Privacy Policy – Esygn Limited

Last updated april 2026

Summary

For your convenience, we have included a brief summary of our Privacy Policy. Please take the time to read the full policy for detailed information on each section.

Why we collect your Information

We collect your information only when necessary, primarily to provide our services and to perform the contract with you. In some cases, we collect information with your consent or because we have legitimate interests to do so. In other cases, we may be legally required to collect certain information.

How we collect Information

We collect information directly from you when you enter details during checkout, contact our customer service, or interact with our webstore. We may also receive information indirectly from third parties such as brand owners or online store operators for whom Esygn Limited acts as Merchant of Record.

Information we collect

To fulfill your order, we require personal information such as your name, email address, delivery address, and payment details (e.g. credit card number) so that payment can be processed through our contracted payment providers. If you contact our customer support, we may collect additional information necessary to resolve your inquiry. In certain jurisdictions, we may also collect identity numbers (e.g. local ID or passport number) to facilitate customs clearance or the payment of import duties and taxes.

How we use your Information

We use your information to perform the contract with you and for our legitimate business interests. This includes improving our services, supporting store operators, testing new features, and protecting our services against misuse or legal violations.
If you consent, we may use your information to communicate specific offers, promotions, or marketing activities related to our services. You may opt out of such communications at any time.

To improve your cross-border shopping experience, we use cookies and similar technologies to collect session and traffic data (including IP addresses), as explained in our Cookie Policy below. Please review it carefully. Our services do not respond to Do Not Track (DNT) signals. Data collected for analytical purposes is aggregated or anonymized and may be used without further notice.

Sharing your Information

We share information with third parties strictly to fulfill your order and deliver our services. This includes, for example, the online store where you placed your order, payment processors, and selected carriers. If you give explicit consent, we may share your information with the store owner for marketing purposes.
We also share information with service providers who help us operate our services or provide analytics tools, subject to their legal obligation to protect your privacy and process data only according to this Policy and applicable law.
We may disclose information if required by court order, public authority request, or legal obligation. We do not sell your information.

Protecting your Information

We take measures to de-identify and anonymize parts of your information so it can no longer directly or indirectly identify you, and to ensure that such data cannot be re-identified.

Children’s Privacy

We do not knowingly collect information from anyone under the legal minimum age in jurisdictions where our services are available. If you believe we have collected such information, please contact us at info@esygn.nl.

Sharing Information in case of a structural change

In the event of a merger, acquisition, or any other structural change involving Esygn Limited, we may transfer your information to the relevant acquiring or successor entities. Such entities will be required to apply privacy protections at least as strict as those described in this Policy and as required under applicable law. We rely on our legitimate interests, as well as certain legal obligations, as the lawful basis for such processing.

Other sites and services

To complete your order and provide our services, you may be redirected to third-party websites (for example, when choosing to pay using PayPal or another payment provider). These sites and services are subject to their own privacy policies. We encourage you to review those policies carefully to ensure you understand how your information will be used.

Your rights and choices under data protection laws

We are committed to protecting your information and enabling you to exercise your rights under applicable privacy laws. You may terminate your use of our services at any time.
We implement technical and organizational measures to safeguard your information and reduce risks of theft, loss, unauthorized access, or misuse. We only retain information as long as necessary for legitimate business purposes and to comply with applicable legal requirements.
You have rights — subject to local law — to access, correct, or request deletion of your personal information. You can submit such requests at any time by contacting our privacy team (info@esygn.nl). While not every request can always be fulfilled immediately due to regulatory obligations, we will always handle your data lawfully and for as short a duration as required by law.

Transferring Personal Information outside your territory

Esygn Limited complies with applicable laws and regulations regarding the transfer of personal information across jurisdictions and geographical regions.

Your data may be processed by third-party service providers or sub-processors, which may operate servers outside the European Economic Area (EEA). All such transfers are protected by legally binding agreements, including the European Commission’s Standard Contractual Clauses (SCCs), or other lawful transfer mechanisms that provide an adequate level of data protection.

We transfer information within the Esygn Limited group and to sub-processors only in accordance with applicable law and this Policy, based on your place of residency and the services provided.

If you are located in the European Union, the UK, or Switzerland, your information is protected under SCCs or other applicable transfer adequacy decisions.

Dispute Resolution

You may contact us at info@esygn.nl. We will make good-faith efforts to resolve any existing or potential dispute with you.

Additional information for users in certain jurisdictions

If you are located in certain jurisdictions, additional clarifications may apply under local law. Please contact us or review the relevant section of this Policy for further information.

Contact us

For questions regarding your personal data, please contact us at info@esygn.nl.

Why we collect your Information

We collect your information only when necessary. When you shop through Esygn Limited, we process your orders on behalf of store owners (“Store Owners”) and provide our services to ensure that products are delivered to you.

To fulfill our services, we require personal information such as your name, email address, delivery address, and payment details (e.g., credit card number) so that payments can be processed through our contracted payment processors. If you contact our customer support, additional relevant information may be collected to help resolve your inquiry.

In some cases, we also collect your information based on your consent, for our legitimate interests, or when required by law.

Information We Collect

To provide our services, we collect your personal information including your first name, last name, email address, phone number, postal address, and payment information (such as payment method and payment details, or voucher details if applicable). In certain jurisdictions, we may also collect identity numbers (e.g., local ID or passport) if required for customs clearance or payment of import duties and taxes.

If you contact Esygn Limited customer support, we will also process any information you provide to help resolve your inquiry.

How We Collect Information

Purchases
We collect information directly from you when you interact with our checkout pages or place an order for merchandise offered on store owners’ websites. In such cases, Esygn Limited fulfills the order as Merchant of Record and uses the information you provide to process the transaction, deliver your order, and provide customer support in accordance with our Terms of Sale.

Store Owners
In some cases, we may receive certain information from the store owner or payment provider to pre-populate transaction forms for your convenience.

Log Files
We use log files to automatically collect certain information from your device when you interact with our services, where permitted by law. This may include IP address, browser type, Internet Service Provider (ISP), date/time stamps, referring/exit pages, clicked pages, and other data sent by your browser.

