Privacy Policy

This privacy policy explains how RAToM Europe ("we", "us", "our") collects, uses, and protects your personal data when you visit ratom.eu or shop.ratom.eu, in compliance with the EU General Data Protection Regulation (GDPR), the UK GDPR, the Swiss Federal Act on Data Protection (FADP), and applicable data protection laws of Norway and the EEA.

Data Controller

RAToM Europe
Takashi Sato
Schellingstr. 109A, 80798 Munich, Germany
Email: info@ratom.eu

What Data We Collect

Contact Form

When you use our contact form, we collect your name and email address to respond to your enquiry.

B2B Inquiry Form

When you submit a B2B inquiry (e.g. as a resole workshop), we collect your name, email address, and company name to assess the partnership opportunity and respond to your request.

Newsletter

If you subscribe to our newsletter, we collect your email address only. You can unsubscribe at any time via the link in each email.

Automatically Collected Data

When you visit our website, our hosting provider and analytics tools may automatically collect:

• IP address (anonymised)
• Browser type and version
• Operating system
• Referring URL
• Pages visited and time spent
• Date and time of access

Legal Basis for Processing

We process your personal data on the following legal bases under Article 6(1) GDPR:

• Consent (Art. 6(1)(a)): For newsletter subscriptions, analytics cookies, and marketing cookies. You may withdraw consent at any time.
• Contractual necessity (Art. 6(1)(b)): For processing orders placed through shop.ratom.eu.
• Legitimate interest (Art. 6(1)(f)): For responding to contact and B2B inquiries, website security, and anonymous usage analytics.
• Legal obligation (Art. 6(1)(c)): For retaining invoices and transaction records as required by German tax law.

Third-Party Services

Google Analytics 4

We use Google Analytics 4 (Google Ireland Limited) to understand how visitors use our website. IP addresses are anonymised. Google Analytics cookies are only set after you provide consent via our cookie banner. You can opt out at any time using the Google Analytics Opt-out Browser Add-on.

Meta Pixel (Facebook)

We use Meta Pixel (Meta Platforms Ireland Limited) for marketing analytics and ad targeting. This tool is only activated after you provide consent via our cookie banner. You can manage your ad preferences in your Facebook Ad Settings.

Shopify

Our online shop at shop.ratom.eu is operated via Shopify International Limited. When you place an order, Shopify processes your personal data (name, address, email, payment information) as a data processor on our behalf. For details, see Shopify's Privacy Policy.

Form Submissions

Contact and B2B inquiry form submissions may be processed via Supabase (Supabase Inc.) or Netlify Forms (Netlify Inc.). These services act as data processors under our instruction and store data on servers within the EU or under appropriate safeguards (Standard Contractual Clauses).

Data Transfers

Some of our third-party service providers are based outside the EU/EEA. Where personal data is transferred to third countries (e.g. the United States), we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission, or reliance on the EU-U.S. Data Privacy Framework where applicable.

Data Retention

• Contact form / B2B inquiries: Deleted 12 months after the last communication, unless an ongoing business relationship exists.
• Newsletter subscriptions: Retained until you unsubscribe.
• Order and transaction data: Retained for 10 years as required by German commercial and tax law (§ 147 AO, § 257 HGB).
• Analytics data: Automatically deleted after 14 months (Google Analytics default).
• Server logs: Deleted after 30 days.

Your Rights

Under the GDPR (and equivalent provisions in UK, Swiss, and Norwegian law), you have the following rights:

• Right of access (Art. 15): You may request a copy of the personal data we hold about you.
• Right to rectification (Art. 16): You may request correction of inaccurate data.
• Right to erasure (Art. 17): You may request deletion of your data ("right to be forgotten").
• Right to restriction (Art. 18): You may request that we restrict processing of your data.
• Right to data portability (Art. 20): You may request your data in a structured, commonly used, machine-readable format.
• Right to object (Art. 21): You may object to processing based on legitimate interests, including direct marketing.
• Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at info@ratom.eu. We will respond within 30 days.

Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority. Our lead supervisory authority is:

Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)
Promenade 18, 91522 Ansbach, Germany
www.lda.bayern.de

Cookies

For detailed information about the cookies we use and how to manage them, please see our Cookie Policy.

Changes to This Policy

We may update this privacy policy from time to time. The "Last updated" date at the top of this page reflects the most recent revision. We encourage you to review this page periodically.