Last updated: 23 January 2026

 

This Privacy Policy explains how Waido Kits (“Company,” “we,” “us,” or “our”) collects, uses, stores, and protects personal data in accordance with Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR) and applicable Czech data protection laws.

 

⸻

 

1. Data Controller

 

The data controller responsible for processing personal data is:

 

Anastasiia Shteba

Operating as Waido Kits

VAT ID: CZ9558091334

Business address: Vysocanska 237/101, 190 00 Prague, Czech Republic

 

For privacy-related inquiries, customers may contact us using the contact details provided on our website.

 

⸻

 

2. Personal Data We Collect

 

We may collect and process the following categories of personal data:

    •    Identification data (name, surname)

    •    Contact data (email address, phone number)

    •    Billing and shipping address

    •    Order and transaction details

    •    Payment-related data (processed securely by third-party payment processors; we do not store full card details)

    •    IP address, device data, and browser information

    •    Communication records (emails, messages, support requests)

    •    Delivery, tracking, and customs-related information

 

Providing personal data is necessary to place an order and receive products or services.

 

⸻

 

3. Purposes and Legal Basis of Processing

 

Personal data is processed solely for legitimate purposes, including:

    •    Processing and fulfilling orders

    •    Manufacturing, shipping, and delivering products

    •    Customs clearance and international shipping compliance

    •    Payment processing and fraud prevention

    •    Customer communication and support

    •    Dispute resolution, chargeback handling, and insurance claims

    •    Compliance with legal, accounting, and tax obligations

 

Processing is based on one or more of the following legal grounds:

    •    Performance of a contract

    •    Compliance with legal obligations

    •    Legitimate interests, including fraud prevention, dispute management, and protection of legal claims

 

⸻

 

4. Data Sharing & Recipients

 

Personal data may be shared, strictly as necessary, with:

    •    Payment processors and banks

    •    Shipping carriers and logistics partners

    •    Customs authorities and government bodies

    •    Accounting, legal, and insurance service providers

    •    Payment networks and dispute resolution entities (e.g., in case of chargebacks)

 

Personal data is never sold to third parties.

 

⸻

 

5. International Data Transfers

 

Due to the international nature of our business, personal data may be transferred outside the European Economic Area (EEA), including to service providers located in the United States.

 

Such transfers are carried out in compliance with GDPR Chapter V, using appropriate safeguards, including:

    •    Adequacy decisions where applicable, or

    •    Standard Contractual Clauses (SCCs) approved by the European Commission

 

⸻

 

6. Data Retention

 

Personal data is retained only for as long as necessary to:

    •    Fulfill contractual obligations

    •    Comply with legal, accounting, and tax requirements

    •    Handle disputes, chargebacks, and insurance claims

 

Retention periods may vary depending on the type of data and applicable legal obligations.

 

⸻

 

7. Data Subject Rights

 

Under GDPR, customers have the right to:

    •    Access their personal data

    •    Request correction of inaccurate data

    •    Request deletion of data, where legally permitted

    •    Restrict or object to processing

    •    Request data portability, where applicable

    •    Lodge a complaint with a competent EU supervisory authority

 

Requests may be submitted in writing using the contact details provided on our website. Identity verification may be required.

 

⸻

 

8. Data Security

 

We implement appropriate technical and organizational security measures to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure.

 

However, no method of transmission over the internet or electronic storage is completely secure, and absolute security cannot be guaranteed.

 

⸻

 

9. Cookies & Website Analytics

 

Our website may use cookies or similar technologies to:

    •    Ensure proper website functionality

    •    Improve user experience

    •    Analyze website traffic and performance

 

Where required by law, users will be presented with cookie consent options. Further details may be provided in a separate Cookie Policy.

 

⸻

 

10. Third-Party Services

 

Our website may contain links to third-party websites or services. We are not responsible for the privacy practices or content of third parties. Customers are encouraged to review the privacy policies of any third-party services they use.

 

⸻

 

11. Changes to This Privacy Policy

 

We reserve the right to update or modify this Privacy Policy at any time. The latest version will always be published on our website with the updated revision date.

 

⸻

 

12. Contact

 

For questions regarding this Privacy Policy or the processing of personal data, customers may contact us using the contact details provided on our website.