Privacy policy


 Version: 10.06.2026
Questions regarding our policies:
legal@avolie.de

Responsible Person:
Managing Partner Damian Jordan

Privacy Policy

At Avolié, we are committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy complies with the requirements of the General Data Protection Regulation (GDPR) and explains how we collect, use, store and protect your personal data when you visit our website or purchase products from our online store.

Controller

The controller responsible for data processing within the meaning of the GDPR is:

Avolié GbR
Knappstr. 5, 34519 Diemelsee, Germany
Email: support@avolie.de
Phone: +49 151 58497457

Information We Collect

When you visit our website or place an order, we collect certain personal data, including:

  • Name
  • Contact details, such as email address, phone number and shipping address
  • Payment-related information, such as billing address and payment method details
  • Information voluntarily provided by you, such as reviews, messages, support requests or form submissions

Technical Data and Security Logs

To protect our website, our customer accounts and our systems, and to detect and prevent spam, fraud attempts, abusive contact requests and other security incidents, we additionally collect and store technical information when you use our website and, in particular, when you use forms.

This may include, in particular, the following data:

  • Public IP address
  • Date and time of access or request
  • Browser type and browser version (user agent)
  • Operating system
  • Device type and technical device characteristics
  • Browser language settings
  • Time zone
  • Screen resolution
  • Technical device identifiers and security features, in particular device fingerprint data
  • Security status, security score and indications of possible abusive use of forms

These data are processed exclusively for security, documentation and evidence purposes. The processing is based on our legitimate interest pursuant to Art. 6(1)(f) GDPR. Our legitimate interest consists of ensuring the proper operation of our website, protecting against automated attacks, spam, fraud attempts and abusive use of our systems, as well as establishing, exercising or defending legal claims.

The technical data mentioned above are not used for advertising purposes and are not used to create advertising user profiles.

How We Use Your Information

We process the data we collect on the basis of the following legal grounds:

  • Performance of a contract (Art. 6(1)(b) GDPR): To process and fulfill your orders.
  • Compliance with legal obligations (Art. 6(1)(c) GDPR): To comply with tax, accounting and commercial retention obligations.
  • Consent (Art. 6(1)(a) GDPR): For sending marketing offers and newsletters where you have given your consent.
  • Legitimate interest (Art. 6(1)(f) GDPR): To ensure website security, prevent spam, fraud, abuse and automated attacks, and document or investigate security-relevant incidents.

Data Security

To protect your personal data, we have implemented technical and organizational measures, including:

  • Encryption of data during transmission
  • Strict access controls to prevent unauthorized access
  • Security monitoring and abuse-prevention mechanisms

Disclosure to Third Parties

Your personal data will only be disclosed to third parties in accordance with applicable data protection laws and in the following cases:

  1. Where this is necessary to process your order, such as sharing shipping information with logistics providers.
  2. Where we are legally required to do so.
  3. Where this is required to investigate abuse, fraud or security incidents, or where we are legally required to disclose information to competent authorities.

All third parties who process personal data on our behalf act as processors and are subject to strict data protection requirements.

Use of Cookies and Similar Technologies

Our website uses cookies to improve your user experience. Cookies are small text files stored on your device that help us better understand the use of our website and optimize its functionality.

You can change your cookie settings by adjusting the cookie settings on our website or by disabling cookies in your browser. Please note that some functions of our website may not work properly without cookies.

Our website is operated via Shopify, which sets its own cookies to enable and improve the operation of the website. Shopify may also use cookies for analytics and marketing purposes, including Google Analytics and Facebook Pixel. Further information about Shopify’s use of cookies can be found in Shopify’s Privacy Policy.

Shopify may transfer data to third countries, such as Canada or the United States. These transfers are carried out on the basis of safeguards recognized under applicable data protection law, including EU Standard Contractual Clauses where required, in order to ensure an adequate level of data protection.

We have data processing agreements in place with service providers who process personal data on our behalf, where required under Art. 28 GDPR.

Retention Periods

We store your personal data only for as long as necessary to fulfill the purposes described above or as required by law. The retention periods are based on the following principles:

  1. Order and transaction data: retained for up to 10 years to comply with tax and accounting obligations.
  2. Customer data: stored for as long as you remain an active customer. After 2 years of inactivity, we reserve the right to delete your data.
  3. Marketing data: stored until you withdraw your consent or for up to 2 years after the last activity.
  4. Security and log data, such as IP addresses, device fingerprints, technical browser data, security scores and form logs: stored for up to 12 months for abuse, fraud and attack detection, unless longer storage is required by law or necessary to investigate specific security incidents.

Your Rights

Under the GDPR, you have the following rights:

  1. Right of access to the personal data we store about you (Art. 15 GDPR).
  2. Right to rectification of inaccurate data (Art. 16 GDPR).
  3. Right to erasure of your data where legally permissible (Art. 17 GDPR).
  4. Right to restriction of processing (Art. 18 GDPR).
  5. Right to object to processing (Art. 21 GDPR).
  6. Right to withdraw consent where processing is based on your consent (Art. 7(3) GDPR).

If you wish to exercise any of these rights or have questions about this Privacy Policy, please contact us using the contact details provided above.

Payment Processing

Payments on our website are processed by third-party providers such as PayPal. These payment service providers collect, store and process your payment data in accordance with their own privacy policies. We do not store sensitive payment card information.

Changes to This Policy

We reserve the right to update this Privacy Policy at any time. All changes will be published on this page. We recommend that you review this Privacy Policy regularly to stay informed about any updates. The updated policy takes effect immediately upon publication.

Consent

By using our website or purchasing from our online store, you acknowledge the collection, processing and use of your personal data in accordance with this Privacy Policy, where legally applicable.

If you wish to exercise your rights, please send an email to info@avolie.de with suitable proof of identity in order to prevent misuse.

You also have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR). The competent authority may be, for example, the data protection authority of your place of residence or of our company’s registered office.