Cookies and Tracking Technologies
We use cookies and similar technologies to continuously improve our services and user experience. Please review our Cookie Policy below for details on types of cookies, their purposes, and expiration dates.

• Essential cookies: required to provide and optimize services.

• Third-party cookies: used for secure transactions and aggregated/anonymized analytics.

• Analytics tools we use may include Google Analytics, Hotjar, Heap, FullStory, and others (full list in Cookie Policy).

Do Not Track (“DNT”)
Some browsers send a “Do Not Track” (DNT) signal. Our services do not respond to DNT signals.

Using Your Personal Information

By using our services to purchase goods, you provide us with a lawful basis to process and retain your information as necessary to provide and improve our services.

We may also use your information for our legitimate interests, to the extent permitted by law, including:

• Maintaining business relationships and operations, supporting store owners, and testing new features.

• Preventing and detecting fraud or abuse of our services.

• Creating aggregated, anonymized, or inferred data for analytics, personalization, and troubleshooting.

We may use your information to communicate with you regarding security, administrative issues, or other operational matters related to transactions you initiate or complete through our services. These communications are not marketing-related and do not require your consent.

 

---

 

Analyzing Anonymous, Aggregated, and Analytical Information

Where permitted by law, we may share anonymized or aggregated information with store owners, marketing agencies, public relations partners, subsidiaries, or affiliated companies. This data contains no personal information and is processed using procedures to prevent re-identification.

We may also share anonymous data (with or without compensation) with third parties, including advertisers and partners, without further notice to you.

Anonymous Data

“Anonymous Data” means data that cannot identify an individual user, either directly or indirectly, and for which re-identification is permanently prevented. Examples include aggregated data about the use of our Service. Such data does not constitute “Information,” and its use or disclosure does not affect any of your rights under applicable privacy laws.

Direct Marketing from Store Owners or Esygn Limited

You may be offered the option to provide your specific consent via our Service to receive direct marketing communications by email, telephone, text message, or post. These communications may relate to consumer goods and services generally available through our Service, including offers from brands from which you may have previously purchased or which may be of interest to you.

Your personal information may be used for direct marketing sent by Esygn Limited, provided you have given your consent. You have the right to object to the processing of your personal information for direct marketing purposes at any time.

If you wish to opt out of direct marketing communications:

• For messages from Esygn Limited, please contact us directly at info@esygn.nl.

• For messages from a Store Owner, please contact the Store Owner directly.

• Alternatively, you may use the ‘unsubscribe’ features included in the relevant marketing communication.
  
  

Sharing Your Personal Information

To provide our Services, Esygn Limited may share your personal information with the following third parties:

Store Owners

When you make a purchase through a store owner’s webstore, we share the information necessary to fulfill your order with that specific store owner. The store owner may then use this information as if it was collected directly by them, subject to their own privacy policy. For example, the store owner may need your information to:

• Process and deliver your order

• Handle inquiries, returns, or replacements

• Validate subscriptions, memberships, or loyalty program benefits
  
  

Affiliates of Esygn Limited

We may share your information with our subsidiaries or affiliated companies when required to fulfill your order, including processing transactions, handling customs clearance and import taxes, or other operational purposes directly related to your order. This information may be transferred to other jurisdictions where our servers or service providers operate, in compliance with applicable laws.

Third-Party Service Providers

We may share your information with third-party service providers only to the extent necessary to provide the Services. This includes payment processors, fraud detection providers, licensed customs brokers, hosting providers, analytics tools, and order fulfillment providers.

Legal Obligations and Necessary Disclosures

We may disclose your information to comply with applicable laws, enforce our Terms of Sale, or protect the rights, property, or safety of Esygn Limited, our users, or the public. This includes cooperating with legal authorities or addressing fraud, security threats, or other potential violations.

Sharing Information in Case of a Structural Change

In the event of a merger, acquisition, bankruptcy, or liquidation, your information may be transferred to the relevant acquiring or successor entities. Such entities will be required to maintain privacy protections at least as strict as those described in this Policy and required by law. We rely on our legitimate interests and applicable legal obligations as the lawful basis for such processing.

Data Transfers Outside Your Territory

Esygn Limited may transfer your information to affiliated companies or service providers located outside your jurisdiction, including the United States. All transfers are conducted in compliance with applicable law and protected by legally binding agreements, such as the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and its UK extension.

Complaints and Dispute Resolution

If you have questions or complaints about how your personal information is handled, including transfers from the EU or UK to the US, please contact us at info@esygn.nl. If your complaint cannot be resolved internally, you may use independent dispute resolution services, including JAMS (https://www.jamsadr.com/DPF-Dispute-Resolution), provided at no cost to you, in accordance with the EU-U.S. DPF Principles and UK Extension.

No Sale of Personal Information

Esygn Limited does not sell your personal information to third parties and only shares data as outlined above to provide our Services.

Binding Arbitration Notice

Please note that under certain conditions (as described under the EU-U.S. Data Privacy Framework principles that Esygn Limited adheres to), you may invoke binding arbitration by delivering a notice to Esygn Limited via info@esygn.nl. Please also note that Esygn Limited is subject to the investigatory and enforcement powers of relevant authorities, including the Federal Trade Commission (FTC) for transfers involving the United States.

Transferring Personal Information Outside Your Territory

Esygn Limited adheres to applicable laws and regulations regarding the transfer of personal information across jurisdictions and geographical regions.

• Our primary data servers are located in the European Economic Area (EEA).

• Depending on the services used and the location of our third-party providers, your data may also be stored or processed in other jurisdictions, including the United Kingdom (UK), Israel, and the United States.

For providing you with the Services, and as part of our cross-border operations, information we collect from you may be shared with:

• Esygn Limited entities and affiliates

• Store Owners whose products you purchase

• Third-party service providers and sub-processors involved in order fulfillment, payment processing, or other service operations

We require that all recipients process your information in compliance with Esygn Limited’s policies and GDPR-equivalent protections. Esygn Limited accepts full responsibility for safeguarding your information during these transfers.

