. Payment processing: Stripe Payments Europe Ltd., see https://stripe.com/privacy. Hosting: German provider with data processing agreement (Art. 28 GDPR).