Nezvoro LLC ("we," "us," or "our") operates the website https://nezvoro.com. We are committed to protecting the privacy and security of the personal data of our customers and site visitors. While our primary operations are based in the United States, we recognize the importance of global data protection standards, including those outlined in the General Data Protection Regulation (GDPR) for individuals within the European Economic Area (EEA) and the UK.

This statement outlines our approach to data privacy in line with GDPR principles, ensuring transparency and providing you with control over your personal information.

1. Who We Are (Data Controller)

Nezvoro LLC is the data controller responsible for your personal data collected via https://nezvoro.com.

Our contact details are:

2. The Data We Collect About You

We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped together as follows:

  • Identity Data: First name, last name, username or similar identifier.
  • Contact Data: Billing address, delivery address, email address, telephone numbers.
  • Financial Data: Payment card details (processed securely by third-party payment processors like Stripe and PayPal, we do not store full card details on our servers).
  • Transaction Data: Details about products you have purchased from us, including order numbers and payment status.
  • Technical Data: Internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
  • Usage Data: Information about how you use our website, products, and services.
  • Marketing and Communications Data: Your preferences in receiving marketing from us and your communication preferences.

We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). Nor do we collect information about criminal convictions and offenses.

3. How We Collect Your Data

We use different methods to collect data from and about you, including through:

  • Direct interactions: You may give us your Identity, Contact, and Financial Data by filling in forms or by corresponding with us by post, phone, email, or otherwise. This includes personal data you provide when you:
    • Create an account on our website.
    • Place an order for our products.
    • Subscribe to our newsletter.
    • Request marketing to be sent to you.
    • Contact customer service.
  • Automated technologies or interactions: As you interact with our website, we may automatically collect Technical Data about your equipment, browsing actions, and patterns. We collect this personal data by using cookies, server logs, and other similar technologies. Please see our Cookie Policy (if applicable, or refer to this section for general cookie information) for more details.
  • Third parties or publicly available sources: We may receive personal data about you from various third parties, such as payment and delivery services.

4. How We Use Your Personal Data (Purposes and Legal Basis)

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

  • To perform the contract: Where we need to perform the contract we are about to enter into or have entered into with you. For example, to process and deliver your orders for safety products.
  • For our legitimate interests: Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests. For example, to improve our website, products/services, marketing, customer relationships, and experiences.
  • To comply with a legal obligation: Where we need to comply with a legal or regulatory obligation. For example, keeping records for tax purposes.
  • With your consent: Where you have given explicit consent to process your data for a specific purpose. For example, sending you marketing communications.

We process your data for these primary purposes:

  • To register you as a new customer.
  • To process and deliver your orders, manage payments, fees, and charges, and collect and recover money owed to us.
  • To manage our relationship with you, including notifying you about changes to our terms or privacy policy, asking you to leave a review or take a survey.
  • To enable you to participate in a competition, promotion, or survey.
  • To improve our website, products/services, marketing, customer relationships, and experiences.
  • To make suggestions and recommendations to you about products that may be of interest to you.

5. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data, and whether we can achieve those purposes through other means, and the applicable legal requirements.

For example, by law we have to keep basic information about our customers (including Contact, Identity, Financial, and Transaction Data) for six years after they cease being customers for tax purposes.

6. Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

7. Data Sharing

We may share your personal data with the parties set out below for the purposes described in section 4:

  • Service Providers: Third-party service providers acting as processors based in the United States who provide IT and system administration services (e.g., WooCommerce hosting), payment processing services (e.g., Stripe, PayPal), and shipping services.
  • Professional Advisers: Lawyers, bankers, auditors, and insurers based in the United States who provide consultancy, banking, legal, insurance, and accounting services.
  • Regulators and other authorities: Who require reporting of processing activities in certain circumstances.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

8. International Data Transfers

Nezvoro LLC is based in Brooklyn, New York, US. All personal data we collect is processed and stored on servers located within the United States. While we do not ship internationally, and our primary target market is the US, individuals from outside the US (including the EEA/UK) may access our website.

When you provide us with your personal data, you acknowledge and agree that your data may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country. We take all reasonable steps to ensure that your data is treated securely and in accordance with this GDPR Compliance Statement, and we require our third-party service providers to comply with applicable data protection laws.

9. Your Data Protection Rights (GDPR Rights)

Under certain circumstances, if you are a resident of the EEA or UK, you have rights under data protection laws in relation to your personal data. These include:

  • The right to be informed: You have the right to be informed about how your personal data is collected and used. This policy aims to provide that information.
  • The right to access: You have the right to request copies of your personal data. We may charge you a small fee for this service.
  • The right to rectification: You have the right to request that Nezvoro LLC correct any information you believe is inaccurate. You also have the right to request Nezvoro LLC to complete information you believe is incomplete.
  • The right to erasure (Right to be Forgotten): You have the right to request that Nezvoro LLC erase your personal data, under certain conditions.
  • The right to restrict processing: You have the right to request that Nezvoro LLC restrict the processing of your personal data, under certain conditions.
  • The right to object to processing: You have the right to object to Nezvoro LLC’s processing of your personal data, under certain conditions.
  • The right to data portability: You have the right to request that Nezvoro LLC transfer the data that we have collected to another organization, or directly to you, under certain conditions.
  • The right to withdraw consent: Where you have provided your consent to the collection, processing, and transfer of your personal data for a specific purpose, you have the right to withdraw your consent at any time.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at support@nezvoro.com or by phone at +1 (718) 576-3845.

10. Cookies

Our website uses cookies to enhance your browsing experience, personalize content, and analyze our traffic. For detailed information on the cookies we use and your choices regarding cookies, please refer to our dedicated Cookie Policy (if applicable, otherwise this section serves as basic notice).

11. Changes to Our GDPR Compliance Statement

We keep our GDPR Compliance Statement under regular review and place any updates on this web page.

12. How to Contact Us or Lodge a Complaint

If you have any questions about Nezvoro LLC’s GDPR Compliance Statement, the data we hold on you, or you would like to exercise one of your data protection rights, please do not hesitate to contact us:

Should you wish to report a complaint or if you feel that Nezvoro LLC has not addressed your concern in a satisfactory manner, you may contact the relevant data protection authority. For individuals in the EEA/UK, information on how to do so can be found on the website of your national data protection authority.