If you are a resident of, or placing your order for fulfillment into, a country with specific local data protection requirements, additional terms may apply. Please review them in the section “Additional Information for Users of Certain Jurisdictions.”

Protecting Your Information

We follow generally accepted industry standards, including administrative, physical, and technical safeguards, to protect the integrity and security of your information. Sensitive information, such as payment or fraud-related data, is encrypted during transmission; our payment gateways are PCI-compliant. However, no method of electronic storage or transmission over the internet is 100% secure.

Your information will be retained only as long as necessary for legitimate business purposes, including legal obligations, enforcement of terms of sale, dispute resolution, or reporting requirements. Once information is no longer needed, we will delete, permanently de-identify, or anonymize it, as permitted by law.

For questions about data security on our Service, contact us at info@esygn.nl.

Your Choice

We collect only the minimum information necessary to provide our services. You may terminate your use of the Service at any time, after which we will stop collecting your information. Certain information related to past transactions may remain stored for legal, tax, or business purposes.

Your Rights Under Data Protection Laws

Depending on your jurisdiction, you may have the following rights regarding your personal information:

• Access: You can request confirmation of whether we process your information and obtain a copy. We may ask you to verify your identity before providing access. Requests can be submitted via our privacy center.
  
  

• Rectification: You can request corrections to information that is inaccurate, incomplete, or outdated.

Erasure of Your Information

You may have the right to request the deletion of your personal information. We will review your request in accordance with applicable law and use our judgment to reach a decision regarding your request.

Restriction of Processing

In certain cases, you may request that we restrict the processing of your information.

Data Portability

You have the right to receive the personal information you provided to us in a structured, commonly used, and machine-readable format, and to transmit that information to another controller without hindrance from us. This right applies only when processing is based on your consent or a contract and is carried out by automated means.

Objection to Processing

In certain circumstances, for processing based on our legitimate interests, you have the right to require us to stop processing your information. If your information is processed for direct marketing purposes, you may object at any time. To opt out, contact us directly or the relevant Store Owner, or use the ‘unsubscribe’ feature in the marketing communication.

Automated Decision-Making, Including Profiling

You have the right not to be subject to decisions based solely on automated processing, including profiling, which produce legal or similarly significant effects concerning you.

Children’s Privacy

Our Service is not directed to children under 16 years of age (or the Minimum Age applicable in your jurisdiction). We do not knowingly collect personal information from children under this age. If we learn that we have collected such information, we will delete it promptly. If you believe we have collected information from a child, please contact us at info@esygn.nl.

Other Sites and Services

Our Service may contain links to third-party websites and services not controlled by Esygn Limited. We are not responsible for their privacy practices or content, and your use of such websites is at your own risk. Please review their privacy policies.

Changes to this Policy

We may update this Privacy Policy from time to time. Minor changes will take effect 7 days after posting a notice on our website. Substantial changes will take effect 30 days after posting.
If a new policy materially reduces the protection of your privacy rights, you may choose not to accept it and terminate your use of the Services. Continued use after the new policy takes effect constitutes acceptance of the updated policy. Legal requirements may require immediate effect in certain cases.

Contact Us

For questions about your personal information or contact with the Data Protection Officer, contact info@esygn.nl.

Post address
Esygn Limited
Strovolos 77,
STROVOLOS CENTER, Floor 4, Flat/Office 401
Strovolos
2018, Nicosia, Cyprus

Additional Terms for Store Owner Customers

Privacy policy

Privacy declaration

Thank you for your interest in our website. Protecting your privacy is very important to us. Below we will inform you in detail about the processing of your data.

1. Access data and hosting

You can visit our website without providing any personal information. Each time you visit the website, the web server automatically saves a so-called server log file, which contains, for example, the name of the requested file, your IP address, date and time of the call, the amount of data transferred and the requesting provider (access data) and documents the call.
This access data is evaluated solely to ensure smooth operation of the site and to improve our services. This must be done according to art. 6 paragraph. 1 sentence 1 lit f GDPR the protection of our legitimate interests in the correct presentation of our offer, which are of decisive importance in the process of weighing up interests. All access data will be deleted no later than seven days after the end of your visit to the site.

Third party hosting services

In the context of processing on our behalf, third parties provide us with hosting and presentation services for our websites. We use the following service providers for the hosting of the website in question:

If a service provider is based in the US, it is certified under the EU-US privacy shield. You can view a current certificate here. As a result of this agreement between the US and the European Commission, the European Commission has established an adequate level of data protection for companies certified under the Privacy Shield. Furthermore, we have agreed with other service providers located in a country outside the EU or the EEA to apply EU standard data protection clauses in order to provide appropriate guarantees under Art. 46 para. 2 lit. c GDPR.
All data collected in the context of the use of these web pages or in forms for the purposes described below will be processed on the servers of the respective service provider. Processing on other servers only takes place as described in this privacy statement.

1. Data Collection and Use

We collect personal data if you voluntarily provide it when you contact us (e.g. via the contact form or email). Mandatory fields are marked as such because in these cases we need the data to process your contact or open a customer account in accordance with Art. 6 paragraph. 1 sentence 1 lit. b GDPR and you cannot send the contact without this information. You can read which data is collected from the various input forms. We use the information you provide to process your questions.
We have engaged service providers to technically handle your questions on our behalf. These service providers are based in the US and are certified under the EU-US Privacy Shield. As a result of this agreement between the US and the European Commission, the European Commission has established an adequate level of data protection for companies certified under the Privacy Shield.
After complete processing of the request, your data will be restricted for further processing and deleted after expiry of the tax and commercial law retention periods, unless you have expressly consented to further use of your data or we reserve the right to further use data, which is legal permitted and about which we inform you in this statement.

1. data transfer

If you have ordered goods that we will send to you by post, we will provide the data required for the execution of the agreement in accordance with the state of the art art. 6 paragraph. 1 sentence 1 lit. b GDPR to the carrier responsible for delivery if this is necessary for the delivery of ordered goods. Depending on the payment service provider you select in the ordering process, we transmit the payment data collected for payment processing to the credit institution responsible for the payment and, if applicable, to the payment service providers engaged by us or to the selected payment service.
Depending on the payment method, some payment providers also carry out a credit check themselves or pass on the payment data collected for payment processing to an external credit institution. 

