Privacy Policy
Last updated: 11 June 2026
1. Data controller
The data controller for personal data processed through this store is:
cursortest-shipseed
Legal entity: [COMPANY LEGAL NAME]
Company registration number: [REGISTRATION NUMBER]
VAT number: [VAT NUMBER]
Registered address: [REGISTERED ADDRESS]
Email: [CONTACT EMAIL]
The store runs on the Limelite Storefront platform operated by Riviera Tech Solutions (rivieratech.solutions), which processes data on the controller's behalf as a data processor under a Data Processing Agreement.
2. What we process and why
- Account data (name, email, password hash) — to provide your customer account. Legal basis: contract performance.
- Order and delivery data (items, addresses, order history) — to fulfil purchases, handle returns and meet bookkeeping obligations. Legal basis: contract performance and legal obligation.
- Payment data — processed by Stripe as an independent payment processor; we receive payment status and the last digits of your card only. Legal basis: contract performance.
- Support and contact messages — to answer your enquiries. Legal basis: legitimate interest.
- Analytics and marketing data (only with your consent via the cookie banner) — to improve the store. Legal basis: consent, withdrawable at any time.
3. Recipients
- Riviera Tech Solutions (Limelite platform) — hosting and operation, as processor.
- Stripe — payment processing.
- Shipping carriers — name and delivery address, to deliver your order.
- Email delivery providers — to send transactional email such as order confirmations.
- Google Analytics / Google AdSense — only when you consent to analytics or marketing cookies.
Where recipients are located outside the EU/EEA, transfers rely on adequacy decisions or EU Standard Contractual Clauses.
4. Retention
- Account data: until you delete your account.
- Order data: retained as long as required by bookkeeping and tax law (typically 7 years), then deleted or anonymised.
- Consent records: as long as needed to demonstrate compliance.
5. Your rights
Under the GDPR you have the right to:
- Access your data — you can download a copy of your data from your account page at any time (Account → Data & privacy → Export my data).
- Erasure — you can delete your account yourself from the account page; order records that must legally be retained are anonymised instead.
- Rectification, restriction, objection and data portability — contact us using the details above.
- Withdraw cookie consent at any time via the Cookie Policy page.
- Lodge a complaint with your supervisory authority (in Sweden: Integritetsskyddsmyndigheten, IMY).
6. Cookies
See the Cookie Policy for the cookies we use and how to change your preferences.
Template notice: this document is a starting point provided by the Limelite platform. Text in [BRACKETS] must be completed by the store operator, and the final wording should be reviewed by a qualified legal adviser before relying on it.