Privacy policy
Privacy Policy for RHODFlowers
Last updated: 17.12.2025
At Rhod Flowers, we respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and protect your information in compliance with the General Data Protection Regulation (GDPR) and Danish law.
1. Data Controller
Rhod Flowers
Glasvej 5, 2. th 2400 Copenhagen NV
matnansen@gmail.com
CVR: 43408364
2. What Data Do We Collect?
When you visit our webshop, make a purchase, or contact us, we collect the following information:
- Name and contact details (address, phone number, email)
- Payment information (we do not store your card details, but securely process them through our payment provider)
- Order and purchase history
- IP address and device information (to enhance your experience and prevent fraud)
- Communication and customer service inquiries
For subscription orders, we collect information about your subscription plan, delivery frequency, status (active, paused, canceled), and payment history to manage recurring deliveries and provide account management features.
3. Purpose of Data Collection
We use your information for the following purposes:
| Purpose | Legal Basis for Processing |
|---|---|
| Processing and delivering your order | Performance of a contract (GDPR Art. 6.1.b) |
| Customer service and support | Legitimate interest (GDPR Art. 6.1.f) |
| Marketing and newsletters | Consent (GDPR Art. 6.1.a) |
| Improving webshop and user experience | Legitimate interest (GDPR Art. 6.1.f) |
|
Compliance with legal obligations (e.g., bookkeeping laws) |
Legal obligation (GDPR Art. 6.1.c) |
|
Managing and fulfilling subscription orders, including automatic payments and delivery scheduling. |
Performance of the contract (GDPR Art. 6.1.b). |
|
Sending e-mail marketing communications, including newsletters and promotions via our email pop-up provider (Trustoo), based on the consent you have given. |
Consent (GDPR Art. 6.1.a) |
4. Cookies and Tracking
We use cookies to enhance your browsing experience. When you visit our website, you will be asked to accept or customize your cookie preferences.
We use the following types of cookies:
-
Necessary cookies (for the webshop to function properly)
-
Analytics cookies (Google Analytics for anonymous user behavior tracking)
-
Marketing cookies (Meta Pixel for targeted advertising)
-
Tag management cookies (Google Tag Manager is used to load and manage tracking tools like Google Analytics and Google Ads – it does not collect personal data itself)
-
Advertising cookies (Google Ads for conversion tracking and personalized advertising – only if you have given consent)
You can change or withdraw your consent at any time via our cookie banner.
5. Sharing Data with Third Parties
We only share your data with trusted third-party service providers, including:
- Payment providers (e.g., Shopify Payments, Stripe, MobilePay)
-
Marketing platforms (Meta/Facebook Ads, Google Ads – only if you have given consent)
- Google (via Google Ireland Limited – Analytics, Tag Manager, and Ads, only with your consent)
- Subscription management platforms ( Appstle,) for processing recurring orders and notifications.
- E-mail marketing platforms (Trustoo), for sending newsletters and promotional emails – only if you have given consent
Your data is securely stored and never shared without a valid purpose.
6. Your Rights
As a customer, you have the following rights:
✔ Right of access – request access to the data we hold about you.
✔ Right to rectification – correct inaccurate or incomplete information.
✔ Right to erasure ("right to be forgotten") – request deletion of your data if it is no longer necessary.
✔ Right to restriction of processing – if you believe we are processing your data incorrectly.
✔ Right to data portability – have your data transferred to another provider.
✔ Right to withdraw consent – if you have given consent for marketing.
To exercise any of your rights, contact us at matnansen@gmail.com .
7. Data Processing Outside the EU
Some of our services (e.g., Google, Meta/Facebook) may transfer data outside the EU/EEA. We ensure that such transfers comply with GDPR through valid security measures, such as EU Standard Contractual Clauses (SCCs).
8. Data Retention and Deletion
We retain your data only for as long as necessary to fulfill the relevant purposes:
- Order and invoice data: Stored for at least 5 years (Accounting Act requirement).
- Customer service communication: Stored for up to 2 years.
- Marketing consent: Stored until you withdraw your consent.
- Subscription order data is retained as long as the subscription is active and for up to 2 years after cancellation for bookkeeping and customer service purposes.
9. Contact and Complaints
If you have any questions or wish to file a complaint regarding our data processing, you can contact us:
📧 Email: matnansen@gmail.com
📱: + 45 61 79 04 34
If you believe we are not complying with GDPR, you also have the right to file a complaint with the Danish Data Protection Agency (Datatilsynet):
📌 www.datatilsynet.dk