In addition, it is possible that the selected payment service provider collects this data itself when you create an account there. In this case, you must log in with the payment service provider with your access data during the ordering process. In this context, the data protection declaration of the respective payment service provider applies.
We use a payment service provider located in a country outside the European Union. The transfer of personal data to this company only takes place in the context of the need to fulfill the contract.

1. Email newsletter

E-mail advertising with registration for the newsletter
When you register for one of our newsletters or provide your details to download a document free of charge from our website or our Facebook or LinkedIn presence, we use the data required for this or separately provided by you to send you to regularly send our e-mail newsletter based on your consent in accordance with the state of art. 6 paragraph. 1 sentence 1 lit. a GDPR.

The newsletter is sent on our behalf by service providers to whom we pass on your email address for this purpose.

If the newsletter is sent via a service provider based in the US, it is certified under the EU-US Privacy Shield. As a result of this agreement between the US and the European Commission, the European Commission has established an adequate level of data protection for companies certified under the Privacy Shield.

You can unsubscribe from the newsletter at any time by sending a message to the contact option described below or via a link provided for this purpose in the newsletter. After unsubscription, we will delete your e-mail address unless you have expressly consented to further use of your data or we reserve the right to further use data, which is legally permitted and about which we inform you in this statement.

E-mail advertising without registration for the newsletter and your right to object
If we receive your e-mail address in connection with the sale of a product or service and you have not objected to this, we reserve the right to contact you in accordance with Art. 11.7 paragraph 3 Telecommunications Act to regularly send offers for similar products, such as products already purchased, from our range by e-mail. This serves to protect our legitimate interests in an advertising approach to our customers, which take precedence in the weighing of interests process according to Art. 6 paragraph. 1 sentence 1 lit. f GDPR.

The newsletter is sent on our behalf by service providers to whom we pass on your email address for this purpose.

If the newsletter is sent via a service provider based in the US, it is certified under the EU-US Privacy Shield. As a result of this agreement between the US and the European Commission, the European Commission has established an adequate level of data protection for companies certified under the Privacy Shield.

You can object to this use of your e-mail address at any time by sending a message to the contact option described below or via a link provided for this purpose in the promotional e-mail.

 

1. Cookies

To improve the user experience on our website and enable you to use certain functions of it to display suitable products or conduct market research, so-called cookies are used on some pages of this website. This serves the protection of our legitimate interests in the optimized presentation of our offer in accordance with Art. 6 paragraph. 1 sentence 1 lit. f GDPR that are of decisive importance in the process of weighing up interests. A cookie is a small text file that is automatically stored on your end device. Some of the cookies we use are deleted after you close the browser session, i.e. when you close the browser (these are so-called session cookies). Other cookies are stored on your end-user device and allow us to recognize your browser when you visit us again (persistent cookies). To check the retention period of cookies, you can use the Overview function in the cookie settings of your web browser. You can configure your browser so that it informs you when a page uses cookies and decides on a case-by-case basis whether to accept or refuse cookies on a particular website or in general. Each browser has a different policy for managing cookie settings. The browser policy is described in the Help menu of each browser and explains how to change your cookie settings. For more information on how to change the settings in your browser, see the links below:
Internet Explorer™: https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies
Safari™: https://support.apple.com/kb/PH21411?locale=de_DE
Chrome™: http://support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647
Firefox™ https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
Opera™ : http://help.opera.com/Windows/10.20/en/cookies.html

Please note that disabling cookies may limit your access to some features of our website.

Web analysis
Use of Google (Universal) Analytics to analyze website visits
This website uses Google (Universal) Analytics for website analysis to analyze website visits. The web analysis service is provided by Google Ireland Limited, a company incorporated under Irish law with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland (www.google.nl). The purpose of this is to safeguard our legitimate interest in an optimized presentation of our offer in accordance with Art. 6 (1) (f) GDPR. Google (Universal) Analytics uses methods that enable an analysis of your use of the website, such as cookies. The automatically collected information about your use of this website is generally transmitted to a Google server in the USA and stored there. The IP address is shortened by activating IP anonymization on this website before transfer within Member States of the European Union or in other Member States of the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. The anonymized IP address transmitted by your browser in the context of Google Analytics will in principle not be linked to other Google data. At the end of our use of Google Analytics and the purposes pursued, the data collected in this context will be deleted.
If information is transferred to Google servers in the USA and stored there, the American company Google LLC is certified under the EU-US Privacy Shield. You can view a current certificate here [link to: https://www.privacyshield.gov/list]. Based on this agreement between the US and the European Commission, the European Commission has established an adequate level of data protection for companies certified under the Privacy Shield.

You can prevent Google from collecting the data generated by the cookie about your use of the website (including your IP address) and from being processed by Google by downloading and installing the browser plug-in via the following link: https:  / /tools.google.com/dlpage/gaoptout?hl=en

As an alternative to the browser plugin, you can click on this link to prevent Google Analytics from recording this website in the future. An opt-out cookie is placed on your terminal equipment. If you delete your cookies, you will need to click this link again.

1. Sending reminders by e-mail
   If you have given us your express consent for this during or after your order in accordance with art. 6 paragraph. 1 sentence 1 lit. a GDPR, we use your email address to send you an evaluation reminder by email.
   
   Consent can be withdrawn at any time by sending a message to the contact option described below with effect for the future.

