Privacy Policy
Privacy Policy
Last updated: 12 May 2026
At FLUZION ("we", "us", "our"), we place great importance on protecting your personal data. With this Privacy Policy, we want to inform you openly about which personal data we collect, the purpose for which this is done and how we handle it. The relevant legal basis is the General Data Protection Regulation (GDPR) as well as the German Federal Data Protection Act (BDSG).
1. Data Controller
The data controller in accordance with the GDPR is the operator of the website fluzion.com. For matters relating to this declaration or the processing of your data, you can reach us at contact@fluzion.com. The detailed provider information can be found in our Legal Notice.
2. Types of Data We Process
In connection with an order or a contact enquiry, we process the following data:
- First name and surname as well as email address
- Delivery and billing address
- Telephone number (voluntary, for notification of delivery status)
- Payment information (securely processed by our payment partner — card details are not stored by us)
- History of your orders and purchases
- Technical data relating to the device and browsing behaviour (IP address, browser type, pages visited)
3. Processing Purposes and Legal Bases
- Order processing — name, address, email and payment details are required to fulfil the purchase contract concluded with you (Art. 6 (1) (b) GDPR).
- Customer communication — for instance, order confirmations, shipping information and customer service enquiries (Art. 6 (1) (b) GDPR).
- Optimisation of our offer — through usage analyses, we can continuously improve our website (Art. 6 (1) (f) GDPR — legitimate interest).
- Compliance with legal requirements — the archiving of business documents takes place in accordance with commercial and tax law requirements (Art. 6 (1) (c) GDPR).
4. Payment Processing
The processing of your payments is handled by our partners (for example Stripe, PayPal, Klarna or Viva Wallet), all of which are PCI DSS Level 1 certified. The collection of your card details takes place directly within their secured environment — the complete card number, CVV security code and expiry date are at no time visible or retrievable by FLUZION.
5. Storage Duration
Order-related data is stored for a period of 10 years, in accordance with the requirements of § 147 AO and § 257 HGB under German tax and commercial law. We retain your marketing preferences until you unsubscribe. Non-essential data is deleted or anonymised as soon as the purpose of processing no longer applies.
6. Recipients of the Data
Disclosure to third parties takes place exclusively to service providers necessary for order processing:
- Shipping service providers (e.g. DHL, DPD, Hermes, GLS) for delivery
- Payment partners for the secure processing of payments
- Email service providers for transactional communications
- Hosting providers for the technical operation of the website
- Tax advisors and lawyers, where necessary to fulfil legal obligations
We have concluded appropriate agreements with all data processors in accordance with Art. 28 GDPR.
7. Data Transfer to Third Countries
A transfer of data to countries outside the European Economic Area (EEA) takes place exclusively where an adequacy decision exists or appropriate safeguards — such as the Standard Contractual Clauses of the EU Commission — are in place in accordance with Art. 45 et seq. GDPR.
8. Cookies and Tracking
On our website, we use cookies and similar technologies. Detailed information on this is provided in our Cookie Policy. Via the cookie banner as well as your browser settings, you can refuse or configure non-essential cookies at any time.
9. Your Rights as a Data Subject
With regard to your personal data, you have the following rights:
- Right of access (Art. 15 GDPR) — you can request to know which data we process about you
- Rectification (Art. 16 GDPR) — incorrect details can be corrected
- Erasure (Art. 17 GDPR) — provided that no statutory retention obligation conflicts with this
- Restriction of processing (Art. 18 GDPR)
- Data portability (Art. 20 GDPR)
- Right to object (Art. 21 GDPR) — against processing carried out on the basis of legitimate interest
- Withdrawal of consent given (Art. 7 (3) GDPR)
- Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
To exercise your rights, a brief message to contact@fluzion.com is sufficient.
10. Security of Your Data
In order to protect your data against unauthorised access, loss or improper use, we have implemented technical and organisational measures (TOMs). These include, among others, encryption via SSL/TLS, secured server environments, restricted access permissions as well as regular security checks.
11. Automated Decision-Making
We do not use automated decision-making processes or profiling within the meaning of Art. 22 GDPR.
12. Right to Complain
Should you be of the opinion that the processing of your data infringes the provisions of the GDPR, you have the right to lodge a complaint with a data protection supervisory authority — in particular in the Member State of your usual place of residence, your place of work or the location of the alleged infringement.
13. Updates to this Declaration
We reserve the right to update this Privacy Policy from time to time in order to adapt it to legal changes or modified processes within our company. The currently valid version is always available for inspection on this page.