Skip to content

Page

GDPR

Bliseco - Tips & Trick · Updated May 23, 2026 · 4 views

GDPR & Data Subject Rights

Last updated: May 23, 2026

Bliseco - Tips & Trick respects privacy rights under the GDPR (EU), UK GDPR, and comparable laws (e.g. CCPA/CPRA where applicable). This page supplements the Privacy Policy.

1. Roles

Context Our role
Website visitors, contact forms Data controller
End-customer data processed via apps for a merchant Usually data processor — merchant is controller
Shop data via Shopify APIs Processed per merchant instructions and Shopify rules

Merchants must provide their own policies for storefront customers.

2. Your rights (EEA / UK)

  • Access — copy of data we hold about you.
  • Rectification — correct inaccurate data.
  • Erasure — deletion where legally permitted.
  • Restriction — limit processing in certain cases.
  • Portability — structured data you provided.
  • Object — to legitimate-interest processing and direct marketing.
  • Withdraw consent — does not affect lawfulness of prior processing.

3. How to submit a request

Email luche.staff@gmail.com with subject GDPR Request and include:

  • Full name and email used to contact us or install an app
  • Shop domain (if you are a merchant)
  • The right you wish to exercise

We may verify identity before acting. Target response time: 30 days (extendable to 60 days for complex requests — we will notify you).

4. Complaints

You may lodge a complaint with your supervisory authority. We encourage contacting us first for faster resolution.

5. International transfers

If data leaves the EEA, we use appropriate safeguards (SCCs, adequacy decisions) with cloud providers.

6. DPA (Data Processing Agreement)

EU merchants may request a DPA template at luche.staff@gmail.com. Processing terms are also described in the Privacy Policy and Data Retention.

7. Data Protection Officer (if applicable)

[Add DPO contact or remove this section]luche.staff@gmail.com