top of page

Privacy Policy

Last updated: 21.11.2025

 


Business Name: Anifad
Business Location: Zagreb, Croatia
Contact Email: info@anifad.com

Anifad is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and protect personal data when you visit our website, make a purchase, or communicate with us. It also describes your rights under the General Data Protection Regulation (GDPR).

By using our website and services, you acknowledge that you have read and understood this Privacy Policy.

1. Data Controller

Anifad, located in Zagreb, Croatia, is the Data Controller responsible for processing your personal data.

If you have questions about this Privacy Policy or how your data is processed, you may contact us at:
Email: info@anifad.com

2. Personal Data We Collect

We collect the following categories of personal data:

2.1 Data You Provide Directly

  • Contact Information: name, email address, billing address, shipping address, phone number.

  • Order Information: products ordered, payment method (PayPal or credit card), transaction details (excluding full card numbers).

  • Account Information (if applicable): username, password.

  • Communications: messages sent to our email or through contact forms.

2.2 Automatically Collected Data (Cookies & Analytics)

When you browse our website (built on Wix), we automatically collect:

  • IP address

  • Browser type, device information

  • Pages visited, time spent on the website

  • Referring URLs

This information is collected through cookies and similar technologies. See Section 7 for more details.

2.3 Data from Third Parties

  • Payment processors (PayPal, Wix Payments, or card processors) provide us with confirmation of payments, fraud analysis and verification.

  • Suppliers and logistics partners may provide order fulfillment data such as shipping status.

3. Purposes and Legal Bases for Processing

We process your personal data for the following purposes under GDPR:

PurposeLegal Basis (GDPR)

To process and deliver your orderArticle 6(1)(b) – Contract performance

To provide customer serviceArticle 6(1)(b) – Contract performance

To manage payment transactions and fraud preventionArticle 6(1)(c) – Legal obligation; Article 6(1)(f) – Legitimate interest

To communicate order updates and service notificationsArticle 6(1)(b) – Contract performance

To maintain website functionality and securityArticle 6(1)(f) – Legitimate interest

To analyze website performance via cookiesArticle 6(1)(a) – Consent

To keep accounting and tax recordsArticle 6(1)(c) – Legal obligation

Marketing communications (if applicable)Article 6(1)(a) – Consent

4. Third-Party Service Providers

We share personal data with trusted third parties only when necessary for our business operations.

4.1 Website Platform (Wix)

Wix hosts our online store and processes data necessary to operate the website, manage orders, and store information securely.

4.2 Payment Processors

When you pay for an order, your payment data is processed by:

  • PayPal (Europe)

  • Credit card processors integrated via Wix Payments or external gateways

These processors operate independently and adhere to GDPR and PCI-DSS security standards. We do not store your full credit card details.

4.3 Dropshipping Suppliers

To fulfill your order, we share necessary shipping information with our suppliers and logistics partners. This typically includes:

  • Name

  • Shipping address

  • Phone number

  • Products ordered

We ensure that suppliers receiving EU customer data apply GDPR-aligned safeguards.

4.4 Analytics & Cookies Providers

Third-party analytics or tracking providers may include Wix Analytics or similar tools activated through your cookie consent.

4.5 Legal or Regulatory Authorities

Where required by law, we may disclose personal data to tax authorities, courts, or regulatory bodies.

5. International Data Transfers

Some of our third-party service providers (including Wix or dropshipping suppliers) may be located outside the European Economic Area (EEA).

When transferring personal data outside the EU/EEA, we ensure that:

  • The destination country has an EU adequacy decision, or

  • Standard Contractual Clauses (SCCs) or other approved safeguards are in place.

You may request additional information about these safeguards by contacting us.

6. Data Retention

We retain personal data only as long as necessary for the purposes for which it was collected:

  • Order information: 6–10 years (to comply with tax and accounting laws).

  • Customer correspondence: up to 3 years.

  • User accounts: until you delete the account.

  • Cookies: according to your consent preferences (see cookie policy on the website).

When data is no longer required, it is securely deleted or anonymized.

7. Cookies and Tracking Technologies

Our website uses cookies to:

  • Enable essential website features

  • Analyze site performance

  • Personalize user experience

You can manage or withdraw your cookie consent at any time via the cookie banner on our website or through your browser settings.

For more details, please refer to our Cookie Policy (available on the site).

8. Your Rights Under the GDPR

As an EU resident, you have the following rights regarding your personal data:

  • Right of access – You can request a copy of your data.

  • Right to rectification – You can request correction of inaccurate data.

  • Right to erasure (“right to be forgotten”) – You can request deletion of your data.

  • Right to restriction of processing – You can request limits to how your data is processed.

  • Right to data portability – You can request your data in a structured, machine-readable format.

  • Right to object – You may object to certain processing activities.

  • Right to withdraw consent – When processing is based on consent, you may withdraw it at any time.

To exercise your rights, contact us at: info@anifad.com

We will respond to all requests within the GDPR-mandated timeframe (typically 30 days).

9. Right to Lodge a Complaint

If you believe your data has been processed unlawfully, you have the right to file a complaint with your local supervisory authority.

In Croatia, the supervisory authority is:
Croatian Personal Data Protection Agency (AZOP)

You may also contact the supervisory authority in your EU country of residence.

10. Data Security

We take reasonable technical and organizational measures to protect your personal data, including:

  • Encrypted website connection (HTTPS)

  • Secure payment processing

  • Access control and data minimization

  • Regular security monitoring through the Wix platform

However, no online transmission is 100% secure, and we cannot guarantee absolute security.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in legal requirements or our business practices. The updated version will be posted on our website with a revised “Last Updated” date.

Contact Information

For any questions, requests, or concerns regarding this Privacy Policy or your personal data, you can contact us at:
Email: info@anifad.com
Business Name: Anifad
Location: Zagreb, Croatia

bottom of page