Free shipping
Fast delivery options
Refund
Secure checkout and support
Up to 90 days*
Return window on many items
Customer login Reseller login
inuno.shop EU B2C marketplace
Cart
Privacy policy

Privacy policy

This Privacy Policy explains how personal data is processed on iNUNO.shop in accordance with the General Data Protection Regulation (GDPR) and applicable European Union data protection laws. iNUNO.shop is an online marketplace. Products are offered, sold and shipped by independent sellers. Unless explicitly stated otherwise, iNUNO.shop is not the contractual seller of products.

1. Controller

The controller for the operation of the iNUNO.shop marketplace platform is:

INUNO
Sole proprietorship of Ana Novoselac
Put Znjana 14e, 21000 Split, Croatia
Email: info@inuno.shop
Phone: 00385 91 9166044

2. Marketplace model and seller responsibility

Independent sellers using iNUNO.shop are separate controllers for the personal data they process to fulfil orders, including shipping, invoicing and customer service. iNUNO.shop shares the data necessary for order fulfilment with the relevant seller.

3. Categories of personal data

  • Account data: name, email address, login credentials, account settings
  • Order data: products ordered, quantities, prices, order timestamps, order status
  • Shipping and billing data: addresses and contact details needed for fulfilment
  • Payment data: payment status, transaction references, and identifiers provided by payment providers
  • Support and communication data: messages and correspondence with support or sellers
  • Technical data: IP address, device and browser data, log files, security related events

4. Purposes of processing

  • To provide and operate the marketplace and user accounts
  • To process orders and enable payments
  • To transmit order details to the relevant seller for fulfilment
  • To provide customer support and handle disputes, returns and claims
  • To comply with legal, tax and accounting obligations
  • To maintain security, prevent fraud and abuse, and ensure platform integrity

5. Legal bases

We process personal data under Article 6 GDPR, in particular:

  • Performance of a contract or steps prior to entering into a contract
  • Compliance with legal obligations
  • Legitimate interests in operating, securing and improving the platform
  • Consent, where required by law, which can be withdrawn at any time

6. Payments via Stripe

Payments are processed by Stripe as an external payment service provider. iNUNO.shop does not store full card details. Stripe processes personal data under its own responsibility and privacy terms. iNUNO.shop receives payment status information and transaction references needed for order processing, accounting and fraud prevention.

7. Recipients of personal data

Depending on the transaction and your use of the platform, personal data may be disclosed to:

  • The seller of the ordered product, for fulfilment, shipping and support
  • Payment service providers, in particular Stripe
  • Shipping and logistics providers used by the seller
  • IT and hosting providers acting as processors under data processing agreements
  • Authorities or advisors where required by law or for legal defence

8. Hosting and processing location

The platform is hosted in the European Union. Processors are bound by contracts and may process personal data only on documented instructions and for the purposes described in this policy.

9. Cookies and similar technologies

We use essential cookies that are required for basic functionality such as session handling, security, and shopping related features. If optional cookies are used, they are applied only where legally permitted and, where required, based on your consent.

10. Data retention

We retain personal data only for as long as necessary for the purposes described above. Order, invoice and accounting data may be retained for statutory retention periods. Technical logs are retained for security and operational purposes and deleted or anonymised when no longer required.

11. Security

We implement appropriate technical and organisational measures to protect personal data, including access control, encryption where appropriate, monitoring, and secure development and hosting practices.

12. Your rights

Under the GDPR you have the right to request:

  • Access to your personal data
  • Rectification of inaccurate or incomplete data
  • Erasure of data, where applicable
  • Restriction of processing, where applicable
  • Data portability, where applicable
  • Objection to processing based on legitimate interests
  • Withdrawal of consent at any time where processing is based on consent

To exercise your rights, contact us at info@inuno.shop.

13. Complaints to a supervisory authority

You have the right to lodge a complaint with a data protection supervisory authority. The competent authority in Croatia is:

Croatian Personal Data Protection Agency (AZOP)
https://azop.hr/

14. International transfers

Personal data is primarily processed within the European Economic Area. If transfers outside the EEA occur, appropriate safeguards under GDPR Articles 44 to 49 are applied.

15. Changes to this policy

This Privacy Policy may be updated to reflect legal or technical changes. The current version is always available on this page.