Privacy Policy

Last updated: January 15, 2026

RevivoBooks (“we”, “us”, or “our”) is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you use our website www.revivobooks.com and purchase our products.

This policy complies with the General Data Protection Regulation (GDPR) and Dutch data protection laws.

1. Data Controller

RevivoBooks
Email: info@revivobooks.com
Website: www.revivobooks.com

We are the data controller responsible for your personal data. If you have any questions about this Privacy Policy or how we handle your data, please contact us at info@revivobooks.com.

2. What Personal Data We Collect

We collect and process the following types of personal data:

2.1 Information You Provide to Us

Account and Order Information:

Full name
Email address
Shipping address
Billing address
Phone number (optional)
Order history
Product preferences

Payment Information:

Payment method details (processed securely by our payment providers)
Transaction history
Billing information

Communication Data:

Email correspondence
Customer service inquiries
Product reviews and ratings
Survey responses (if you choose to participate)

2.2 Information We Collect Automatically

Technical Data:

IP address
Browser type and version
Device type and operating system
Time zone settings
Browser plug-in types and versions
Geographic location (country/city level)

Usage Data:

Pages visited on our website
Products viewed
Time spent on pages
Links clicked
Search queries
Referral source (how you arrived at our website)

Cookie Data:

Cookie identifiers and preferences
Session data
Analytics data

2.3 Information from Third Parties

We may receive information about you from:

Payment processors (transaction confirmation)
Shipping carriers (delivery status)
Analytics providers (website usage statistics)
Marketing platforms (email delivery status)

3. How We Use Your Personal Data

We process your personal data for the following purposes:

3.1 To Fulfill Your Orders

Legal basis: Contract performance and legitimate interests

Process and fulfill your orders
Arrange shipping and delivery
Send order confirmations and shipping notifications
Process payments and prevent fraud
Handle returns and refunds (when applicable)
Provide customer support

3.2 To Communicate with You

Legal basis: Contract performance, consent, and legitimate interests

Respond to your inquiries and requests
Send transactional emails (order confirmations, shipping updates)
Provide customer service support
Send administrative information (policy changes, account updates)
Request feedback and reviews

3.3 Marketing Communications

Legal basis: Consent (you can opt-out at any time)

Send promotional emails about new books, special offers, and sales
Share news and updates about RevivoBooks
Recommend products based on your interests
Invite you to participate in surveys or contests

You can unsubscribe from marketing emails at any time by clicking the “unsubscribe” link in any promotional email or by contacting us at info@revivobooks.com.

3.4 To Improve Our Services

Legal basis: Legitimate interests

Analyze website usage and user behavior
Improve website functionality and user experience
Develop new features and services
Conduct market research
Test and optimize our website performance

3.5 For Security and Fraud Prevention

Legal basis: Legitimate interests and legal obligations

Detect and prevent fraud
Protect against security threats
Monitor for suspicious activity
Verify identity when necessary
Enforce our Terms and Conditions

3.6 Legal Compliance

Legal basis: Legal obligations

Comply with applicable laws and regulations
Respond to legal requests and court orders
Maintain accounting and tax records
Protect our legal rights

4. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

Contract performance: Processing necessary to fulfill our contract with you (e.g., delivering your order)
Legal obligation: Processing required to comply with legal requirements (e.g., tax records)
Consent: Processing based on your explicit consent (e.g., marketing emails)
Legitimate interests: Processing necessary for our legitimate business interests, balanced against your rights (e.g., fraud prevention, website analytics)

5. How We Share Your Personal Data

We do not sell your personal data to third parties. We share your information only with trusted service providers and partners who help us operate our business:

5.1 Service Providers

Shipping Carriers:

PostNL, MyParcel, DHL, and other delivery services
Purpose: To deliver your orders
Data shared: Name, shipping address, phone number, order details

Payment Processors:

Stripe, PayPal, Mollie, and other payment gateways
Purpose: To process payments securely
Data shared: Payment information, billing address, transaction details

Email Service Providers:

Brevo (formerly Sendinblue), Mailchimp, or similar services
Purpose: To send order confirmations and marketing emails
Data shared: Email address, name, order information

Website Hosting and Infrastructure:

IONOS, AWS, or other hosting providers
Purpose: To host our website and databases
Data shared: All data stored on our website

Analytics Providers:

Google Analytics, Hotjar, or similar services
Purpose: To analyze website performance and user behavior
Data shared: Usage data, technical data (anonymized where possible)

5.2 Legal Requirements

We may disclose your personal data if required by law or in response to:

Court orders or legal processes
Government or regulatory requests
Law enforcement inquiries
Protection of our legal rights or property
Prevention of fraud or security threats

5.3 Business Transfers

If RevivoBooks is involved in a merger, acquisition, or sale of assets, your personal data may be transferred to the new owner. We will notify you of any such change.

6. International Data Transfers

Your personal data is primarily stored and processed within the European Economic Area (EEA). If we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as:

EU Standard Contractual Clauses
Adequacy decisions by the European Commission
Privacy Shield certification (for US companies, where applicable)
Other legally approved transfer mechanisms

For example, some of our service providers (such as cloud hosting or analytics providers) may process data in the United States or other countries. We ensure these providers comply with GDPR requirements.

7. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy:

7.1 Retention Periods

Account data: As long as your account is active, plus 2 years after last activity
Order data: 7 years (required for tax and accounting purposes under Dutch law)
Marketing data: Until you unsubscribe or withdraw consent, plus 2 years
Customer service records: 3 years from last interaction
Website analytics: 26 months (anonymized data may be retained longer)
Security logs: 1-3 years depending on the type of log

7.2 Deletion

After the retention period expires, we securely delete or anonymize your personal data. You can also request earlier deletion (see Section 9: Your Rights).

8. Data Security

We take the security of your personal data seriously and implement appropriate technical and organizational measures to protect it:

8.1 Security Measures

Encryption: SSL/TLS encryption for data transmission; encrypted storage for sensitive data
Access controls: Limited access to personal data on a need-to-know basis
Authentication: Strong password requirements and multi-factor authentication
Firewalls: Network security measures to prevent unauthorized access
Regular updates: Software and security patches applied promptly
Monitoring: Continuous monitoring for security threats and breaches
Staff training: Regular privacy and security training for our team
Incident response: Procedures in place to respond to data breaches

8.2 Payment Security

We use PCI DSS compliant payment processors. We do not store your full credit card details on our servers.

8.3 Your Responsibility

Please keep your account password secure and do not share it with others. Notify us immediately if you suspect unauthorized access to your account.

9. Your Rights Under GDPR

As a data subject in the EU, you have the following rights:

9.1 Right of Access

You have the right to request a copy of the personal data we hold about you. You can request:

Confirmation that we process your data
Access to your personal data
Information about how we use your data

9.2 Right to Rectification

You can request that we correct any inaccurate or incomplete personal data. You can update most information directly in your account settings.

9.3 Right to Erasure (Right to be Forgotten)

You can request that we delete your personal data in the following circumstances:

The data is no longer necessary for the purposes it was collected
You withdraw consent (where processing is based on consent)
You object to processing and there are no overriding legitimate grounds
The data was unlawfully processed
Deletion is required to comply with a legal obligation

Note: We may not be able to delete all data if we have a legal obligation to retain it (e.g., tax records for 7 years).

9.4 Right to Restriction of Processing

You can request that we restrict processing of your personal data in certain situations, such as:

While we verify the accuracy of disputed data
When processing is unlawful but you don’t want erasure
When we no longer need the data but you need it for legal claims
While we verify legitimate grounds for processing after an objection

9.5 Right to Data Portability

You can request to receive your personal data in a structured, commonly used, machine-readable format and have it transmitted to another controller.

9.6 Right to Object

You can object to:

Processing based on legitimate interests
Direct marketing (including profiling)
Processing for research or statistical purposes

9.7 Right to Withdraw Consent

Where processing is based on consent, you can withdraw your consent at any time. This does not affect the lawfulness of processing before withdrawal.

9.8 Right Not to be Subject to Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you.

We do not currently use automated decision-making or profiling.

9.9 How to Exercise Your Rights

To exercise any of these rights, please contact us at:

Email: info@revivobooks.com
Subject line: “GDPR Request – [specify your request]”

We will respond to your request within one month. In complex cases, we may extend this by two additional months and will inform you of the delay.

We may need to verify your identity before processing your request. This is a security measure to ensure we don’t disclose personal data to unauthorized persons.

9.10 Right to Lodge a Complaint

If you believe we have violated your privacy rights, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens):

Autoriteit Persoonsgegevens
Postbus 93374
2509 AJ Den Haag
Netherlands
Website: autoriteitpersoonsgegevens.nl
Phone: (+31) – (0)70 – 888 85 00

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website. For detailed information, please see our Cookie Policy.

10.1 Types of Cookies We Use

Strictly Necessary Cookies:

Enable core website functionality
Remember items in your shopping cart
Authenticate your login session
Essential for website security

Performance Cookies:

Collect anonymous information about how you use our website
Help us improve website performance
Identify popular pages and features

Functional Cookies:

Remember your preferences (language, region)
Personalize your experience
Enable enhanced features

Marketing Cookies:

Track your browsing across websites
Deliver relevant advertisements
Measure advertising effectiveness
Require your consent

10.2 Third-Party Cookies

We use third-party services that may set cookies:

Google Analytics (website analytics)
Facebook Pixel (advertising)
Payment processors (secure transactions)

10.3 Managing Cookies

You can control cookies through:

Our cookie consent banner (on first visit)
Your browser settings (block or delete cookies)
Opt-out tools provided by advertising networks

Note: Blocking certain cookies may affect website functionality.

11. Children’s Privacy

Our website and services are not directed to children under 16 years of age. We do not knowingly collect personal data from children under 16.

If we become aware that we have collected personal data from a child under 16 without parental consent, we will take steps to delete that information as soon as possible.

If you are a parent or guardian and believe your child has provided us with personal data, please contact us at info@revivobooks.com.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or business operations.

When we make significant changes, we will:

Update the “Last updated” date at the top of this policy
Notify you via email (if you have an account)
Display a prominent notice on our website
Request your consent if required by law

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your data.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

RevivoBooks
Email: info@revivobooks.com
Website: www.revivobooks.com

For GDPR-related inquiries:
Email: info@revivobooks.com
Subject: “GDPR Request” or “Privacy Inquiry”

We will respond to your inquiry within a reasonable timeframe, typically within one month.

14. Additional Resources

For more information about data protection and your rights:

By using www.revivobooks.com, you acknowledge that you have read and understood this Privacy Policy.