Language

Cart

Your cart is empty

Privacy Policy

Last updated: 14 August 2025

This Privacy Policy explains how Black‑V ("we", "us", or "our") collects, uses, shares, and protects personal data when you visit black-v.com (the "Site"), purchase our products, contact us, or otherwise use our services (collectively, the "Services").

We are established in Germany and process personal data in accordance with the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), and Germany’s TDDDG (rules on cookies/trackers).

1. Controller & How to Contact Us

, trading as Black‑V
Postal address: Kolonnenstr. 8, 10827 Berlin, Germany
Email: info[at]black-v.com ⚠️ To get a quicker reply, please use the Help & Contact form.


We have not appointed a Data Protection Officer (DPO) because we are not legally required to do so.

2. What Data We Collect

a) Data you provide to us

  • Identity and contact data (name, email, phone, billing/shipping address)

  • Account data (login/username, hashed password, preferences)

  • Order, delivery, return/claim data (items, sizes, instructions)

  • Messages sent to us (e.g., via contact/return forms or email)

  • Files you upload (e.g., images for returns or product issues)

  • Marketing preferences and consent records (opt‑ins/opt‑outs, timestamps)

b) Data collected automatically

  • Device and technical data (IP address, browser, OS, device type)

  • Usage data (pages viewed, clicks, time on page, referring URLs)

  • Approximate location derived from IP (city/region level)

c) Data from third parties

  • Shopify (our e‑commerce platform/host) – checkout and store operations

  • Payment processors/banks – payment status, fraud screening signals

  • Fulfilment & carriers – delivery status and returns logistics

  • Tally (our form provider) – form submissions and file uploads

We do not intentionally collect special categories of personal data. Please avoid including such information in free‑text fields.

3. Purposes & Legal Bases (GDPR)

We process personal data for the following purposes and legal bases:

  • Contract performance (Art. 6(1)(b)): processing orders, taking payment, arranging delivery, handling returns/exchanges, providing your account and customer support.

  • Legal obligations (Art. 6(1)(c)): tax and accounting duties, consumer protection, responding to lawful requests from authorities.

  • Legitimate interests (Art. 6(1)(f)): operating, securing, and improving our Site/Services; preventing fraud/abuse; defending legal claims. You have the right to object to processing based on legitimate interests.

  • Consent (Art. 6(1)(a)): non‑essential cookies/trackers and direct email marketing to non‑customers. You can withdraw consent at any time with effect for the future.

Email marketing (Germany): As a rule, we send marketing emails only with consent. For existing customers, we may exceptionally rely on § 7(3) UWG (own similar goods/services, address collected in connection with a sale, opt‑out offered at collection and with every email, and no objection).

4. Cookies & Similar Technologies

We use cookies and similar technologies. Under § 25 TDDDG and the EU ePrivacy rules, we obtain your consent before setting any non‑essential cookies/trackers. You can manage or withdraw your choices at any time via Cookie Settings (link in our footer or banner).

What we use:

  • Strictly necessary cookies (no consent): required for the Site to function (e.g., keeping your cart, enabling checkout, security/anti‑fraud, remembering consent choices).

  • Analytics/performance cookies (consent in EEA/DE): to understand Site usage and improve performance. We currently use Shopify’s analytics only; these cookies are disabled by default for EEA/DE visitors until you opt in.

  • Advertising/retargeting cookies: not used by us at this time. If this changes, we will request your consent first and update this Policy.

Cookie names and lifetimes can change as Shopify updates its services. The up‑to‑date, granular list of cookies used on our store (name, provider, purpose, duration, category) appears in Cookie Settings and in our banner at the time of consent.

5. How We Share Personal Data

We share personal data only as necessary for the purposes above:

  • Shopify (platform hosting, checkout, store operations)

  • Payment processors/banks (transaction processing and fraud prevention)

  • Print‑on‑demand & fulfilment partner – Printful (order production and shipping)

  • Carriers/parcel services (delivery and returns)

  • Tally (form hosting and file uploads for support/returns)

  • IT/hosting, security and support tools (acting as our processors)

  • Professional advisers (legal, accounting, tax)

  • Authorities and courts where required by law

  • Business transfers in the event of a merger, acquisition or asset sale

We do not sell personal data.

6. International Transfers

Some providers process data outside the EEA. Where this occurs, we use appropriate safeguards:

  • Adequacy decisions (e.g., for Canada – relevant to certain Shopify group transfers)

  • EU‑US Data Privacy Framework (DPF) for certified US recipients, where applicable

  • Standard Contractual Clauses (SCCs) and supplementary measures for other third countries

Even if certain data is stored at rest in Europe, support and operational processing may involve international transfers under these safeguards.

7. Retention

We retain personal data only as long as necessary for the purposes described or to comply with legal requirements. Key periods:

  • Invoices and accounting records: 8 years (from end of calendar year)

  • Books, inventories, annual financial statements: 10 years

  • Commercial/business correspondence (incl. email): 6 years

  • Customer accounts: until you delete the account (plus a short technical backup period)

  • Support communications: up to 3 years (regular limitation period)

  • Marketing consent and opt‑out logs: while in use and up to 3 years after withdrawal for proof

  • Cookie/analytics data: per your consent choices and the provider’s retention settings After expiry we delete or anonymize data unless longer retention is required by law.

8. Security

We implement appropriate technical and organizational measures to protect personal data, including TLS encryption in transit, access controls, role‑based permissions, security monitoring, and regular backups. No method of transmission or storage is 100% secure.

9. Your Rights (EEA/UK/CH)

You have the rights to access, rectify, erase, restrict processing, object (including to direct marketing), and data portability, and the right to withdraw consent at any time. To exercise your rights, use the Help & Contact form and select the category "General Questions". We respond within one month (extendable where permitted).

10. Complaints & Supervisory Authority

Please contact us first if you have concerns. You also have the right to lodge a complaint with your local data protection authority. For our seat in Berlin, Germany, the competent authority is:

Berliner Beauftragte für Datenschutz und Informationsfreiheit
Alt‑Moabit 59–61, 10555 Berlin, Germany
Tel.: +49 30 13889‑0
Email: mailbox@datenschutz-berlin.de
Website: https://www.datenschutz-berlin.de/

11. Children’s Data

Our Services are not directed to children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us data, please contact us so we can delete it.

12. Automated Decision‑Making

We do not carry out decisions producing legal effects concerning you based solely on automated processing, including profiling, within the meaning of Art. 22 GDPR.

13. Changes to this Policy

We may update this Policy to reflect changes in our processing or legal requirements. We will update the "Last updated" date and, where required, provide additional notice and/or request consent.

 

Anime-style scene of a young man standing on a rooftop, arms outstretched, overlooking a glowing cyberpunk cityscape bathed in purple light, with neon signs and a hovering drone in the distance.