Privacy Policy

Last updated: 01-12-2025

This Privacy Policy describes how REZAYÉ (“we”, “our”, “us”) collects, uses, stores, and protects personal data when you visit or make a purchase on our website. This Policy complies with the General Data Protection Regulation (GDPR) and applies to all users located within the European Union, as well as international users where applicable.

1. Data Controller

REZAYÉ is the data controller responsible for processing your personal data.

[Company Legal Name]
[Registered Address]
Email: support@rezaye.com
Website: www.rezaye.com

2. Personal Data We Collect

We collect the following categories of personal data when you interact with our website:

• Identity Data: Name, date of birth (optional), account details.
• Contact Data: Email address, billing address, shipping address, phone number.
• Payment Data: Partial payment details processed securely through third-party providers (we do not store full card information).
• Order Data: Purchase history, product preferences, returns, warranty claims.
• Technical Data: IP address, browser type, device information, cookies, analytics data.
• Marketing Data: Newsletter sign-ups, marketing consent, communication preferences.

3. How We Use Personal Data

We process your data for the following purposes, in accordance with GDPR Article 6:

• To fulfil and manage your orders (legal basis: contract performance).
• To create and maintain your account (legal basis: legitimate interest / contract).
• To provide customer support (legal basis: legitimate interest).
• To send marketing communications when consent is provided (legal basis: consent).
• To improve our website, services, and product offerings (legal basis: legitimate interest).
• To prevent fraud and secure transactions (legal basis: legal obligation + legitimate interest).
• To comply with tax, accounting, and legal requirements (legal basis: legal obligation).

4. Cookies and Tracking Technologies

We use cookies to enhance user experience, analyze website traffic, and support essential site functionality. Certain cookies also allow us to personalize content and remember your preferences.

By using our website, you can accept or manage cookies through the cookie banner and your browser settings. For more details, you may consult our Cookie Policy.

5. Sharing of Personal Data

We do not sell personal data. However, we share data with trusted partners when necessary:

• Payment processors (e.g., Stripe, PayPal)
• Shipping carriers (e.g., DHL, FedEx)
• IT and cloud service providers (secure hosting, analytics)
• Professional advisors (legal, tax, compliance)
• Authorities when legally required (fraud prevention, tax compliance)

All partners operate under GDPR-compliant agreements and process data only as required for providing their services.

6. International Transfers

If personal data is transferred outside the European Economic Area (EEA), we ensure protection through:

• GDPR-approved Standard Contractual Clauses (SCCs)
• Adequacy decisions from the European Commission
• Additional security measures where necessary

7. Data Retention

We retain personal data only as long as needed for the purposes stated in this Policy, including:

• Tax and accounting records: 7 years (EU requirement)
• Customer account data: retained until deletion request
• Order history: necessary for warranty, legal claims, and fraud prevention
• Marketing data: until consent is withdrawn

8. Your GDPR Rights

As an EU resident, you have the following rights:

• Right to access – request a copy of your personal data.
• Right to rectification – correct inaccurate or incomplete data.
• Right to erasure (“right to be forgotten”).
• Right to restrict processing under certain conditions.
• Right to data portability – receive your data in machine-readable format.
• Right to object to processing based on legitimate interest or direct marketing.
• Right to withdraw consent at any time for marketing activities.

To exercise any of these rights, contact us at: support@rezaye.com.

9. Security of Personal Data

We implement strict technical and organizational security measures to protect your personal data, including encrypted communications (SSL), secure payment gateways, access restrictions, and routine security audits.

10. Children’s Privacy

Our website is not intended for children under the age of 16. We do not knowingly collect data from minors.

11. Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects or significantly affects individuals, as defined under GDPR.

12. Links to Third-Party Websites

Our website may include links to external sites. We are not responsible for the privacy practices of these third parties and recommend reviewing their policies separately.

13. Updates to This Privacy Policy

We may update this Policy periodically to reflect changes in technology, law, or business practices. The revised version will be posted on this page with an updated “Last Updated” date.

14. Contact Information

If you have any questions about this Privacy Policy or how we process your data, you may contact us at:

REZAYÉ Customer Support
Email: enquiries@rezaye.com
Website: www.rezaye.com