Privacy Policy

Last Updated: March 15, 2025
We may update this policy from time to time. We will notify you of any significant changes.

📋 Table of Contents

1. Company Information
2. What Data We Collect
3. How We Use Your Data
4. Data Sharing & Disclosure
5. Legal Basis for Processing
6. Cookies & Tracking
7. Your GDPR Rights
8. Data Security
9. Data Retention
10. International Data Transfers
11. Contact & Complaints

1. Company Information

Data Controller: BOOSTER28 ADS S.R.L.
Address: Str. Lungă, Nr. 149, Ap. P3, Brașov, 500059, România
VAT Number: RO48459815
Website: https://abodefit.shop
Email: support@abodefit.shop
Phone: +40 751 234 567
Data Protection Officer: privacy@abodefit.shop

BOOSTER28 ADS S.R.L. ("we," "us," or "our") operates the AbodeFit online store specializing in home products. We are committed to protecting and respecting your privacy in accordance with the General Data Protection Regulation (GDPR) and Romanian data protection laws.

2. What Data We Collect

Personal Data We Collect

Data Type	Examples	Collection Method	Purpose
Account Information	Name, email, phone, password	Account registration	Account management, login
Order Information	Billing/shipping address, payment details	Checkout process	Order processing, delivery
Communication Data	Support emails, chat messages, reviews	Customer service interactions	Support, feedback, improvements
Technical Data	IP address, browser, device info	Website usage	Security, analytics, optimization
Marketing Data	Newsletter preferences, interests	Optional subscription	Marketing communications

Data We Do NOT Collect

Credit card numbers (processed securely by payment processors)
Social security numbers or government ID numbers
Health or medical information
Political opinions, religious beliefs, or sexual orientation
Data from children under 16 years old

3. How We Use Your Data

Primary Uses

Order Processing: Process your orders, payments, and deliveries
Customer Service: Respond to inquiries, provide support, handle returns
Account Management: Maintain your account, login authentication
Legal Compliance: Meet tax, accounting, and regulatory requirements
Security: Detect fraud, prevent abuse, ensure website security

Secondary Uses (With Your Consent)

Marketing: Send newsletters, promotions, and product recommendations
Personalization: Customize your shopping experience
Analytics: Understand website usage and improve our services
Research: Conduct surveys and market research

4. Data Sharing & Disclosure

We never sell your personal data to third parties for marketing purposes.

When We Share Data

Third Party	Data Shared	Purpose	Legal Basis
Payment Processors (PayPal, Stripe)	Payment info, order details	Process payments securely	Contract performance
Shipping Companies (Courier services)	Name, address, phone, order info	Deliver your orders	Contract performance
Email Service (Mailchimp, SendGrid)	Email, name, preferences	Send transactional/marketing emails	Consent, legitimate interest
Analytics Services (Google Analytics)	Usage data, anonymized	Website optimization	Legitimate interest
Government Authorities	As legally required	Tax reporting, law enforcement	Legal obligation

5. Legal Basis for Processing

Under GDPR, we must have a lawful basis for processing your personal data. We rely on:

Contract Performance: Processing necessary to fulfill our contract with you (orders, delivery, customer service)
Legal Obligation: Processing required by law (tax records, consumer protection, anti-money laundering)
Legitimate Interest: Processing necessary for our legitimate business interests (fraud prevention, website security, analytics)
Consent: Processing based on your explicit consent (marketing emails, optional cookies, surveys)
Vital Interests: Processing necessary to protect life or physical safety (emergency situations)

            You can withdraw consent at any time by emailing us at privacy@abodefit.shop or using the unsubscribe links in our emails.
        

6. Cookies & Tracking Technologies

Types of Cookies We Use

Cookie Type	Purpose	Duration	Consent Required
Essential Cookies	Website functionality, security, login	Session/1 year	❌ No (necessary)
Analytics Cookies	Website usage statistics	2 years	✅ Yes
Marketing Cookies	Personalized ads, retargeting	1 year	✅ Yes
Preference Cookies	Remember your settings	1 year	✅ Yes

Managing Cookies

You can control cookies through:

Our cookie consent banner when you first visit
Cookie settings page accessible from our footer
Your browser settings to block or delete cookies
Opt-out tools provided by advertising networks

7. Your GDPR Rights

            How to Exercise Your Rights:

            Email us at privacy@abodefit.shop with your request. We'll respond within 30 days and verify your identity for security.

8. Data Security

Security Measures

Encryption: All data transmitted using SSL/TLS encryption
Secure Storage: Data stored on secure servers with access controls
Payment Security: PCI DSS compliant payment processing
Access Controls: Limited employee access on need-to-know basis
Regular Audits: Security assessments and vulnerability testing
Backup Systems: Secure, encrypted backups with recovery procedures
Staff Training: Regular data protection training for employees

Data Breach Response

In the unlikely event of a data breach:

We'll notify supervisory authorities within 72 hours if required
We'll inform affected individuals without undue delay if high risk to rights
We'll document the breach and our response measures
We'll take immediate steps to contain and remedy the breach

9. Data Retention

Data Type	Retention Period	Legal Reason
Account Data	Until account deletion + 30 days	Contract performance, user convenience
Order Records	7 years after order completion	Tax law, accounting requirements
Payment Information	Not stored (handled by processors)	Security, PCI compliance
Marketing Consents	Until consent withdrawn + 3 years	Evidence of consent
Website Analytics	26 months (Google Analytics default)	Business analytics
Support Communications	5 years after last contact	Customer service, dispute resolution

            Automated Deletion: We have systems in place to automatically delete personal data when retention periods expire, unless legally required to keep it longer.
        

10. International Data Transfers

We primarily process data within the European Union. However, some of our service providers may be located outside the EU:

United States: Some cloud services and analytics providers
Safeguards: We use Standard Contractual Clauses (SCCs) approved by the European Commission
Adequacy Decisions: We only transfer to countries with adequate data protection levels
Additional Measures: Encryption, access controls, and data minimization

            Your Rights: You have the right to request information about international transfers and obtain copies of the safeguards we have in place.
        

11. Contact & Complaints

📧 Privacy Contact

Data Protection Officer: privacy@abodefit.shop
General Support: support@abodefit.shop
Phone: +40 751 234 567
Mail: BOOSTER28 ADS S.R.L., Str. Lungă, Nr. 149, Ap. P3, Brașov, 500059, România

Right to Lodge a Complaint

If you're not satisfied with how we handle your personal data, you have the right to lodge a complaint with:

                Romanian Supervisory Authority:

                Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal (ANSPDCP)

                Website: https://www.dataprotection.ro/

                Phone: +40 21 252 5599

                Email: anspdcp@dataprotection.ro

Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will:

Post the updated policy on our website with a new "Last Updated" date
Notify you by email if changes significantly affect your rights
Maintain an archive of previous policy versions upon request

BOOSTER28 ADS S.R.L. - Committed to protecting your privacy and personal data
This Privacy Policy complies with GDPR, Romanian Law 190/2018, and EU privacy regulations

BOOSTER28 ADS Footer