2. Contact options and your rights

As a data subject you have the following rights:

• in accordance with art. 15 GDPR, you have the right to request information about your personal data processed by us to the extent described therein;

• in accordance with art. 16 GDPR, you have the right to demand the immediate correction of incorrect or complete personal data stored by us;

• in accordance with art. 17 GDPR, the right to request the deletion of your personal data stored with us unless further processing
  - exercise the freedom of expression and freedom of information;
  - to comply with a legal obligation;
  - for reasons of public interest, or
  - is required for the assertion, exercise or defense of legal claims;

• in accordance with art. 18 GDPR, the right to request the restriction of the processing of your personal data, insofar as
  - you deny the accuracy of the data;
  - the processing is unlawful, but you refuse to erase it;
  - we no longer need the data, but you require it to assert, exercise or defend legal claims, or
  - you have objected to the processing pursuant to Art. 21 GDPR;

• In accordance with art. 20 GDPR, you have the right to receive the personal data you have provided to us in a structured, current and machine-readable format or to request its transmission to another controller;

• The right to file a complaint with a supervisory authority in accordance with Art. 77 GDPR. You can also contact the supervisory authority at your usual place of residence or work or at our company headquarters.

If you have any questions about the collection, processing or use of your personal data, information, correction, restriction of processing or deletion of data or withdrawal of a given consent or objection to a specific use of data, you can contact our data protection officer.

Company Name: Esygn Limited

Address: Strovolos 77, STROVOLOS CENTER, Floor 4, Flat/Office 401, Strovolos, 2018, Nicosia, Cyprus

Company Registration Number: ΗΕ465913

VAT/Tax Number(s): CY60102082P

info@mr-stiff.co.uk

Privacy Policy - Esygn Limited

ADDITIONAL INFORMATION FOR USERS OF CERTAIN JURISDICTIONS

Additional Information for Residents of the EU or the UK

If the General Data Protection Regulation (Regulation (EU) 2016/679) (the “GDPR”) or the UK General Data Protection Regulation and the UK Data Protection Act 2018 (together the “UK DPA”) applies to the processing of your Information that can directly or indirectly identify you, by Esygn Limited, as a data controller, then the following terms apply in addition to, and shall take precedence over, the Policy.

For the purposes of this Policy, Information shall have the meaning ascribed to "personal data" by the GDPR – i.e., any information relating to an identified or identifiable natural person.

Legal Basis, Data Transfers to Store Owners

The processing of your Information by Esygn Limited is mainly based on the fact that it is necessary for providing the Services and more broadly for the performance of your contract. Additionally, we may ground our processing on your consent, on Esygn Limited's legitimate business interest, or on legal obligations we are subject to, each as described under the Policy.

Information will be shared with Store Owners as detailed above to the extent necessary for the processing of your order (i.e., performance of your contract) and also for the purposes of the Store Owners’ legitimate interests in promoting the sale of their products. The Store Owners control how they use this data, so please review the store owner’s privacy policy mentioned above. Where your consent is required for specific processing or use, it will be obtained accordingly.

DPO & EU/UK Representatives

If EU or UK data protection law applies or if you are located in the EEA or the UK, you may contact our data protection representative at Alina Kulikovska, info@esygn.nl.

Rights under Data Protection Laws

If you are a resident of the EEA or the UK, you are entitled to your rights as detailed under this Policy.

You have the right to:

• Access the Information: obtain confirmation from us of whether we are processing Information about you and receive a copy. We may ask for credentials to authenticate your identity.

• Rectify the Information: request correction of inaccurate, incomplete, or outdated Information.

• Delete your Information: request erasure, subject to legal obligations and operational needs.

• Restrict the processing of your Information: obtain restriction of certain processing.

• Data portability: receive your Information in a structured, commonly used, and machine-readable format and request transmission to another controller where feasible.

• Object to processing: including for direct marketing purposes. Contact us or the relevant Store Owner directly to opt out, or use available unsubscribe features.

• Automated decision-making, including profiling: the right not to be subject to decisions based solely on automated processing producing legal or similarly significant effects.
  
  

Children’s Privacy

The Service is not directed to anyone under the age of 16 or the minimum age in your jurisdiction. If we learn that Information has been collected from someone under this age, it will be deleted promptly. Contact info@esygn.nl for concerns.

Other Sites and Services

The Service contains links to third-party websites and services not owned or controlled by Esygn Limited. We are not responsible for their privacy practices or content. Review their privacy policies.

Data Storage

Information is retained only as long as necessary for its purposes and in compliance with GDPR’s storage limitation principle.

Contact Us

For more information, contact info@esygn.nl. 

Data Retention

We may retain your Information for a longer period when it is necessary for compliance with a legal obligation to which we are subject, including, but not limited to, tax, accounting, or other statutory obligations.
In certain cases, we may retain your Information beyond the retention period if it is necessary for our legitimate interests, such as enforcing our terms and conditions, defending against legal claims, fraud prevention, or safeguarding the security and integrity of our systems, provided that such interests do not override your fundamental rights and freedoms.
Once the retention period has expired, or upon your request where applicable, we will securely delete, destroy, or anonymize your Information to ensure it cannot be reconstructed or read.

Data Transfers outside the EU or the UK

As we are an international company, we may securely share your Information with our approved partners located all over the world where necessary for the fulfilment of your purchases and performance of our services, as detailed in this Policy.

Our data servers are based in the EU (Ireland).

The transfer of your Information outside the EEA and UK is protected by the Standard Contractual Clauses in accordance with the European Commission’s model contracts for the transfer of personal data to third countries, unless the data transfer is to a jurisdiction that has been determined by the European Commission (for transfers from the EEA) or the UK Information Commissioner’s Office (for transfers from the UK) to provide an adequate level of protection for individuals’ rights and freedoms for their Information. When we transfer your Information, we will ensure that our data hosting service providers, or any other third-party recipient, provide adequate confidentiality and security commitments required by law. To obtain a copy of the Standard Contractual Clauses applicable to transfers outside the EEA and UK, please contact Alina Kulikovska at info@esygn.nl.

At this time, the U.S. is not recognized by the European Commission or the UK Information Commissioner’s Office as a jurisdiction which offers an adequate level of data protection. Your Information, which is transferred to the U.S., may be processed by U.S. law enforcement agencies or other entities under applicable U.S. law. If you are an EU citizen or resident, or if UK data protection laws apply to you, please note that U.S. laws place limitations on remedies regarding the processing of your Information by U.S. authorities, including limitations on the right or ability to bring a legal action in court, or to appear in a court.

