Privacy policy

Effective date: 6 October 2025

1) Who we are (Data Controller)

This Privacy policy explains how we collect and process personal data when you use our e-commerce services, visit our website, or otherwise interact with us.

Data controller:
SIA AXIAL Trade
Legal form: Limited liability company (SIA)
Registration No.: 40103709466

2) What personal data we collect

  • Identity data (e.g., first and last name, company name if applicable).
  • Contact data (e.g., billing and delivery addresses).
  • Order data (e.g., products, quantities, order history, invoices).
  • Payment data (payment status, transaction identifiers from payment providers; we do not store full card numbers).
  • Account data (if you create an account: login identifier, hashed password, preferences).
  • Technical data (IP address, device and browser info, cookies, and similar identifiers).
  • Communications (emails or messages you send us, support requests, and our responses).

3) Why we process your data (purposes) and legal bases

  • To sell and deliver products (process orders, take payment, fulfill delivery, provide warranty and support) — Art. 6(1)(b) GDPR: contract necessity.
  • To comply with legal obligations (tax and accounting rules, product safety, warranty laws) — Art. 6(1)(c) GDPR.
  • To prevent fraud and secure our services (security logs, abuse monitoring) — Art. 6(1)(f) GDPR: legitimate interests.
  • To communicate with you about your orders or when you contact us — Art. 6(1)(b) or (f) GDPR.
  • Marketing (only with your consent, e.g., newsletters) — Art. 6(1)(a) GDPR. You can withdraw consent at any time.

4) Cookies and similar technologies

We use essential cookies needed for site functionality (e.g., cart, checkout, authentication). With your consent, we may use analytics cookies to understand site usage and improve performance. You can control cookies in your browser settings; essential cookies are required for the site to work.

5) How we share your data

  • Service providers (processors) that help us operate the store (e-commerce platform hosting, payment processing, delivery/courier services, IT support, analytics). They only process data under our instructions and must protect it.
  • Public authorities when required by law (e.g., tax authorities, law enforcement).
  • Business transfers if we reorganize, merge, or sell parts of our business, your data may be transferred as permitted by law.

6) International transfers

If personal data is transferred outside the European Economic Area, we will ensure appropriate safeguards such as the European Commission's standard contractual clauses or an adequacy decision, and apply supplementary measures where necessary.

7) Data retention

  • Orders and invoices: kept as required by applicable accounting and tax laws (often up to 10 years).
  • Customer account data: kept while your account is active and for a reasonable period after closure to resolve disputes or enforce agreements.
  • Communications and support: kept for as long as needed to handle your request and maintain records.
  • Marketing data: kept until you withdraw consent or object, after which we may retain minimal records to respect your choice.
  • Security logs: kept for a limited period necessary for security and auditing.

8) Your rights under the GDPR

Subject to legal conditions and exceptions, you can:

  • Request access to your personal data and obtain a copy.
  • Request rectification of inaccurate or incomplete data.
  • Request erasure of data ("right to be forgotten").
  • Request restriction of processing.
  • Object to processing based on legitimate interests and to direct marketing at any time.
  • Request data portability for data you provided to us, processed by automated means and based on consent or contract.
  • Withdraw your consent at any time (this does not affect processing prior to withdrawal).
  • Lodge a complaint with a supervisory authority in the EU/EEA.

9) How to contact us

To exercise your rights or ask questions about this Privacy policy, write to us at our postal address:
SIA AXIAL Trade, Dārzaugļu iela 1-112, Rīga, LV-1012, Latvia.

10) Children's privacy

Our services are not directed to children under 16. We do not knowingly collect personal data from children under 16. If we learn that we have collected such data, we will take steps to delete it.

11) Security

We apply technical and organizational measures appropriate to the risk, including access controls, encryption in transit where applicable, and regular reviews of our safeguards. No method of transmission or storage is 100% secure; we work to continuously improve our protections.

12) Changes to this Policy

We may update this Privacy policy from time to time. Significant changes will be indicated by updating the effective date and, where appropriate, by providing a more prominent notice.