Privacy Policy

[TODO — LEGAL] GDPR-compliant privacy policy required before launch.

Last updated: [DATE]

1. Data Controller

[TODO OWNER: company name, address, contact email for data requests]

2. Data We Collect

Name, email, shipping address, order history, IP address, cookies.

3. Purpose & Legal Basis

[TODO LEGAL — Art. 6 GDPR]

4. Third-Party Processors

Payment: Stripe (see stripe.com/privacy). Shipping: [TODO OWNER].

5. Your Rights

Under GDPR you have the right to access, rectify, erase, restrict processing, and data portability. Contact: [TODO OWNER: privacy@cairn.cz]

6. Cookies

See our Cookie Policy.