Privacy policy
PRIVACY POLICY PLANFEED d.o.o. – Planfeedo.com
1. Data Controller
Planfeed d.o.o. Donji Brinjani 44 44320 Brinjani (City of Kutina) Croatia OIB: 68541664749 Email: planfeedo@gmail.com Phone: +385 99 285 35 45
Planfeed d.o.o. is the data controller in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR).
2. Data We Collect
A) Data you provide when purchasing or registering:
- First and last name
- Email address
- Phone number
- Delivery address
- Billing address
- OIB / VAT ID (if applicable)
- User account details (if you create an account)
B) Payment data
Payments are processed via the Stripe payment system. When paying by card, you enter:
- First and last name
- Card details
- Billing address
Card details are not stored on our servers — they are processed by Stripe as a certified PCI DSS Level 1 payment provider, in accordance with their privacy policy and security standards.
C) Automatically collected data
- IP address
- Device and browser type
- Website usage data
- Data collected via cookies
3. Purpose of Data Processing
We use your data to:
- Process and deliver orders
- Issue invoices
- Communicate regarding your order
- Handle complaints and returns
- Fulfil legal obligations (accounting, taxes)
- Prevent fraud
- Marketing (only with your consent)
- Improve website functionality
- Process and receive contract withdrawal requests
4. Legal Basis for Processing (GDPR Art. 6)
Data is processed on the basis of:
- Performance of a contract (product purchase)
- Legal obligation (accounting, taxes)
- Your consent (newsletter, marketing)
- Legitimate interest (security, analytics)
5. Data Sharing
Data may be shared with:
- Stripe (payment processing)
- Delivery services
- Accounting service
- Shopify platform (hosting and technical support)
- IT partners
- Revoq (Receipt and processing of contract withdrawal data)
All partners process data in accordance with GDPR.
Revoq – Receipt and processing of contract withdrawal data To enable the electronic right of withdrawal in accordance with EU Directive 2023/2673, we use the Revoq application. When you use the "Withdraw contract" button, Revoq collects and processes the following data: first and last name, order number, and email address, solely for the purpose of processing the withdrawal request and sending an automatic confirmation. Data is stored within the EU and processed in accordance with applicable data protection regulations (GDPR). More information: https://www.consumer-withdrawal.eu/privacy
6. Cookies
Our Website uses cookies and similar technologies (e.g. pixels, local storage) to ensure the proper functioning of the Webshop, analyse website usage, and — with your consent — display personalised advertisements.
We use the following types of cookies:
Essential cookies These cookies are necessary for the operation of the Webshop (e.g. saving products to the cart, payment security, user login). Without them, the website cannot function properly. Legal basis: legitimate interest (Art. 6(1)(f) GDPR).
Analytical cookies These allow us to analyse website usage in order to improve functionality and user experience. Legal basis: your consent (Art. 6(1)(a) GDPR).
Marketing cookies Used to display personalised advertisements and remarketing campaigns via third parties (e.g. Meta, Google). Legal basis: your consent (Art. 6(1)(a) GDPR).
Non-essential cookies are only set after your explicit consent via the cookie banner.
You may withdraw or change your consent at any time via the cookie management tool on our website or through your browser settings.
Please note that blocking certain cookies may affect the functionality of the Webshop.
Some cookies are set by third parties (e.g. Shopify, Stripe, analytics and advertising providers), who process data in accordance with their own privacy policies.
7. Data Retention
We retain personal data for:
- 11 years (accounting data, as required by Croatian law)
- As long as a user account is active
- Until consent is withdrawn (marketing)
- As long as necessary to resolve disputes
8. Your Rights
You have the right to:
- Access your data
- Rectification of inaccurate data
- Erasure of data
- Restriction of processing
- Object to processing
- Data portability
- Withdrawal of consent
- Lodge a complaint with AZOP (Croatian Personal Data Protection Agency)
To exercise your rights, contact: 📧 planfeedo@gmail.com
9. Data Security
We use technical and organisational security measures including:
- SSL encryption
- Shopify platform security protocols
- Restricted access to data
10. International Data Transfers
Data may be processed outside the EU via Shopify and Stripe systems. In such cases, the European Commission's standard contractual clauses apply.
11. Children
This website is not intended for persons under the age of 16.
12. Policy Updates
We reserve the right to amend this Policy. The updated version will be published on this page.
Last update: 17.06.2026