ADDITIONAL INFORMATION FOR USERS OF CERTAIN JURISDICTIONS

Additional Information for Residents of the EU or the UK

For the purposes of this Policy, “Information” means any information or an opinion about an identified individual, or an individual who is reasonably identifiable, whether the information or opinion is true, or whether the opinion is recorded in a material form. We are committed to keeping your Information secure and will use all reasonable precautions to protect it from loss, misuse, or unauthorized access or alteration.

Transferring Personal Information Outside your Territory

As we are an international company, we may securely share your Information with our affiliates and approved partners located globally where necessary for the fulfilment of your purchases and the performance of our services, as detailed in this Policy.

By consenting to overseas disclosure, you acknowledge that we do not guarantee that the overseas recipient will comply with EU or UK data protection laws and they may not be subject to privacy obligations similar to those in your jurisdiction. We will take reasonable steps to ensure that third-party recipients provide adequate confidentiality and security commitments.

Data Retention and Security

We may retain your Information for a longer period when necessary for compliance with a legal obligation to which we are subject, including, but not limited to, tax, accounting, or other statutory obligations.
We may retain your Information beyond the retention period if it is necessary for our legitimate interests, such as enforcing our terms and conditions, defending against legal claims, fraud prevention, or safeguarding the security and integrity of our systems, provided that such interests do not override your fundamental rights and freedoms.
Once the retention period has expired, or upon your request where applicable, we will securely delete, destroy, or anonymize your Information to ensure it cannot be reconstructed or read.

DPO & EU/UK Representative

If EU or UK data protection law applies, or if you are located in the EEA, you may contact Alina Kulikovska, info@esygn.nl.

If you have a complaint regarding your personal data or its processing under EU or UK law, you can also contact the relevant supervisory authority in your jurisdiction.

Rights under Data Protection Laws

If you are a resident of the EEA or the UK, you are entitled to the rights detailed in this Policy, including:

• Access your Information

• Rectify inaccurate or incomplete Information

• Request deletion or restriction of processing

• Object to processing for direct marketing or other legitimate interests

• Request data portability where applicable
  
  

When you send us a request to exercise your rights, we will need to reasonably authenticate your identity and location. We will ask you to provide credentials to verify your identity and may ask further questions to understand the nature and scope of your request.

Data Transfers outside the EU or UK

Our data servers are based in EU (Ireland). The transfer of your Information outside the EEA and UK is protected by the Standard Contractual Clauses approved by the European Commission, unless the data transfer is to a jurisdiction deemed to have an adequate level of protection. When we transfer your Information, we ensure that third-party recipients provide adequate confidentiality and security commitments.
To obtain a copy of the Standard Contractual Clauses applicable to transfers outside the EEA and UK, please contact Alina Kulikovska at info@esygn.nl.

At this time, the U.S. is not recognized by the European Commission or the UK Information Commissioner’s Office as providing an adequate level of data protection. Your Information transferred to the U.S. may be processed under U.S. law, and legal remedies may be limited compared to EU/UK protections.

Additional Information for Australian Residents

If you are located in Australia, we follow similar obligations under the Privacy Act 1988 (Cth). By consenting to overseas disclosure, you acknowledge that recipients may not comply with Australian Privacy Principles.

If you have concerns or complaints, contact Alina Kulikovska, info@esygn.nl. If unresolved, you may lodge a complaint with the Office of the Australian Information Commissioner: https://www.oaic.gov.au/privacy/privacy-complaints/.

Additional Information for Canadian Residents

If you are a resident of Canada, or if Canadian privacy legislation applies to you, we will generally process your Information with your consent. You are not obliged to provide your Information, but refusing may limit our ability to provide services.
Cross-border transfers may involve sharing Information with affiliates or partners outside your province or territory, including the EU and the US. These jurisdictions may have different data protection laws.

CONSENT AND COMPLIANCE

THE STORE OWNERS CONTROL THEIR USE OF THIS DATA, SO PLEASE REFER TO THEIR INDIVIDUAL PRIVACY POLICIES. WHERE YOUR CONSENT IS REQUIRED FOR A SPECIFIC PROCESSING OR USE, IT WILL BE REQUESTED SEPARATELY.

ADDITIONAL INFORMATION FOR USERS OF CERTAIN JURISDICTIONS

Additional Information for Residents of Canada

As a resident of Canada, you have the following rights regarding Information that we hold, subject to any conditions or limitations set out in applicable law:

• You have the right to obtain information about our processing of your Information and to access and receive a copy of your Information that we hold.

• You may have the right to update, complete, or correct inaccuracies in your Information.

• You have the right to withdraw your consent to our processing of your Information, without affecting the lawfulness of processing up until withdrawal. Please note that withdrawing your consent may limit our ability to provide certain services or process certain orders. Withdrawing consent does not obligate us to delete Information we are otherwise required or allowed to retain under applicable law.

Additional Rights for Residents of Québec

• You may have the right to obtain a copy of your Information in a structured, commonly-used, and machine-readable format and request that it be transmitted to another third party you designate, where technically feasible.

• You may request, in certain circumstances, that we cease disseminating your Information or de-index hyperlinks providing access to it if such dissemination contravenes applicable law or a court order.

Some rights may be limited, for example, if fulfilling your request would reveal personal information about another person or if you request deletion of Information we are legally required to retain.

Exercising your Rights

To exercise any of these rights, please send your request to:
Alina Kulikovska, info@esygn.nl.

Complaints to Supervisory Authorities

You have the right to lodge a complaint with the relevant data protection authority of your habitual residence, place of work, or the place of the alleged infringement. Examples include:

• Federal Office of the Privacy Commissioner: https://www.priv.gc.ca/en

• British Columbia: https://www.oipc.bc.ca/

• Alberta: https://oipc.ab.ca/

• Québec: https://www.cai.gouv.qc.ca/

Additional Information for Residents of China Mainland

Children’s Privacy

The Service is not structured to attract or be directed to anyone under 18 years without parental consent. We do not intend to collect Information from anyone under that age. If we learn that we have collected Information from a person under 18 without parental consent, we will delete it promptly. Contact: Alina Kulikovska, info@esygn.nl.

