To ensure a secure online environment and guarantee data protection, we strictly comply with legal requirements. In this privacy statement, we provide insight into the manner and purpose of data collection, security measures, retention periods, and contact details.
Purchases can only be made if you are in possession of a personal account. When you create an account or purchase a product from our online store, we collect the following personal information you provide as a standard part of the purchase process.
• First and last names
• Home and billing addresses for shipment purposes
• Telephone number for shipment purposes
• Your gender
• Date of birth
• IP address
• Email address
This data is required to accomplish the delivery. Additionally, when you browse our
store, we automatically receive your computer’s internet protocol (IP) address. Based on
this information, we can optimize your online experience and simultaneously protect our
Purpose of Data Collection
We collect and store account-related data for the following purposes:
a. carry out our obligations arising from any contracts between you and us, and to
provide you with the information, products, and services that you request from us;
b. set up, manage, and contact you about your account and orders;
c. carry out research and analyses;
d. confirm your age and identity, and to identify and prevent fraud.
With your explicit permission, we will send you newsletters about our online store, new
products, and other updates. We send our mails based only on your consent. Stay in touch for future updates.
• Email address
1.3 Customer Service
In order to offer you the appropriate and customized support you deserve, our support
team will have access to account-related information.
When you provide us with personal information to: (1) complete a transaction; (2) verify
your credit card; (3) place an order; (4) arrange delivery; or (5) return a purchase, it is
implied that you agree to our collection of this information in order to use it for that specific
If we ask for your personal information for a secondary reason, such as marketing, we will
either ask you directly for your expressed consent, or provide you with an opportunity to
2.1 How To Withdraw Consent?
If you change your mind after expressing opt-in consent, you may withdraw your consent
at any time, by contacting us at: email@example.com
We may disclose your personal information if we are required by law to do so or if you
violate our Terms of Service.
At Weedley, data minimalism is of great importance. Therefore, we will not retain your
data for longer than necessary for the purposes set out in this Policy. Different retention
periods apply for different types of data, however, the longest we will normally hold any
personal data is 10 years.
4.1 Account Information
Account-related data remains relevant as long as the consumer is in possession of an
account. Therefore, the data remains documented for as long as the account exists.
When our customers remove an account, the related data will be deleted within a
reasonable period. Requests regarding inspection or correction of stored personal data
or the removal of an account can be sent to: firstname.lastname@example.org.
Newsletter consent and the associated data remain relevant as long as our customers
are registered for the newsletter.
Registered customers (and their personal information) will be deleted.
Consumers can withdraw their consent with the use of this opt-out function or by email to: email@example.com
Cookies are small bits of information that tell your computer about previous interactions
with our website. These cookies are stored on your hard drive, not our website. Basically, when you use our website, your computer will show us its cookies, telling our site whether you used it previously. This allows our site to operate faster, as well as to remember things related to your previous visits (e.g., username), to make it more convenient for you. At Weedley, we use two types of cookies: functional and analytical cookies.
5.1 Functional Cookies
Functional cookies are used to improve your online experience. These cookies, inter
alia, keep track of what is placed in the shopping cart. The use of these cookies does
not require prior permission.
5.2 Analytical Cookies
Analytical cookies are used to carry out market research and analyses. Data gathered
with these analytical cookies is anonymized, thus becoming useless to others. The use
of these cookies does not require prior permission.
Third-party services are required to fulfill transactions and perform our services. In
general, the third-party providers used by us will only collect, use, and disclose your
information to the extent necessary to allow them to perform the services they provide to
us. However, certain third-party service providers, such as payment gateways and other
payment transaction processors, have their own privacy policies in respect to the
information we are required to provide to them for your purchase-related transactions.
For these providers, we recommend you read their privacy policies, so you can
understand the manner in which your personal information will be handled by these
providers. In particular, certain providers may be located in or have facilities that are located in a
different jurisdiction than either you or us. So, if you elect to proceed with a transaction
that involves the services of a third-party, your information may become subject to the
laws of the jurisdiction(s) in which that service provider or its facilities are located.
Web Analysis Service (Anonymized Data)
On this website, we integrated a component of a web analysis service (with the
anonymizer function). Web analysis can be defined as the collection, gathering, and
analysis of data regarding the behavior of visitors to websites. A web analysis service
collects, inter alia, data about the website from which a person has come (the so-called
referrer), which sub-pages were visited, or how often and for what duration a sub-page
was viewed. Web analytics are mainly used for the optimization of a website and to carry
out a cost-benefit analysis of internet advertising.
In order to complete deliveries, we make use of a courier service. This courier service
performs the shipping between our company or our logistic partner and the consumer’s
address. In order to complete this logistics, the company requires access to information
about the consumer’s name, address and phone number.
We use an external mail service provider to send the newsletter. This provider has access to limited account information related to opt-in consent (e.g., email address).
Weedley is supported by a company specializing in marketing activities and communication activities. Their access to personal information is very limited and mostly anonymized.
We use external payment services to fulfill transactions (e.g., credit card payments, PayPal).
To protect your personal information, we take reasonable precautions and follow
Industry-best practices to make sure it is not inappropriately lost, misused, accessed,
disclosed, altered, or destroyed.
If you provide us with your credit card information, the information is encrypted using
secure socket layer technology (SSL) and stored with the highest level of encryption.
Although no method of transmission over the internet or electronic storage is 100%
secure, we follow all PCI-DSS requirements and implement additional, generally
accepted industry standards. Account-related information is shielded with a hashing
method. This method transforms information into a generated hash. As a result,
sensitive information is secured and is even invisible to us. Moreover, our databases
are exceptionally protected against unauthorized persons. For example, access to the
database is only possible and permitted by approved IP addresses (e.g., at Weedley’s
headquarters). Other attempts and addresses are refused at all times.
Additionally, data has been anonymized as much as possible. Thus, the data cannot be
directly linked to a specific consumer. With this data, however, we could perform market
research and analysis. Furthermore, third-party stakeholders (e.g., mailing service) are
screened prior to our collaboration, are GDPR compliant, and are provided with a processor agreement. Within Weedley, employees are assigned different access permissions. The specific permission provides access only to the strictly needed information required to perform a task.
Digital security measures are subject to changes and must meet high requirements to
guarantee the safety of online customers. Therefore, we appointed a security manager.
Periodical checking and improving of security measures (when necessary) is part of the
frequently. Changes and clarifications will take effect immediately upon their posting on
the website. If we make material changes to this policy, we will notify you here that it has
been updated, so that you are aware of what information we collect, how we use it, and
under what circumstances, if any, we use and/or disclose it.
You can contact us electronically by sending an e-mail to: firstname.lastname@example.org
Let us know what's on your mind and
We'll reply by the end of the next
working day, often much sooner