Privacy Policy

Shopping cart

Privacy Policy

Last updated: April 2026

SerumsFit (“we”, “us”, or “our”) is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you visit or make a purchase from https://serums.fit (the “Site”). It is compliant with the EU General Data Protection Regulation (GDPR).

1. Who We Are

SerumsFit is the data controller responsible for your personal data. For any privacy-related questions or requests, please contact us at:

Email: support@serums.fit
Website: https://serums.fit
SerumsFit is based in Sweden, EU.

2. What Data We Collect

We collect the following categories of personal data:

  • Identity data: your name, as provided at checkout.
  • Contact data: your email address.
  • Transaction data: details of your purchases, including product names and amounts.
  • Technical data: IP address, browser type, device type, and pages visited (collected via cookies and analytics tools).
  • Communications data: any messages you send us via email or contact forms.

We do not collect or store payment card details. All payment processing is handled securely by our third-party payment providers (Stripe and/or PayPal).

3. How We Use Your Data

We use your personal data for the following purposes:

  • To process and fulfill your order and deliver your digital product.
  • To send your purchase confirmation and download link by email.
  • To respond to customer service enquiries.
  • To comply with legal obligations (e.g., tax and accounting requirements).
  • To improve our website and products through anonymised analytics.

We do not sell, rent, or trade your personal data to third parties for marketing purposes.

4. Legal Basis for Processing

Under GDPR, we process your data on the following legal bases:

  • Contract performance: to complete your purchase and deliver your product.
  • Legal obligation: to comply with applicable laws and regulations.
  • Legitimate interests: to improve our website and prevent fraud, where this does not override your rights.
  • Consent: where you have explicitly opted in (e.g., marketing emails, if applicable).

5. Sharing Your Data

We share your data only with trusted third-party service providers strictly necessary to operate our business:

  • Payment processors (Stripe, PayPal): to securely process transactions.
  • Email delivery services: to send order confirmations and download links.
  • Website hosting and analytics providers: to operate and improve the Site.

All third parties are contractually required to handle your data securely and in accordance with applicable data protection laws.

6. International Transfers

Some of our service providers (such as Stripe and PayPal) may process your data outside the European Economic Area (EEA). Where this occurs, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

7. Data Retention

We retain your personal data only for as long as necessary:

  • Order and transaction records are kept for up to 7 years to comply with tax and accounting obligations.
  • Customer service communications are kept for up to 2 years.
  • Marketing data is kept until you withdraw consent or unsubscribe.

8. Cookies

Our Site uses cookies to improve your experience. Cookies are small text files stored on your device. We use:

  • Essential cookies: required for the Site to function (e.g., shopping cart, session management).
  • Analytics cookies: to understand how visitors use the Site (e.g., Google Analytics, anonymised).
  • Marketing cookies: only if you consent.

You can manage or disable cookies through your browser settings at any time. Disabling essential cookies may affect the functionality of the Site.

9. Your Rights Under GDPR

As an EU resident, you have the following rights regarding your personal data:

  • Right of access: to request a copy of the data we hold about you.
  • Right to rectification: to request correction of inaccurate or incomplete data.
  • Right to erasure (“right to be forgotten”): to request deletion of your data, subject to legal retention obligations.
  • Right to restriction: to request that we limit how we use your data.
  • Right to data portability: to receive your data in a structured, machine-readable format.
  • Right to object: to object to processing based on legitimate interests.
  • Right to withdraw consent: where processing is based on consent, you may withdraw it at any time.

To exercise any of these rights, please contact us at support@serums.fit. We will respond within 30 days.

You also have the right to lodge a complaint with your national data protection authority.

10. Security

We take data security seriously. Our Site uses HTTPS encryption, and all payment transactions are processed through PCI-DSS compliant providers. We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss, or misuse.

11. Children’s Privacy

Our Site and products are not directed at children under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with their data, please contact us immediately at support@serums.fit and we will delete it.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of this page. We encourage you to review this policy periodically. Continued use of the Site after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact us at support@serums.fit or visit https://serums.fit.