We use cookies

    We use cookies to enhance your experience. See our Cookie Policy.

    Baltic BioLabsBaltic BioLabs

    Privacy Policy

    Last updated: January 2025

    Introduction

    Baltic BioLabs ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, and safeguard your information in compliance with the General Data Protection Regulation (GDPR) and other applicable EU data protection laws.

    GDPR Compliance

    As an EU-registered business, we fully comply with GDPR requirements. Your personal data is:

    • Processed lawfully, fairly, and transparently
    • Collected for specific, explicit, and legitimate purposes
    • Limited to what is necessary for processing
    • Kept accurate and up to date
    • Stored securely and only for as long as necessary
    • Stored exclusively on EU-based servers

    Data Controller

    Baltic BioLabs

    Email: privacy@balticbiolabs.eu

    Your Rights

    Under GDPR, you have the right to:

    • Access your personal data - Request a copy of all data we hold about you
    • Correct inaccurate data - Request correction of incomplete or inaccurate information
    • Request deletion of your data - Exercise your "right to be forgotten"
    • Object to processing - Object to certain types of data processing
    • Data portability - Request export of your data in a machine-readable format

    Contact privacy@balticbiolabs.eu to exercise these rights.

    Data We Collect

    Personal Information

    • Name, email address, phone number
    • Shipping and billing addresses
    • Account credentials (encrypted)
    • Order information (products purchased, amounts, shipping address)
    • Payment information (processed by Stripe - we never store card details)
    • Communication records (emails with support team)

    Technical Information

    • IP address and browser type
    • Device information and operating system
    • Cookies and similar tracking technologies
    • Website usage data and analytics

    How We Use Your Data

    We process your personal data for the following purposes:

    • To process and fulfill your orders
    • To send order confirmations and shipping updates
    • To respond to customer service inquiries
    • To comply with legal obligations
    • Communicating with you about your account and orders
    • Sending newsletters and marketing communications (with consent)
    • Improving our website and services
    • Fraud prevention and security

    Data Storage and Security

    EU-Based Storage: All personal data is stored exclusively on servers located within the European Union, ensuring full compliance with EU data protection regulations.

    We implement industry-standard security measures including:

    • SSL/TLS encryption for data transmission
    • Encrypted storage of sensitive information
    • Regular security audits and updates
    • Restricted access controls
    • Secure payment processing through certified providers

    Data Retention

    We retain your data for:

    • Order data: 7 years (EU tax compliance requirement)
    • Account data: Until you request deletion
    • Marketing data: Until you unsubscribe

    After the retention period, your data will be securely deleted unless we are legally required to retain it longer or there is an ongoing legal claim or investigation.

    Cookies

    We use cookies to enhance your browsing experience. You can manage your cookie preferences through our cookie consent banner or by visiting our Cookie Policy.

    Third-Party Services

    We may share your data with trusted third-party service providers who assist us in:

    • Payment processing (Stripe)
    • Shipping and delivery
    • Email communications
    • Website analytics

    All third-party processors are GDPR-compliant and bound by data processing agreements.

    International Data Transfers

    Your personal data is stored and processed within the European Union. We do not transfer personal data outside the EU/EEA unless necessary and with appropriate safeguards in place.

    Children's Privacy

    Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

    Contact Information

    For questions about this Privacy Policy or to exercise your rights, contact us:

    Baltic BioLabs

    EU Registered Business

    privacy@balticbiolabs.eu

    General inquiries: support@balticbiolabs.eu

    Order questions: orders@balticbiolabs.eu

    Changes to This Policy

    We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on this page and updating the "Last updated" date.

    Supervisory Authority

    If you believe we have not addressed your concerns adequately, you have the right to lodge a complaint with your local data protection supervisory authority.