Privacy Policy

Effective Date: April 10, 2025

At Fermented by LAB, accessible via fermentedbylab.com, your privacy is important to us. This GDPR Privacy Policy outlines how we collect, use, and protect your personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”).

By using our website, you consent to the data practices described in this policy.

Data Controller

The data controller responsible for your personal data is:
Fermented by LAB
Email: [email protected]

Information We Collect

We collect the following categories of personal data:

  • Contact Information: such as name and email address when you subscribe to our newsletter or contact us.
  • Usage Data: including IP address, browser type, pages visited, time spent on the site, and referring URLs (collected via cookies and analytics tools).
  • Transaction Data: if applicable, details of purchases made through the site.
  • User Content: such as comments or messages submitted via forms.

How We Use Your Information

We process your personal data for the following purposes:

  • To respond to inquiries or support requests
  • To send newsletters and promotional materials (with your consent)
  • To improve our website and personalize user experience
  • To analyze traffic and performance through analytics tools
  • To comply with legal obligations

Legal Basis for Processing

Under the GDPR, we rely on the following legal bases:

  • Consent – for sending newsletters and marketing communications
  • Contract – when providing products or services you request
  • Legal Obligation – for compliance with applicable laws
  • Legitimate Interests – to operate and improve our website and services

Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law.

Sharing of Data

We do not sell or rent your personal information. However, we may share your data with:

  • Trusted third-party service providers (e.g., email platforms, analytics services)
  • Legal authorities if required by law or in response to valid requests

All service providers are required to handle your data in compliance with GDPR.

International Transfers

If your data is transferred outside the European Economic Area (EEA), we ensure it is protected through standard contractual clauses or other legal mechanisms.

Your GDPR Rights

Under GDPR, you have the following rights:

  • Right to Access – Request a copy of your personal data
  • Right to Rectify – Correct inaccurate or incomplete data
  • Right to Erasure – Request deletion of your data (“right to be forgotten”)
  • Right to Restrict Processing – Limit how we use your data
  • Right to Data Portability – Receive your data in a structured format
  • Right to Object – Object to certain types of processing
  • Right to Withdraw Consent – At any time, where processing is based on consent
  • Right to Lodge a Complaint – With a supervisory authority if you believe your rights have been violated

To exercise any of these rights, please contact us at [email protected]

Cookies and Tracking Technologies

We use cookies to enhance user experience, analyze traffic, and support site functionality. You can control or disable cookies through your browser settings.

For more details, please refer to our Cookie Policy.

Security

We take appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction.

Changes to This Policy

We may update this GDPR Privacy Policy from time to time. The latest version will always be posted on this page with the effective date clearly stated.

Contact Us

If you have questions or concerns about this policy or how we handle your data, please contact:
Email: [email protected]