Processing Personal Information outside China Mainland

We provide our services and process your personal information outside China Mainland, including in Ireland and other jurisdictions where our servers and databases are located. Your Information may be securely shared with our affiliates and approved partners worldwide, where necessary for fulfilling your purchases and providing our services.

By agreeing to this Policy, you consent to your Information and sensitive personal Information being collected, used, and disclosed in accordance with this Policy.

Security Measures

Your Information will be secured with safeguards substantially appropriate under China Data Protection Law. Where required, separate consent will be obtained before transferring Information to a third party.

Your Rights under China Data Protection Law

In accordance with applicable China Data Protection Law, you may have the following rights:

• Request access, correction, deletion, or transfer of your Information

• Withdraw your consent or restrict/object to processing

• Request cancellation of your account

• Request an explanation of our Information processing rules

A fee may apply for certain requests. Some requests may be legitimately refused under China Data Protection Law (e.g., to comply with legal obligations or protect third-party rights).

Definition of China Data Protection Law

For the purposes of this Policy, China Data Protection Law refers to the Cybersecurity Law of the People’s Republic of China, the PRC Data Security Law, the PRC Personal Information Protection Law, and related provisions under the PRC Civil Code, regulations, administrative rules, and national guidelines effective in China Mainland (together, “China Data Protection Law”).

Additional Information for Residents of Hong Kong

Children’s Privacy

The Service is not structured to attract or be directed to anyone under the age of 18 years. Accordingly, we do not intend to collect Information from anyone we know to be under that minimum age.
If we learn that we have collected Information from a person who is younger than 18 years or under 14 years without parental consent, we will delete that information promptly. If you believe we hold any such information, please contact us at:
Alina Kulikovska, info@esygn.nl.

Transferring Personal Information Outside Your Territory
As we are an international company, we may securely share your Information with our affiliates and approved partners worldwide where necessary for the fulfilment of your purchases and the performance of our services.
By using our Services, you agree to your Information being exported outside your territory, including your name, email address, physical address, telephone number, ID number, or credit card/payment details. You consent to the Information being processed in the EU, the United States, and any other jurisdiction where Esygn Limited or its service providers operate, including shipping providers, the Store Owner of the merchandise you purchased, and payment service providers.

We will transfer your data only where the transfer is necessary for the performance of the contract between you and Esygn Limited. You are entitled to make a subject access request, request data correction, and object to the use of your Information for direct marketing purposes by contacting: Alina Kulikovska, info@esygn.nl.

Your Rights under the Personal Data (Privacy) Ordinance

Individuals must be notified at the point of collection of the purposes for which the data was collected. Data may only be used for those purposes unless consent is obtained for a new purpose. If you are not happy with this Policy, you may submit a complaint to the Office of the Privacy Commissioner for Personal Data, Hong Kong.

Additional Information for Residents of Japan

Transferring Personal Information Outside Your Territory

As we are an international company, we may securely share your Information with our affiliates and approved partners worldwide, where necessary for the fulfilment of your purchases and the performance of our services.
By using our Services, you consent to your Information and sensitive personal information being collected, used, disclosed, and transferred cross-border in accordance with this Policy, including transfers between Esygn Limited entities and to jurisdictions such as the EU and the United States, or any other jurisdiction where we have databases or affiliates.

You may request us to notify you about the purposes of use, disclose, correct, discontinue the use or provision of, or delete any of your Information stored by us, to the extent provided by the Act on the Protection of Personal Information of Japan. Requests should be sent to:
Alina Kulikovska, info@esygn.nl.

Additional Information for Residents of Singapore

By using our Services, you signify that you have read and understood this Policy. To the extent required under applicable law, you also consent to Esygn Limited collecting, using, and disclosing your personal information in accordance with this Policy.

Transferring Personal Information Outside Your Territory

We will transfer Information, including your name, email address, physical address, and telephone number, to shipping service providers, Store Owners of merchandise you purchase, payment services providers, customs/clearance brokers, and logistics providers who fulfill your orders. Information will only be transferred where necessary for the fulfilment of your purchases.

Your Rights under the Personal Data Protection Act 2012

 At Esygn Limited, as a Merchant of Record provider, we notify you at the point of collection about the purposes for which your personal data is collected. Your data will only be used for those purposes unless you provide consent for a new purpose.

As a data subject, you have legal rights regarding the information we hold about you (to the extent permitted under applicable laws). You are entitled to:

• Request access to the personal data we process about you
  
  

• Request corrections to your personal data
  
  

• Opt out of the use of your data for direct marketing purposes

We do not charge any fees for complying with a data access request.

Transfer of Personal Information Outside Your Jurisdiction

By using our services, you consent to your personal and sensitive information being collected, used, disclosed, and transferred cross-border in accordance with this policy to any jurisdiction where Esygn Limited has databases or affiliates, including the United States, Ireland, and Germany.

Protecting Personal Information

We implement the following measures to protect your personal information:

1. Administrative Measures: Internal management policies and regular employee training.
   
   

2. Technical Measures: Access management, encryption of unique identifiers, and security software installation.
   
   

3. Physical Measures: Restricted access to computer rooms and data storage facilities.
   
   

Personal information is retained for specified periods to comply with tax, export control, and other legal obligations. Electronic records are stored securely and isolated, and destroyed after the retention period using technical measures to prevent recovery. Paper records are shredded or burned.

Specific Retention Requirements (Example: South Korea)

• Contracts or cancellations: 5 years
  
  

• Payment and delivery records: 5 years
  
  

• Consumer complaints/disputes: 3 years
  
  

• Certified electronic document distribution: 10 years
  
  

• Sign-in records: 3 months
  
  

Designated Data Protection Officer
We have appointed the following individual to oversee personal data protection and handle complaints:

• Name: Alina Kulikovska
  
  

• Position: DPO
  
  

• Contact: info@esygn.nl
  
  

Specific Provisions for U.S. Residents

This section applies to residents of U.S. states with consumer data protection laws (e.g., California, Colorado, Connecticut, Florida, Texas, Utah, Virginia). Residents may have rights under laws including the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA). Rights include access, correction, deletion, objection to profiling, and data portability.

