Privacy Policy

The controller responsible for data processing on this website is:

We process personal data of our users only to the extent necessary to provide a functional website as well as our content and services. Processing takes place regularly only with the consent of the user or where processing is permitted by law.

The legal bases for processing are, in particular, Art. 6(1)(a) GDPR (consent), Art. 6(1)(b) GDPR (contract performance), Art. 6(1)(c) GDPR (legal obligation), and Art. 6(1)(f) GDPR (legitimate interests).

When you visit this website, our hosting provider automatically collects technical information that your browser transmits, including:

• Browser type and version
• Operating system used
• Referrer URL
• Anonymised IP address
• Time of the server request

This data is processed on the basis of Art. 6(1)(f) GDPR for the purpose of ensuring a stable and secure operation of the website. Log data is stored separately from any other data.

If you contact us via the contact form on this website or by email, the personal data you provide (name, company, email address, message) will be stored and processed by us solely for the purpose of responding to your inquiry. The legal basis is Art. 6(1)(b) GDPR (pre-contractual measures) and Art. 6(1)(f) GDPR (legitimate interest in answering inquiries).

Inquiry data is stored in our backend (operated through Lovable Cloud, hosted within the EU). We delete the data once it is no longer required, unless statutory retention obligations apply.

This website uses only technically necessary cookies required for the operation of the site. No tracking or marketing cookies are set without your prior consent.

As a data subject under the GDPR, you have the following rights:

• Right of access (Art. 15 GDPR)
• Right to rectification (Art. 16 GDPR)
• Right to erasure (Art. 17 GDPR)
• Right to restriction of processing (Art. 18 GDPR)
• Right to data portability (Art. 20 GDPR)
• Right to object (Art. 21 GDPR)
• Right to withdraw consent at any time (Art. 7(3) GDPR)
• Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

To exercise any of these rights, please contact us at info@ghost-retail.com.

We use TLS/SSL encryption for the transmission of data between your browser and our website. We implement appropriate technical and organisational measures to protect your data against accidental or intentional manipulation, loss, destruction, or unauthorised access.

We reserve the right to amend this privacy policy to ensure that it always complies with current legal requirements or to reflect changes to our services. The current version applies to your next visit.