Privacy Policy

Last updated: February 26, 2026

Your Daily Beauty (“YDB”) is committed to protecting your personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR). This Privacy Policy explains how we collect, process, use, store, and protect your personal information when you visit our website, create an account, place an order, or otherwise interact with our services (collectively, the “Services”).

By accessing or using our Services, you acknowledge that you have read and understood this Privacy Policy.

We do not sell or trade personal data. Data may be shared with payment providers, shipping partners, hosting providers, accounting services, and marketing platforms. Customers have the right to access, rectify, erase, restrict processing, withdraw consent, and request data portability.

1. Data Controller

Your Daily Beauty

Company Name: BKO Handel & Vertrieb GmbH

Address: Nächst Neuendorfer Landstr. 11

Email: support@yourdailybeauty.co

2. Categories of Personal Data We Collect

We collect personal data that you voluntarily provide to us, as well as certain data collected automatically when you use our Services.

A. Information You Provide Directly

  • Full name
  • Billing and shipping address
  • Email address
  • Telephone number
  • Account login credentials
  • Order history and purchase details
  • Customer service communications
  • Product reviews or feedback

B. Payment Information

Payments are processed securely via third-party providers (e.g., Shopify Payments, Stripe, PayPal).

We do not store full credit card numbers.

C. Automatically Collected Information

  • When you access our website, we may automatically collect:
  • IP address
    • Device type and operating system
    • Browser type
    • Referring website
    • Time zone
    • Pages visited and interaction data
    • Cookie identifiers
  • This information helps us ensure security, prevent fraud, and improve user experience.

3. Legal Basis for Processing

We process personal data on the following legal grounds:

  • Contractual necessity (Art. 6(1)(b) GDPR) – order processing and delivery
  • Legal obligation (Art. 6(1)(c) GDPR) – tax and accounting requirements
  • Legitimate interests (Art. 6(1)(f) GDPR) – fraud prevention, website security
  • Consent (Art. 6(1)(a) GDPR) – marketing communications and non-essential cookies

Our legitimate interests are balanced against your fundamental rights and freedoms.

4. Purpose of Processing

  • We use personal data to:
  • Process and ship orders
  • Manage customer accounts
  • Handle returns and refunds
  • Provide customer support
  • Prevent fraud and abuse
  • Improve website functionality
  • Send marketing communications (if consented)

5. Data Sharing

We may share your data with carefully selected third parties where necessary:

  • Shopify (e-commerce platform provider)
  • Payment processors
  • Shipping and logistics partners 
  • IT and cloud hosting providers
  • Marketing service providers
  • Accounting and legal advisors

All service providers are contractually bound to process data in compliance with GDPR.

6. International Transfers

If personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Transfers to countries with adequacy decisions

7. Data Retention

We retain personal data only as long as necessary:

Order and invoice data: up to 10 years (German commercial and tax law)

  • Customer accounts: until deletion request
  • Marketing data: until consent withdrawal

After expiration of retention periods, data is securely deleted or anonymized.

8. Your Rights Under GDPR

You have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Request erasure
  • Restrict processing
  • Object to processing
  • Withdraw consent
  • Data portability

Requests can be sent to: support@yourdailybeauty.co

You also have the right to lodge a complaint with the competent supervisory authority in Germany.

We may require verification of your identity before processing your request, in accordance with Article 12(6) GDPR.

9. Data Security

We implement appropriate technical and organizational measures including:

  • SSL encryption
  • Secure hosting infrastructure
  • Access controls
  • Fraud monitoring systems

10. Cookies & Tracking Technologies

We use cookies and similar technologies to:

  • Enable checkout functionality
  • Maintain session security
  • Analyze website performance
  • Deliver personalized advertising (where consent is given)You may manage cookie preferences through your browser settings or cookie banner.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect legal, operational, or technical changes.

The updated version will be published on this page with a revised “Last updated” date.