Privacy Policy

1. Introduction

At EuroSanit we take your privacy seriously. This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit our website or place an order.

We comply with the General Data Protection Regulation (GDPR) and Belgian data protection laws.

2. Information We Collect

Information you provide

• Name, email address, phone number
• Billing and shipping addresses
• Account password (stored encrypted, never in readable form)
• Order history and preferences

Information collected automatically

• IP address and browser type
• Pages visited and time spent on the site
• Device information
• Cookies and similar technologies

Payment information

Card details are collected and processed by Stripe (a PCI-DSS certified payment processor). We do not store credit-card numbers on our servers.

3. How We Use Your Information

• Order processing: fulfilling orders, sending confirmations, handling returns
• Account management: keeping your account, saved addresses and order history
• Customer service: answering questions, providing support, resolving issues
• Marketing: sending promotional emails with your explicit consent — you can unsubscribe at any time
• Security: preventing fraud, enforcing our terms, protecting our rights

4. Data Sharing

We only share your data with trusted service providers that help us operate the store:

• Odoo (ERP): customer and order records
• Stripe: payment processing
• Cloudinary: product image delivery
• Email providers: order confirmation and transactional email
• Shipping carriers: delivering your orders

We do not sell your personal data to third parties for marketing purposes.

5. Data Security

• Data encrypted in transit (HTTPS/TLS) and at rest
• Passwords hashed with PBKDF2-SHA512
• Access controls and authentication required for internal systems
• Regular security updates and monitoring
• EU-based servers for data storage

6. Your Rights under GDPR

You have the right to:

• Access: request a copy of your personal data
• Rectification: correct inaccurate or incomplete data
• Erasure: ask us to delete your data
• Restriction: limit how we use your data
• Portability: receive your data in a structured format
• Object: object to processing based on legitimate interests
• Withdraw consent: unsubscribe from marketing at any time

To exercise any of these rights, email info@eurosanit.be.

7. Cookies

• Essential cookies: required for checkout and login
• Analytics cookies: help us understand site usage
• Preference cookies: remember language and settings

You can control cookies through your browser settings.

8. Data Retention

• Active accounts: retained while the account is active
• Inactive accounts: may be deleted after 3 years of inactivity
• Invoices and tax records: retained for 7 years (Belgian tax law)
• Marketing: unsubscribing removes you immediately

9. Supervisory Authority

If you have concerns about how we handle your data, you can contact the Belgian supervisory authority:

10. Contact Us

We respond to all requests within 30 days.