Privacy Policy

1. Data controller

The data controller for this website within the meaning of the GDPR is:

Dayalu – Eva Schindler

Randhartingergasse 13/70, 1100 Vienna, Austria

0043677/61951901

hello@be-dayalu.com

2. Hosting and infrastructure

We use the services of external partners to provide our online store. Personal data is processed on the servers of these providers.

Shopify

Our store is hosted on the platform of Shopify International Limited (Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland).

Purpose: Provision of the shop system, shopping cart function, payment processing, and hosting.

Data transfer: Shopify may also process data in the USA. For this purpose, standard contractual clauses of the EU Commission are used as a guarantee for an adequate level of data protection.

Details: Further information can be found in Shopify's privacy policy.

GoDaddy (domain management)

Our domain is managed by GoDaddy.com, LLC. When you visit the website, technically necessary data (e.g., IP address) is processed in order to establish a connection to our shop.

Hostinger (email hosting)

We use Hostinger to send and receive emails. If you contact us by email, your details (email address, name, message content) will be stored on Hostinger's servers in order to process your request.

3. Collection and storage of personal data

When you visit our website and make purchases, we collect the following data:

Order information: Name, billing and delivery address, payment details, email address, and phone number (legal basis: Art. 6(1)(b) GDPR – performance of a contract).

Server log files: Your browser automatically sends information (IP address, date/time, browser type). This serves to ensure the security and stability of our website (legal basis: Art. 6 (1) (f) GDPR).

4. Cookies and analysis tools

Shopify uses cookies to ensure the functionality of the shopping cart and to improve the user experience.

Necessary cookies: These are essential for the operation of the shop.

Analysis/marketing: If you have agreed to our cookie banner, we use tools to evaluate visitor behavior. You can revoke your consent at any time.

5. Your rights (rights of data subjects)

  • Under the GDPR, you as a data subject in Austria have the following rights:
  • Right to information: You can find out what data we store about you.
  • Rectification: Correction of incorrect data.
  • Erasure: “Right to be forgotten,” provided that there is no legal obligation to retain data (e.g., accounting).
  • Restriction of processing.
  • Data portability.
  • Right to object.

6. Storage period

We only store personal data for as long as is necessary for the fulfillment of the contract or due to statutory retention periods (in Austria, this is generally 7 years in accordance with § 132 BAO for accounting documents).