Privacy Policy

Last Updated: 1st January 2026

Qyvexor AG ("we", "our", or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

Data Controller Information

The data controller for your personal information is Qyvexor AG, a company registered in Germany with registration number HRB578231. Our registered address is Parkstraße 131, 60018 Frankfurt, Hesse, Germany. You can contact us at privacy@qyvexor.pro or +49 697893458 for any privacy-related inquiries.

Data Collection

The data we collect includes personal information that you voluntarily provide to us when using our services or website. We collect this information through various means including contact forms, consultation bookings, and direct communications.

Specifically, we may collect the following types of personal information:

• Contact information (name, email address, phone number, postal address)
• Consultation preferences and beauty product concerns
• Communication history and correspondence with our team
• Website usage data and analytics information
• Cookie and tracking technology data
• Payment information for our services (processed securely through third-party providers)

How We Use Your Information

We use of your data is based on legitimate business interests and your consent where required. The personal information we collect is used to provide you with our beauty consultation services and improve your experience with Qyvexor.

Specifically, we use your information to:

• Provide personalised beauty product consultations and recommendations
• Respond to your inquiries and provide customer support
• Schedule and conduct consultation appointments
• Send follow-up communications related to our services
• Improve our website and services based on usage analytics
• Comply with legal obligations and regulatory requirements
• Protect our legitimate business interests and prevent fraud

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about our use of cookies, please refer to our Cookie Policy.

Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds: your consent for marketing communications and certain data processing activities; performance of a contract when providing our consultation services; compliance with legal obligations; and our legitimate interests in operating our business, improving our services, and maintaining customer relationships.

Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information with trusted service providers who assist us in operating our website and conducting our business, such as payment processors, email service providers, and analytics platforms. These third parties are contractually obligated to keep your information confidential and use it only for the purposes we specify. We may also disclose your information if required by law or to protect our rights and safety.

Your Rights

Under GDPR and applicable data protection laws, your rights regarding your personal data include significant protections and controls. You have the right to access your personal information and receive a copy of the data we hold about you.

Your specific rights include:

• Right of Access: Request access to your personal data
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a portable format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent for data processing

Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes outlined in this Privacy Policy and to comply with our legal obligations. Consultation records and communications are typically retained for three years after your last interaction with us, unless you request earlier deletion. Website analytics data is retained for two years, while marketing consent records are kept until you withdraw consent. We review our data retention practices regularly and securely delete information that is no longer needed.

Data Security

We implement appropriate technical and organisational security measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include encryption of data in transit and at rest, secure server infrastructure, regular security assessments, and staff training on data protection. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

International Data Transfers

As we are based in Germany within the European Union, your data is primarily processed within the EU. If we transfer data outside the EU, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions by the European Commission. Any third-party service providers we use are carefully vetted for their data protection standards and compliance with applicable regulations.

Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16 without parental consent, we will take steps to remove that information from our servers promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date. We encourage you to review this policy periodically to stay informed about how we protect your information.

Contact Information

If you have questions about this Privacy Policy or wish to exercise your data protection rights, please contact us using the following information:

If you are not satisfied with our response to your privacy concerns, you have the right to lodge a complaint with the relevant data protection authority in your jurisdiction.