HomePrivacy Policy

Privacy Policy

Privacy Policy

1. Data Controller

The controller within the meaning of the GDPR is:

Igor Bukilic
acting under the brand Crazy Family Coffee
Sole proprietor

Zweibrückener Str. 77
90441 Nürnberg
Deutschland

E-mail:
info@crazyfamilycoffee.de

2. Hosting / Server

Our website is hosted by the following hosting provider:
Hostinger

Server location: Germany
Backup location: France

All data processing takes place exclusively within the European Union.

When accessing this website, the hosting provider automatically processes the following data (so-called server log files):

  • IP address
  • Date and time of the request
  • Accessed page / file
  • Browser type and version
  • Operating system
  • Referrer URL

This processing is technically necessary in order to deliver the website correctly and to ensure stability and security.

Legal basis:
Art. 6(1)(f) GDPR (legitimate interest in the secure and stable operation of the website)

3. SSL / TLS Encryption

This website uses SSL or TLS encryption for security reasons.
You can recognize an encrypted connection by the “https://” in your browser’s address bar.

4. Online Shop (WooCommerce)

We operate an online shop based on WooCommerce.

As part of the ordering process, we process the following personal data:

  • First and last name
  • Billing and/or delivery address
  • E-mail address
  • Order data (product, quantity, price)
  • Technical data required to process the order

This data is required in order to:

  • Process orders
  • Carry out deliveries
  • Fulfill legal obligations (e.g. invoicing, statutory retention obligations)

Shipping Service Provider (DHL)

For the delivery of your order, we transmit the personal data required for shipping (name, delivery address, and, where applicable, email address and telephone number) to the shipping service provider commissioned by us (e.g. DHL).

The transfer of data is carried out solely for the purpose of delivering and tracking the shipment.

Legal basis: Art. 6(1)(b) GDPR (performance of a contract).

5. Payment Service Providers

For payment processing, we use the following payment service providers:

  • Stripe
  • PayPal
  • Apple Pay (via Stripe)
  • Google Pay (via Stripe)

As part of the payment process, the data required for payment is transmitted directly to the respective payment service provider.
We do not have access to complete payment data (e.g. credit card numbers).

The processing is carried out exclusively for the purpose of payment processing.

Legal basis:
Art. 6(1)(b) GDPR (performance of a contract)

6. Newsletter (MailerLite)

If you subscribe to our newsletter, we process your e-mail address in order to send you regular information about our products and offers.

Registration takes place using the double opt-in procedure.
This means that after registering, you will receive an e-mail in which you must confirm your registration. Only then will your e-mail address be used for sending the newsletter.

We use the service provider MailerLite to send the newsletter.

Processed data:

  • E-mail address
  • Time of registration and confirmation
  • IP address (to document consent)

Legal basis:
Art. 6(1)(a) GDPR (consent)

You can unsubscribe from the newsletter at any time via the unsubscribe link in each e-mail or by contacting us via e-mail.

7. Back-in-Stock Notifications

If a product is temporarily unavailable, you may leave your e-mail address in order to be notified once the product becomes available again.

The e-mail address provided will be used exclusively for this one-time notification and will not automatically be added to the newsletter.

Processing is carried out via MailerLite.

Legal basis:
Art. 6(1)(b) GDPR (pre-contractual measure)
or
Art. 6(1)(a) GDPR (consent)

8. Cookies & Cookie Consent

Our website uses cookies.
Cookies are small text files that are stored on your device and contain certain information.

We use cookies to:

  • Ensure the basic functionality of the website
  • Store user settings
  • Provide optional analytics and marketing functions

The use of cookies that are not technically necessary takes place only after you have given your consent via a cookie consent banner.

Legal bases:

  • Art. 6(1)(f) GDPR (technically necessary cookies)
  • Art. 6(1)(a) GDPR (consent for optional cookies)

9. Use of Analytics and Marketing Tools (optional / future use)

On this website, the following analytics and marketing services may be used – provided that appropriate consent has been given:

  • Google Analytics 4 (GA4)
  • Google Ads (conversion tracking)
  • Meta Pixel (Facebook / Instagram)
  • TikTok Pixel

These tools are used to:

  • Analyze user behavior
  • Measure reach
  • Optimize marketing activities

Processing takes place exclusively on the basis of explicit consent via the cookie consent tool.

This may involve the transfer of data to third countries (e.g. the USA).
In such cases, data transfers are carried out on the basis of appropriate safeguards pursuant to Art. 44 et seq. GDPR (e.g. EU–US Data Privacy Framework or standard contractual clauses).

Legal basis:
Art. 6(1)(a) GDPR (consent)

10. Withdrawal of Consent

You may withdraw or change your consent at any time via the cookie settings on our website.

11. Contact by E-Mail

If you contact us by e-mail, the personal data you provide (e.g. e-mail address, content of the message) will be processed exclusively for the purpose of handling your inquiry.

We will not pass this data on without your consent and will delete it as soon as it is no longer required for the purpose of processing and no statutory retention obligations apply.

Legal basis:
Art. 6(1)(f) GDPR (legitimate interest in handling inquiries)
or
Art. 6(1)(b) GDPR (pre-contractual measure), if your inquiry aims at concluding a contract

12. Rights of Data Subjects

Within the scope of applicable legal provisions, you have the following rights:

  • Right of access to your stored personal data (Art. 15 GDPR)
  • Right to rectification of inaccurate or incomplete data (Art. 16 GDPR)
  • Right to erasure of your data (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object to the processing of your data (Art. 21 GDPR)

If the processing of your personal data is based on consent, you have the right to withdraw this consent at any time with effect for the future.

13. Right to Lodge a Complaint with a Supervisory Authority

You have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your personal data violates the GDPR.

The competent authority is generally the supervisory authority of your place of residence or our place of business.

14. Updates and Changes to This Privacy Policy

This privacy policy is currently valid and dated [15 January 2026].

We reserve the right to adapt this privacy policy in order to comply with changes in legal requirements or changes to our website or services.

Germany Country Icon

Shipping from Bavaria,
Germany

EU Union Icon

EU-WIDE SHIPPING

Delivery Icon

FREE SHIPPING ON ORDERS OVER €80
(Germany Only)

Reset password

Please enter your registered email address to receive an email to reset your password

Shopping Cart

Your cart is empty

Return to Shop
Account
Shop
0
Cart