Login

Country

Cart

Your cart is empty

Privacy policy

Last updated: 25 June 2026

Privacy Policy

 

1. Introduction
MONTREDO operates this store and website, including all related information, content,
features, tools, products and services (the "Services"). This Privacy Policy describes
how we collect, use and disclose your personal data when you visit, use or make a
purchase using the Services or otherwise communicate with us. If there is a conflict
between our Terms of Service and this Privacy Policy, this Privacy Policy controls with
respect to the processing of personal data.

2. Controller
The controller within the meaning of the GDPR is:
MONTREDO GmbH, Friedrichstraße 122/123, 10117 Berlin, Germany
Email: service@montredo.com

3. Data protection contact
For questions about data protection or to exercise your rights, contact us at:
Email: datenschutz@montredo.com · Phone: +49 30 28886470
Postal address: MONTREDO GmbH, Friedrichstraße 122/123, 10117 Berlin, Germany
(Please add "Data Protection".)

4. Definitions
"Personal data" means information that identifies or can reasonably be linked to you or
another person. It does not include anonymously collected or de-identified information.

5. Personal data we collect or process
Depending on how you interact with the Services, we may process: contact details (name, shipping/billing address, phone, email); financial information (payment details,
transaction details, payment confirmations); account information (username, password, security questions, preferences); transaction information (items viewed, added to cart or wishlist, purchased, returned or cancelled, and past transactions); communications with us; device information (device, browser, network, IP address and other identifiers); and usage information.

6. Server log data (technical necessity)
When you visit our website, we process technical log data such as IP address, date/time, requested page, referrer, browser, operating system and language. This is necessary to provide the website, ensure security and prevent misuse (Art. 6(1)(f) GDPR).

7. Data sources
We collect data directly from you, automatically through the Services (e.g. cookies),
from our processors, and from partners/third parties (e.g. advertising or social media
partners, subject to your consent where required).

8. Purposes and legal bases (GDPR)
8.1 Provide, tailor and improve the Services (website, checkout, order processing,
payments, shipping, returns, account administration): performance of contract or
pre-contractual steps (Art. 6(1)(b)) and legitimate interests (Art. 6(1)(f)).
8.2 Marketing and advertising: consent (Art. 6(1)(a)).
8.3 Security and fraud prevention: legitimate interests (Art. 6(1)(f)).
8.4 Communicating with you / customer support: performance of contract (Art. 6(1)(b)).
8.5 Legal reasons (compliance with legal obligations, enforcement of claims): Art.
6(1)(c) and Art. 6(1)(f).

9. Cookies and consent management (Usercentrics)
9.1 We use cookies and similar technologies (pixels, tags, SDKs) to operate the website
and provide core functions. With your consent we also use them for analytics and
marketing. The legal basis for storing/accessing information on your device is Section
25 TDDDG; non-essential technologies are used only with your consent.
9.2 We use the consent management platform of Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, which displays our cookie banner, manages preferences and records consent.
9.3 Strictly necessary cookies operate the website (e.g. cart, checkout).
9.4 Analytics/marketing technologies (e.g. Google Analytics 4) are used only with
consent.
9.5 You can adjust your cookie preferences at any time via the cookie settings on our
website.

10. How we disclose personal data
We may disclose data to: Shopify and service providers operating our website/services;
payment and logistics partners; marketing/advertising partners (subject to consent);
authorities where legally required; and affiliates/business partners where necessary.
10.1 Shopify hosts our online store and may process data to operate and improve the
platform. More information: https://www.shopify.com/legal/privacy/app-users and
https://privacy.shopify.com

11. Payments
We use Shopify Payments as well as PayPal and Klarna as payment providers. USDC payments are handled within Shopify Payments. Data necessary for payment processing may be transmitted to the respective provider (Art. 6(1)(b) and (f) GDPR).
11.1 PayPal (Europe) S.à r.l. et Cie, S.C.A., 22–24 Boulevard Royal, L-2449 Luxembourg — https://www.paypal.com/webapps/mpp/ua/privacy-full
11.2 Klarna Bank AB, Sveavägen 46, 111 34 Stockholm, Sweden — https://www.klarna.com/international/privacy-policy/

12. Newsletter and Mailchimp
12.1 If you subscribe to our newsletter, we use your email address to send marketing
communications. We use a double opt-in process and store confirmation details to
document consent (Art. 6(1)(a) GDPR).
12.2 We use Mailchimp (Intuit Mailchimp), operated by The Rocket Science Group LLC,
405 N Angier Ave NE, Atlanta, GA 30308, USA, to send and manage our newsletters.
Mailchimp acts as a processor under Art. 28 GDPR. Where data is processed in the USA, the transfer is based on the EU-US Data Privacy Framework (Intuit is certified) and/or EU Standard Contractual Clauses. Data processing addendum:
https://mailchimp.com/legal/data-processing-addendum/
12.3 We may use services such as Google, Microsoft Bing, Meta (Facebook/Instagram),
LinkedIn or YouTube, which may process usage and device data.

13. Consent requirement
Analytics and marketing tools are used only if you consent via the Usercentrics cookie
banner (Art. 6(1)(a) GDPR).

14. International transfers
Personal data may be transferred to third countries, in particular the USA. Such
transfers are safeguarded by the EU-US Data Privacy Framework for certified recipients (e.g. Shopify, Google, Meta) and/or by EU Standard Contractual Clauses together with
supplementary measures where required.

15. Third-party websites
Our Services may contain links to third-party websites. We are not responsible for their
privacy practices.

16. Children's data
Our Services are not intended for children. We do not knowingly collect personal data
from children.

17. Security and retention
17.1 We implement appropriate technical and organisational security measures, including SSL/TLS encryption.
17.2 We retain personal data only as long as necessary for the purposes described, and
thereafter for the duration of statutory retention obligations — in particular up to 10
years for invoices and commercial/tax records (Section 147 AO, Section 257 HGB) — after which the data is deleted or anonymised.

18. Your rights (EEA / UK)
You may have the rights of access, rectification, deletion, restriction of processing,
data portability, objection, and withdrawal of consent. To exercise them, contact
datenschutz@montredo.com.

19. Complaints
You have the right to lodge a complaint with a supervisory authority.
EU authorities: https://edpb.europa.eu/about-edpb/about-edpb/members
Germany: https://www.bfdi.bund.de

20. Changes to this Privacy Policy
We may update this Privacy Policy from time to time. The updated version will be posted on this page.

21. Contact
MONTREDO GmbH, Friedrichstraße 122/123, 10117 Berlin, Germany
Email: service@montredo.com · Phone: +49 30 28886470