This Privacy Policy describes how we collect, use, store, and protect personal data when you visit our website, submit forms, purchase products, or communicate with us. We process data in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR), the Dutch Implementation Act (UAVG), and, where relevant, the UK GDPR for visitors from the United Kingdom. We do not sell your personal data.
1. Who we are
The data controller responsible for processing is Srozelongrthodei.world, operating the LifePulse brand. Registered address: Ceintuurbaan 185, 1072 EL Amsterdam, Netherlands. Contact for privacy matters: talk@srozelongrthodei.world. If you contact us by post, include “Data protection” on the envelope or subject line so your request reaches the correct team.
2. Scope and audience
This policy applies to visitors and customers of our public website, B2B partners who receive marketing communications where permitted, and individuals who email us or complete forms. It does not govern third-party websites linked from our pages; their operators are responsible for their own notices.
3. Categories of personal data
Depending on how you interact with us, we may process:
- Identity and contact data: name, title, delivery address, billing address, email, telephone.
- Transaction data: order history, payment status (card data is handled by payment processors; we do not store full card numbers).
- Communication data: messages you send, support tickets, survey responses.
- Technical data: IP address, browser type, device identifiers, approximate location derived from IP, referring URL.
- Usage data: pages viewed, click paths, time on page, and cookie identifiers where you consent.
- Marketing preferences: opt-in records, unsubscribe timestamps, segmentation tags.
4. Purposes and legal bases
Website operation and security (Art. 6(1)(f) GDPR legitimate interests): hosting, TLS, abuse detection, fraud screening, aggregated analytics for infrastructure planning, and essential cookies.
Contract and pre-contract (Art. 6(1)(b)): taking orders, delivering goods, invoicing, responding to pre-sales questions.
Consent (Art. 6(1)(a)): marketing emails where opt-in is required, non-essential cookies, optional surveys.
Legal obligation (Art. 6(1)(c)): tax, accounting, product safety reporting, cooperation with regulators and courts.
5. Retention
We keep data only as long as necessary for the purposes above. Indicative periods: marketing consent and preferences until you withdraw plus a short audit trail; contracts and invoices up to seven years where Dutch tax law requires; website logs on a rolling basis, typically up to ninety days unless extended for security investigations; customer service emails up to twenty-four months unless a dispute requires longer; cookie data according to the Cookie Policy.
6. Recipients and international transfers
We use processors for hosting, email delivery, payment acquisition, customer support tools, and analytics when you consent. Processors are bound by written agreements requiring appropriate safeguards. If data leaves the EEA, we use Standard Contractual Clauses, adequacy decisions, or other mechanisms permitted under Chapter V GDPR. Copies of safeguards may be requested subject to confidentiality.
7. Automated decision-making
We do not make decisions based solely on automated processing that produce legal or similarly significant effects on you. Fraud checks may involve scoring but human review applies before adverse action.
8. Security measures
We implement HTTPS, role-based access, encryption where appropriate, vendor due diligence, incident response procedures, and staff training. No system is perfectly secure; we continuously improve controls in proportion to risk.
9. Your rights
Subject to conditions and exemptions in the GDPR, you may request access, rectification, erasure, restriction, data portability, and object to processing based on legitimate interests or for direct marketing. You may withdraw consent at any time without affecting lawfulness of prior processing. To exercise rights, email us from the address you used with us or provide proof of identity. We respond within one month, extendable by two further months where complex.
You may lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or, if you live elsewhere in the EU, with your local supervisory authority.
10. Children
Our services are not directed at individuals under sixteen. We do not knowingly collect children’s data without parental authority.
11. Changes
We may update this policy to reflect legal, technical, or business changes. The top of the document shows the effective date. Material changes may be highlighted on the website or by email where appropriate.