Privacy Policy
Controller: Bloxarynkrexfrax, Kamreerintie 3, 02770 Espoo, Finland.
Contact channels: info@bloxarynkrexfrax.world, contact@bloxarynkrexfrax.world, support@bloxarynkrexfrax.world, help@bloxarynkrexfrax.world.
This statement explains which personal data we process when you browse, order Derixy, or contact our desk. It follows the EU General Data Protection Regulation (GDPR) and applicable Finnish national law.
Geographic scope
The controller is based in Espoo, Finland. Web forms, cookies, and fulfilment emails primarily support shoppers inside the European Economic Area. If you request shipment elsewhere, local customs or carrier rules may require extra identifiers; those details are listed on waybills only to the extent carriers mandate.
Product topic & advertising context
This shop sells food supplements. We do not collect data to infer sensitive health conditions, and we do not personalise experiences around specific diseases. Marketing or analytics pixels enabled through our cookie banner are used for aggregated measurement and may support placements on platforms such as Google Ads. We aim to keep ad copy, landing pages, and on-site wording consistent with platform policies for dietary supplements, including avoidance of therapeutic or absolute-outcome claims in promotional text.
Last comprehensively reviewed: .
Data we collect
| Category | Examples | Source |
|---|---|---|
| Identity & contact | Name, email, optional phone | Forms you submit |
| Transaction data | Order references, delivery notes | Fulfilment workflow |
| Technical data | IP address, device type, browser | Server and necessary cookies |
Purposes and legal bases
We process data to perform contracts (Article 6(1)(b) GDPR), comply with accounting or tax obligations (Article 6(1)(c)), and pursue legitimate interests such as securing the website and documenting quality queries (Article 6(1)(f)). Where optional analytics or marketing cookies are used, we rely on consent (Article 6(1)(a)), which you may withdraw anytime through the cookie banner.
Retention
Inquiry emails are preserved for twenty-four months unless a longer period is required for unresolved disputes. Order records follow Finnish bookkeeping rules, currently up to six years from the closing of the financial period. Server logs rotate after ninety days unless a security review requires a longer snapshot.
Sharing & transfers
Trusted processors assist with hosting, email delivery, and carrier booking. They may operate within the EU or in countries deemed adequate by the European Commission; otherwise we rely on Standard Contractual Clauses. We do not sell personal data.
Security measures
Access to order folders is limited to trained staff, connections use transport encryption, and backups are encrypted at rest. Incident response steps include isolating affected systems and notifying supervisory authorities when GDPR thresholds are met.
Your rights
You may request access, rectification, erasure, restriction, portability, or object to certain processing. You may lodge a complaint with the Office of the Data Protection Ombudsman (Finland). To exercise rights, email any listed contact with subject line “GDPR request”.
Automated decision-making
We do not use solely automated decisions that produce legal effects regarding Derixy shoppers.
Children
Services are aimed at adults; we do not knowingly collect data from anyone under sixteen.
Updates
Material revisions are posted on this page with an updated review stamp. Continued use after notice indicates acceptance of practical changes that do not reduce your statutory rights.