Privacy Policy
This Privacy Policy explains how Doping collects, uses, and protects personal data of customers and visitors, in line with the GDPR (Regulation (EU) 2016/679).
1. Data Controller
The Data Controller is Doping. For all data-related matters, contact us at [email protected].
2. Data We Collect
We collect data necessary for order fulfilment: name, delivery address, email, phone number, and payment details (processed by PCI-DSS-compliant providers, never stored on our servers).
3. Purposes of Processing
Personal data is processed for: (a) order fulfilment, (b) accounting and tax obligations, (c) handling complaints and returns, (d) marketing communication (only with explicit consent).
4. Legal Basis
Processing is based on Art. 6(1)(b) GDPR (contract performance), Art. 6(1)(c) GDPR (legal obligation), and Art. 6(1)(a) GDPR (consent for marketing).
5. Data Recipients
Data may be shared with shipping carriers, payment processors, accounting service providers, and IT/hosting providers — strictly for the purposes listed above.
6. Retention Period
Order-related data is retained for 5 years for tax purposes. Marketing data is retained until consent is withdrawn.
7. Your Rights
You have the right to: access your data, request correction or deletion, restrict or object to processing, data portability, and to lodge a complaint with the supervisory authority. To exercise any right, email [email protected].
8. Cookies
For details on cookies and similar technologies, see the “Cookie Policy” page.