Legal
Privacy Policy
Last updated: 1 February 2026 · Effective date: 1 February 2026
This Privacy Policy explains how PharmaForce collects, uses, and protects your personal data in accordance with the EU General Data Protection Regulation (GDPR — Regulation 2016/679) and applicable national data protection laws.
1. Who We Are
PharmaForce ("we", "us", "our") is an e-commerce business operating at pharmaforce.eu, supplying sports pharmacology, dietary supplements, and performance products to customers across the European Union. Our contact email is pharmaforce@gmail.com.
2. What Data We Collect
When you place an order or contact us, we may collect the following personal data: • Full name and surname • Email address • Shipping address (country, city, street, postal code) • Phone number (optional) • Payment reference details (bank transfer only — we do not collect card data) • IP address and browser information (collected automatically via server logs) • Communications you send us (email, live chat messages) We do not collect sensitive personal data such as health records, biometric data, or financial account numbers.
3. How We Use Your Data
We use your personal data for the following purposes: • Processing and fulfilling your order (legal basis: contract performance) • Sending order confirmations and shipping updates (legal basis: contract performance) • Responding to your customer service inquiries (legal basis: legitimate interest) • Complying with applicable EU laws and regulations (legal basis: legal obligation) • Improving our website and services through aggregated analytics (legal basis: legitimate interest) We do not use your data for automated decision-making or profiling that produces legal effects.
4. Data Sharing
We do not sell, rent, or trade your personal data to third parties. We may share your data only with: • Shipping and logistics partners (for order delivery purposes only) • Payment processors (we use bank transfer only; no third-party payment gateway receives your card data) • IT infrastructure providers (hosting, email delivery) acting as data processors under GDPR-compliant contracts • Law enforcement or regulatory bodies when required by law All third-party processors are contractually bound to use your data solely for the services they provide to us.
5. Data Retention
We retain your personal data for as long as necessary to fulfil the purposes for which it was collected: • Order data: 7 years (EU accounting and tax obligations) • Customer communications: 2 years from last contact • Website analytics data: 12 months (aggregated, anonymised) After the retention period, data is securely deleted or anonymised.
6. Your Rights Under GDPR
As an EU resident, you have the following rights regarding your personal data: • Right of access — request a copy of the data we hold about you • Right to rectification — correct inaccurate or incomplete data • Right to erasure — request deletion of your data ("right to be forgotten") • Right to restrict processing — limit how we use your data • Right to data portability — receive your data in a machine-readable format • Right to object — object to processing based on legitimate interest • Right to withdraw consent — where processing is consent-based To exercise any of these rights, contact us at pharmaforce@gmail.com. We will respond within 30 days. You also have the right to lodge a complaint with your national data protection authority.
7. Cookies
Our website uses the following types of cookies: • Strictly necessary cookies: required for the website to function (session management, cart) • Analytical cookies: anonymised usage statistics (no personal identification) We do not use advertising or tracking cookies. You can manage cookie preferences through your browser settings at any time.
8. Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or disclosure. These include: • HTTPS encryption for all data transmitted to and from our website • Access controls limiting data access to authorised personnel only • Regular security reviews of our systems No system is 100% secure. If you suspect a security incident involving your data, contact us immediately at pharmaforce@gmail.com.
9. International Transfers
We primarily process data within the European Economic Area (EEA). If any data is transferred outside the EEA (e.g., via third-party software tools), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.
10. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. We will notify you of material changes by posting the updated policy on this page with a revised date. Continued use of our website after changes constitutes acceptance of the updated policy.
Data Protection Contact
For any privacy-related questions or requests, contact us at pharmaforce@gmail.com. We will respond within 30 calendar days.