Kruos

Menu
Facebook Instagram Tiktok




PRIVACY POLICY


1. Introduction

This Privacy Policy explains how we process your personal data when you visit our website, create an account, place an order, or otherwise interact with our services.
We are committed to ensuring compliance with the EU General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and other applicable privacy laws.

By using this website, you acknowledge that you have read and understood this Privacy Policy.

 

 

2. Data Controller

The entity responsible for the processing of your personal data (“Controller”) is:

KRUOS
Lassallestrasse 7
76187, Karlsruhe, Germany
Email: kontakt@kruos.de
Phone: +49-153-10174634

For all inquiries regarding data protection, you may contact us using the details above.

 

 

3. Categories of Personal Data We Process

We may process the following categories of personal data:

 

3.1 Data Provided Directly by You

 

  • First and last name
  • Billing address and shipping address
  • Email address
  • Phone number
  • Account login credentials
  • Order details and communication history
  • Messages sent via contact forms

 

3.2 Automatically Collected Data

 

When you visit our website, we may automatically collect:

  • IP address
  • Browser type and version
  • Device identifiers and operating system
  • Date and time of access
  • Referring URL (“referrer”)
  • Pages viewed and page interaction data

 

3.3 Payment Data

 

Payment information is processed exclusively by secure third-party payment providers such as PayPal, Stripe, etc.
We do not store or have access to your full payment card details.

 

3.4 Cookies and Similar Technologies

 

We use cookies for:

  • Essential website functionality
  • Analytics and performance monitoring
  • Shopping cart functionality
  • Fraud prevention
  • (Optional) marketing and remarketing purposes

Details are provided in our Cookie Policy.

 

 

4. Purposes of Data Processing

We process your personal data for the following purposes:

 

4.1 Contract Fulfillment (Art. 6(1)(b) GDPR)

 

  • Processing and completing orders

  • Payment handling

  • Shipping and delivery

  • Customer service and communication

  • Warranty and product support

 

4.2 Legal Obligations (Art. 6(1)(c) GDPR)

 

  • Invoicing and tax law compliance

  • Commercial record-keeping obligations

  • Fraud detection and reporting

 

4.3 Legitimate Interests (Art. 6(1)(f) GDPR)

 

We may process personal data to:

  • Improve website performance

  • Prevent fraudulent or abusive behavior

  • Secure and maintain IT systems

  • Analyze user behavior for optimization

 

4.4 Consent (Art. 6(1)(a) GDPR)

 

When required by law, we request your consent for:

  • Analytics cookies

  • Marketing cookies

  • Newsletter subscriptions

  • Specific optional features

Consent may be withdrawn at any time.

 

 

5. Sharing of Personal Data with Third Parties

We share data only when necessary and only with trusted third-party service providers:

 

5.1 Payment Processors

 

  • PayPal

  • Stripe

  • Klarna 

These providers receive necessary billing details to process payments securely.

 

5.2 Shipping and Logistics Providers

 

  • DHL

  • DPD

  • UPS

They receive your name, address, and contact details for delivery purposes.

 

5.3 Technical Service Providers

 

  • Website hosting providers

  • Email service providers

  • Security and anti-fraud services

  • Content delivery networks (CDNs)

 

5.4 Analytics and Tracking Providers

 

  • Google Analytics 

  • Meta Pixel 

  • Other analytics tools

We ensure that these providers comply with GDPR requirements.

 

5.5 Legal Compliance

 

We may disclose data if required by law or necessary to establish, exercise, or defend legal claims.

We do not sell personal data to third parties.

 

 

6. Data Retention

We retain personal data only as long as necessary for:

  • Contract fulfillment

  • Legal obligations (tax retention periods: 6–10 years in Germany)

  • Warranty claims

  • Legitimate business interests

When data is no longer required, it is securely deleted or anonymized.

 

 

7. Your GDPR Rights

Under GDPR, you have the following rights:

 

7.1 Right to Access (Art. 15 GDPR)

 

You can request information about the personal data we store about you.

 

7.2 Right to Rectification (Art. 16 GDPR)

 

You can request correction of inaccurate or incomplete data.

 

7.3 Right to Erasure (“Right to be Forgotten”, Art. 17 GDPR)

 

You may request deletion of your personal data under certain conditions.

 

7.4 Right to Restriction of Processing (Art. 18 GDPR)

 

7.5 Right to Data Portability (Art. 20 GDPR)

 

7.6 Right to Object (Art. 21 GDPR)

 

You may object to processing based on legitimate interest.

 

7.7 Right to Withdraw Consent (Art. 7(3) GDPR)

 

Consent-based data processing can be withdrawn at any time.

 

7.8 Right to Lodge a Complaint

 

You may file a complaint with the supervisory authority in your country of residence.
For Germany: Der Bundesbeauftragte für den Datenschutz und die Informationsfreiheit (BfDI).

To exercise any of your rights, contact us at:
kontakt@kruos.de

 

 

8. Cookies and Tracking Technologies

Our website uses cookies and similar technologies.
The purposes, categories, and retention periods are described in detail in our Cookie Policy.

You may manage or disable cookies via:

  • Browser settings

  • Consent banner settings

  • Cookie management tools

Some cookies are essential and cannot be disabled.

 

 

9. Embedded Content & External Services

Our website may integrate:

  • Embedded product videos

  • Google Fonts / CDN-hosted fonts

  • CAPTCHA verification tools

  • Maps and dynamic content

These providers may collect data such as your IP address.
Where required, we load these services only after user consent.

 

 

10. Data Security

We take appropriate technical and organizational measures to protect your personal data against:

  • Unauthorized access

  • Loss or destruction

  • Manipulation

  • Cyberattacks

This includes encryption, secure servers, access control, and regular security monitoring.

 

 

11. International Data Transfers

If personal data is transferred outside the EU/EEA:

  • Transfers occur only to countries with an adequacy decision,
    or

  • Under standard contractual clauses approved by the European Commission.

We ensure data protection standards equivalent to GDPR.

 

 

12. Updates to This Privacy Policy

We may update this Privacy Policy to reflect changes in legal obligations or business operations.
The latest version is always available on this page.
Continued use of our website constitutes acceptance of the updated version.

 

 

 

 

0
    0
    Your Cart
    Your cart is empty
    Shipping, taxes, and discounts calculated at checkout.
    Continue Shopping