PERSONAL DATA PROCESSING POLICY

Data Controller and Contact Details

Data We Collect and
Legal Basis

How We Collect Data

Recipients of Personal Data

International Data Transfers

Cookies and Tracking Technologies

Data Retention

Your Rights Under GDPR

Complaints

Changes to This Policy

This Privacy Policy explains how B2TECH EUROPE UAB ('B2TECH', 'we', 'us', or 'our') collects, uses, shares, and protects your personal data when you visit our website or use our services, in compliance with the EU General Data Protection Regulation (GDPR) and other applicable data protection laws.

Data Controller and Contact Details

- Legal Name: B2TECH EUROPE UAB - Address: Vilnius, Mėsinių g. 5, LT-01133, Lithuania - Email: support@b2fintech.com - Data Protection Officer: compliance@groupb2.com

If you have any questions, concerns, or requests regarding your personal data, please contact us using the details above.

Data We Collect and Legal Basis

We only collect personal data that is necessary for the purposes described below. The table outlines the categories of data, purposes of processing, and corresponding legal bases under GDPR.

Category of Data

Browser data (IP
address, timestamp,
browser version)

Contact details (name, email)

Order details (name,
address, phone)

Payment data (IBAN,
invoice number)

Account credentials (username, encrypted password)

Analytics data (cookie ID, usage patterns)

Purpose

Ensure website functionality and security

Respond to enquiries

Fulfilment of orders

Process payments

Customer account
access

Website analytics

Legal Basis

Art. 6(1)(f) – Legitimate interests

Art. 6(1)(b) – Contract performance

Art. 6(1)(c) – Legal
obligation

Art. 6(1)(b) – Contract performance

Retention Period

Up to 12 months

12 months from last contact

7 years (legal requirement)

7 years (tax law)

Until account deletion

How We Collect Data

We collect data directly from you when you use our website, fill in forms, place an order, or contact our support team. We may also receive limited data from third parties, such as when someone sends you a gift card.

Recipients of Personal Data

We may share your data with:

- Postal and courier services for order delivery
- Payment processors for payment execution
- IT hosting and support providers
- Affiliated companies within the B2TECH network

All recipients are bound by GDPR-compliant agreements.

International Data Transfers

Some processing may occur in countries outside the European Economic Area (EEA). Where this happens, we ensure appropriate safeguards, such as EU Commission adequacy decisions or Standard Contractual Clauses (SCCs), are in place to protect your personal data.

Cookies and Tracking Technologies

We use essential cookies for website operation and analytics cookies only with your consent. You can manage cookie preferences via our Cookie Banner. For more details, see our Cookie Policy.

Data Retention

We retain personal data only for as long as necessary for the purposes outlined above or as required by law. Specific retention periods are set out in the table in Section 2.

Your Rights Under GDPR

You have the right to access, rectify, erase, restrict processing, object to processing, and request data portability. You can also withdraw consent at any time where rocessing is based on consent. Requests will be processed within one month, extendable by two months where necessary.

Complaints

If you believe your rights have been violated, you can lodge a complaint with your local Data Protection Authority.

Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via our website or email notification.

PERSONAL DATA
PROCESSING POLICY

Data Controller and Contact Details

Data We Collect and
Legal Basis

How We Collect Data

Recipients of Personal Data

International Data Transfers

Cookies and Tracking Technologies

Data Retention

Your Rights Under GDPR

Complaints

Changes to This Policy

Data Controller and Contact Details

Data We Collect and Legal Basis

We only collect personal data that is necessary for the purposes described below. The table outlines the categories of data, purposes of processing, and corresponding legal bases under GDPR.

Category of Data

Browser data (IP
address, timestamp,
browser version)

Contact details (name, email)

Order details (name,
address, phone)

Payment data (IBAN,
invoice number)

Account credentials (username, encrypted password)

Analytics data (cookie ID, usage patterns)

Purpose

Ensure website functionality and security

Respond to enquiries

Fulfilment of orders

Process payments

Customer account
access

Website analytics

Legal Basis

Art. 6(1)(f) – Legitimate interests

Art. 6(1)(b) – Contract performance

Art. 6(1)(c) – Legal
obligation

Art. 6(1)(b) – Contract performance

Retention Period

Up to 12 months

12 months from last contact

7 years (legal requirement)

7 years (tax law)

Until account deletion

How We Collect Data

Recipients of Personal Data

International Data Transfers

Cookies and Tracking Technologies

We use essential cookies for website operation and analytics cookies only with your consent. You can manage cookie preferences via our Cookie Banner. For more details, see our Cookie Policy.

Data Retention

We retain personal data only for as long as necessary for the purposes outlined above or as required by law. Specific retention periods are set out in the table in Section 2.

Your Rights Under GDPR

Complaints

If you believe your rights have been violated, you can lodge a complaint with your local Data Protection Authority.

Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via our website or email notification.

PERSONAL DATA PROCESSING POLICY

Data Controller and Contact Details

Data We Collect and Legal Basis

We only collect personal data that is necessary for the purposes described below. The table outlines the categories of data, purposes of processing, and corresponding legal bases under GDPR.

Category of Data

Browser data (IP
address, timestamp,
browser version)

Contact details (name, email)

Order details (name,
address, phone)

Payment data (IBAN,
invoice number)

Account credentials (username, encrypted password)

Analytics data (cookie ID, usage patterns)

Purpose

Ensure website functionality and security

Respond to enquiries

Fulfilment of orders

Process payments

Customer account
access

Website analytics

Legal Basis

Art. 6(1)(f) – Legitimate interests

Art. 6(1)(b) – Contract performance

Art. 6(1)(c) – Legal
obligation

Art. 6(1)(b) – Contract performance

Retention Period

Up to 12 months

12 months from last contact

7 years (legal requirement)

7 years (tax law)

Until account deletion

How We Collect Data

Recipients of Personal Data

International Data Transfers

Cookies and Tracking Technologies

We use essential cookies for website operation and analytics cookies only with your consent. You can manage cookie preferences via our Cookie Banner. For more details, see our Cookie Policy.

Data Retention

We retain personal data only for as long as necessary for the purposes outlined above or as required by law. Specific retention periods are set out in the table in Section 2.

Your Rights Under GDPR

Complaints

If you believe your rights have been violated, you can lodge a complaint with your local Data Protection Authority.

Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via our website or email notification.