Privacy policy

PRIVACY POLICY (Swiss DSG)

1. Controller

rrreefs AG,
Breitensteinstrasse 45,
8037 Zürich,
Switzerland.

Email: info@rrreefs.com

2. Personal Data We Collect

We collect and process personal data that you provide when you place an order or contact us. This includes:

  • Name
  • Billing and shipping address
  • Email address
  • Order details
  • Payment information (processed by payment providers; we do not store card numbers)

Shopify may also collect technical data (e.g., IP address, device information) to operate the shop.

3. Purpose of Processing

We process personal data only for:

  • operating the webshop
  • processing and fulfilling orders
  • sending order confirmations and delivery notices
  • answering customer inquiries
  • bookkeeping and legal obligations
  • fraud prevention and shop security

We do not sell your data and do not share it with third parties except those required to operate the shop.

4. Third Parties (Service Providers)

We use:

  • Shopify as our e-commerce platform
  • Payment providers (e.g., Stripe, PayPal)
  • Logistics and postal services for physical shipments (socks only)

Data may be stored on servers in Switzerland, the EU, or other countries used by Shopify. Shopify ensures adequate data protection.

5. Cookies

Basic cookies are used to:

  • operate the shopping cart
  • provide secure checkout
  • ensure website functionality

We do not use marketing or tracking cookies unless explicitly activated.

6. Data Retention

We store personal data only as long as necessary for the purposes listed above or as required by Swiss law (e.g., 10-year tax/document retention for invoices).

7. Your Rights

Under the Swiss Data Protection Act (DSG), you have the right to:

  • request information about your stored data
  • request correction or deletion
  • request restriction of processing
  • object to processing where legally possible

Contact: info@rrreefs.com

8. Data Security

We implement appropriate technical and organisational measures to protect your data from unauthorised access, loss, or misuse.

9. Changes

We may update this Privacy Policy to reflect adjustments in our business or legal environment.