No products in the cart.
This Privacy Policy governs the processing of personal data collected via the website www.foldgardenbench.com (hereinafter referred to as the “Website”). The Website is dedicated to the commercial sale of folding garden workstations to consumers within the European Union.
We are fully committed to protecting your personal data and privacy in strict compliance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation, hereinafter referred to as “GDPR”), as well as Act No. 18/2018 Coll. on the Protection of Personal Data and on Amendments to Certain Acts of the Slovak Republic.
- DATA CONTROLLER
The personal data controller responsible for the processing and storage of your information via the Website is:
Website / Data Controller: www.foldgardenbench.com
Email: folding@foldgardenbench.com
Address: Msgr. V. Trstenského 1812/5, Trstená, 028 01 Trstená, Slovakia
Phone: +421 904501873
- LEGAL BASIS AND PURPOSES OF DATA PROCESSING
We process personal data only when there is a lawful basis to do so under Article 6 of the GDPR. The specific purposes and legal bases are as follows:
Performance of a Contract: To process, manage, and fulfil your commercial orders for our garden furniture products, including arranging shipment and maintaining communication regarding your purchase order.
Legal Obligation: To comply with binding statutory duties applicable within the Slovak Republic, including tax laws, customs declarations, and financial accounting regulations.
Legitimate Interests: To respond to enquiries, requests, or correspondence submitted via our official communication channels, and to maintain stable commercial operations.
- CATEGORIES OF PERSONAL DATA PROCESSED
We limit data collection strictly to what is necessary for standard transactional execution, operational communication, and secure payment environment maintenance. This includes:
Identity Data: First name, surname.
Contact Data: Delivery address, billing address, email address, telephone number.
Transaction Data: Details concerning payment validation, purchased items, and historical order records.
Technical and Device Data: Standard technical identifiers, including IP addresses, browser characteristics, and device data collected automatically during checkout purely for transaction security and fraud mitigation.
- DATA RECIPIENTS AND PAYMENT PROCESSING
To ensure operational efficiency and standard commercial execution, personal data may be shared with verified categories of third-party recipients, including logistics providers and professional IT infrastructure service providers. All transfers are carried out strictly under binding data processing agreements that comply with EU standards.
Payment Processing via Stripe
All financial transactions initiated on the Website are executed through our designated third-party payment infrastructure processor, Stripe (Stripe Payments Europe, Limited). For the purposes of transaction verification, fraud mitigation, and billing execution, relevant transactional data is transmitted to Stripe.
Important Security Declaration: Our Website operates in a fully secure, encrypted environment. We do not collect, process, or store any full credit card numbers, CVV/CVC security codes, or sensitive cardholder authentication data on our internal servers. All payment input fields are securely hosted and processed directly by Stripe in strict compliance with the Payment Card Industry Data Security Standard (PCI-DSS) and applicable European data protection frameworks. The processing of data by Stripe is subject to its own corporate privacy documentation.
- DATA RETENTION PERIODS
Personal data is retained only for the duration strictly necessary to fulfil the specific purposes for which it was collected, or to comply with statutory retention demands enacted by Slovak and European legislation:
Contractual Data: Data processed for the performance of a purchase contract is maintained for the duration of the contractual relationship and the applicable statutory limitation periods for claims under civil and commercial law.
Accounting and Tax Documentation: In compliance with Section 35 of Act No. 431/2002 Coll. on Accounting of the Slovak Republic, accounting records, invoices, and related transactional proofs containing personal data are securely retained for a mandatory period of ten (10) years following the year to which they relate.
Communication Data: General enquiries and correspondence are retained for the period necessary to resolve the matter, up to a maximum of twenty-four (24) months, unless a continuing legal basis requires further processing.
- DATA SECURITY
We implement commercial-grade technical and organizational security measures designed to mitigate risks of unauthorized access, alteration, disclosure, or destruction of personal data. These infrastructure safeguards include encryption protocols for data transmission and restricted access controls for internal operations. While we employ rigorous operational procedures to protect your information, no digital storage mechanism or electronic transmission over the internet can be categorized as entirely immune from all external threats. - DATA SUBJECT RIGHTS
Under the GDPR, individuals residing within the European Union are granted specific legal rights regarding their personal data. You may exercise the following rights directly by contacting us via our registered email:
Right of Access: Request a confirmation regarding whether your personal data is being processed, and obtain a copy of the processed data.
Right to Rectification: Request the immediate correction of inaccurate or incomplete personal details.
Right to Erasure (‘Right to be Forgotten’): Request the removal of your personal data when it is no longer required for statutory compliance or contractual fulfillment.
Right to Restriction of Processing: Request a temporary halt to processing under specific legal scenarios outlined in Article 18 of the GDPR.
Right to Data Portability: Obtain your personal data in a structured, commonly used, and machine-readable format.
Right to Object: Object at any time to the processing of data based on our legitimate commercial interests.
If you believe that the processing of your personal data breaches applicable European or Slovak data protection regulations, you possess the statutory right to lodge an official complaint with the relevant supervisory authority.
- AMENDMENTS TO THIS POLICY
We reserve the right to modify or update this Privacy Policy at any time to reflect operational modifications or evolving regulatory legal requirements. Any structural changes will become immediately effective upon publication of the updated text on this page.