Art of You

Legal

Privacy Policy

Version 002 — Effective 1st of August 2025

01

Overview

Art of You BV collects personal data through its website, mobile apps, email, telephone, consultations, and laboratory services. We are committed to protecting your privacy and this policy explains how your data is collected, used, stored, and shared.

02

Privacy at a Glance

  • Information collected only supports personalised supplements and services
  • Your data is never sold
  • Health and genetic data requires your explicit consent
  • You can access, correct, or delete your data at any time
  • Security includes encryption, access controls, and regular reviews
  • Consent withdrawal is possible without affecting standard service access
03

Personal Data Categories Collected

Identity Data: Name, date of birth, gender

Contact Data: Address, email, phone number

Financial Data: Payment information (processed by payment providers)

Transaction Data: Order and payment details

Technical Data: IP address, browser type, device identifiers

Profile Data: Preferences, survey responses

Usage Data: Website and app activity

Marketing Data: Communication preferences

Special Categories: Health, biometric, or genetic data (explicit consent required)

04

Legal Basis for Processing

We process your data when:

  • Performing contract obligations
  • Complying with legal requirements
  • Obtaining explicit consent
  • Serving legitimate interests
  • Protecting vital interests
  • Conducting permitted research
05

Health and Genetic Data

  • Processed exclusively with explicit consent under Article 9 GDPR
  • Used solely for personalised supplement formulations
  • Stored separately with enhanced security
06

AI and Machine Learning

  • Anonymised or pseudonymised data may train algorithms
  • Identifiable health/genetic data is never used without explicit consent
  • Data is aggregated and de-identified where possible
07

Data Sharing

Third-party recipients include accredited laboratories, secure payment processors, and delivery partners. Providers are contractually bound to protect your data and cannot use it for their own marketing.

08

International Data Transfers

Data transferred outside the EEA uses:

  • European Commission adequacy decisions
  • Standard Contractual Clauses
  • Binding Corporate Rules
  • Explicit user consent (with risk disclosure)
09

Data Retention

  • Health data is deleted or anonymised 24 months after your last order (unless legally required otherwise)
  • Transaction and accounting data is retained per financial legislation
10

Your Rights (GDPR)

You may:

  • Access your personal data
  • Correct inaccurate information
  • Request deletion of your data
  • Restrict processing
  • Object to processing
  • Request data portability
  • Withdraw consent at any time
  • Complain to data protection authorities

Contact: support@artofyou.life

11

Automated Decision-Making

You may request human review of any automated decisions that significantly affect you.

12

Children's Privacy

Our services are not directed at individuals under 16. Any inadvertently collected data from children is deleted immediately.

13

Cookies

Cookies enhance your experience and help us analyse usage. You may disable cookies in your browser settings, though some features may be affected.

14

Marketing Communications

  • Sent only with your agreement
  • Opt-out available via email unsubscribe or direct contact
  • Health/genetic data is never used for marketing profiling without consent
15

Security

Technical and organisational measures protect your data through encryption, restricted access, and regular security reviews. Full credit card details are never stored.

16

Policy Updates

Material changes to this policy will trigger email notification or a prominent notice on our website.