Categories of Personal Information We Collect

• Identifiers: name, address, phone, email, IP address
  
  

• Commercial information: products/services purchased or considered
  
  

• Internet/network activity: browsing and search history, interaction with services
  
  

• Geolocation data
  
  

• Payment card details for processing transactions
  
  

• Profile inferences: preferences, behaviors, interests, characteristics
  
  

Sources of Information

• Directly from your activity on our services
  
  

• From third parties, including retailers
  
  

How We Use Personal Information

• To fulfill the purpose for which it was provided
  
  

• To deliver and improve our products and services
  
  

• To enforce our terms and comply with legal obligations
  
  

We do not sell your information for monetary or other consideration. Data is shared only with third parties necessary for fulfilling orders, including retailers, shippers, and payment processors.

Retention of Personal Information

We retain information as necessary for our legitimate business operations, legal compliance, reporting, and contractual obligations.

Your Rights
You may request:

• Access and data portability
  
  

• Correction or deletion of information
  
  

• Limitation of sensitive information use
  
  

• Opt-out of direct marketing
  
  

Requests can be submitted via our privacy center or by emailing: info@esygn.nl. Only you or an authorized representative may make a request. Responses will be provided within 15 days, with possible extension up to 45 days.

Additional Rights for U.S. Residents

• Nevada residents: limited right to opt out of personal information sales (we do not currently sell personal data)
  
  

• California residents: “Shine the Light” law allows requests for disclosure of personal information shared for third-party marketing
  
  

Additional Information for Brazilian Residents

• Our services are not directed to anyone under 18; we do not knowingly collect data from minors. If we discover such data, we delete it immediately.
  
  

• Transfers of Brazilian residents’ data outside Brazil are safeguarded using appropriate measures, including Standard Contractual Clauses.
  
  

• Rights under LGPD include: anonymization, deletion, access, portability, withdrawal of consent, objection to processing, and lodging complaints with the Brazilian Data Protection Authority.

ESYGN LIMITED COOKIES POLICY

Last updated: April 2026

Esygn Limited (“Esygn Limited”, “we”, “our” or “us”) wants to ensure that your use of our services as a Merchant of Record (“Services”) is smooth and reliable. To support this, we use cookies and similar technologies, such as tags, beacons, and JavaScripts (“cookies”), to make our Services relevant to your interests and needs.

References to Esygn Limited (or “we”, “our” or “us”) include all entities, subsidiaries, and affiliated companies of Esygn Limited, as well as websites and services offered under our brand.

What are cookies?

Cookies are small text files, or similar technologies (such as HTML5 local storage, Local Shared Objects, or fingerprinting techniques) that store information or provide access to information already stored on your device, such as your computer, smartphone, or tablet. For the purpose of this policy, “cookies” include any technology used by Esygn Limited to store information about your browsing on our website or to access information already stored.

Cookies contain basic information to recognize your device. This is essential for providing our Services and can help improve your browsing and shopping experience. Cookies expire after a certain period and are typically either removed when you close your browser (“Session Cookies”) or persist for a set time (“Persistent Cookies”).

Types of cookies used by Esygn Limited

We use both Session Cookies and Persistent Cookies to keep track of your preferences and improve our Services. Some cookies are strictly essential for the operation of our Services, while others help us enhance the level of service provided.

We use First-Party and Third-Party Cookies:

• First-party cookies: set directly by the website you are visiting, in this case, our Services.
  
  

• Third-party cookies: set by a domain other than Esygn Limited, for example, for security, analytics, or advertising during checkout.
  
  

When a cookie contains personal information for processing your order, our Privacy Policy also applies.

What happens if I disable cookies?

Cookies will not be stored on your device without your consent. You can manually delete previously set cookies or configure your browser to disable cookies.

Disabling certain cookies may affect your browsing experience. Depending on which cookies are disabled, some functions or areas of our Services may not work correctly.

Categories of cookies we use

1. Essential cookies
Essential cookies are necessary for the basic operation of our Services, such as completing your purchase. Without these cookies, you may not be able to use our Services or complete your order.

2. Functional cookies
Functional cookies allow us to provide a smoother browsing experience. For example, they can save your preferred currency or shipping destination. Without these cookies, some features may not work correctly.

3. Analytics cookies
Analytics cookies help us understand how visitors reach and use our Services, and for how long. They provide anonymous information for statistical analysis, helping us identify errors and test different designs or features. We also use Google Analytics, configured to protect your privacy.

4. Advertising, marketing, and social media cookies
We place advertising, marketing, and social media cookies only with your consent. These cookies help deliver relevant content and measure the effectiveness of campaigns. Most are set by third-party networks and social media platforms.

Obtaining your consent

We need your consent to use all cookies that are not essential. If you do not consent, we will make commercially reasonable efforts to provide the same level of service without using non-essential cookies.

Withdrawing your consent

You can withdraw your consent to advertising, marketing, and social media cookies by contacting: info@esygn.nl.

Managing and deleting cookies

You can manage cookies via your browser settings:

• Microsoft Edge: Settings → Site Permissions → Cookies and site data
  
  

• Google Chrome: Settings → Privacy and Security → Content settings → Cookies
  
  

• Safari: Preferences → Privacy → Remove all Website Data
  
  

• Mozilla Firefox: Tools → Options → Privacy → Cookies
  
  

You can also turn off certain third-party advertising cookies via: Network Advertising Initiative, Digital Advertising Alliance, or Your Online Choices pages.

Some browsers offer a “Do Not Track” signal; our Services do not respond to DNT signals.

Questions or help

If you have questions, we are happy to assist: info@esygn.nl

Changes to this policy

We update this policy as needed. Significant changes will be communicated via email or a notice on our Services, and consent will be requested again where required by law.

Esygn Limited Cookies Table

First-Party Essential & Functional Cookies

 

---

 

Third-Party Essential Cookies

 

---

 

Third-Party Analytics & Marketing Cookies