Springer's
Join the list

Privacy

Privacy Policy

Last updated: 19 June 2026

1. Controller

The controller under the GDPR is Springer Organics UG (haftungsbeschränkt), [street and house number], [postal code and city], Germany. Contact: hello@eatspringers.com.

2. Data protection contact

If a data protection officer is appointed, their details will be added here. Until then, you can reach our privacy contact at hello@eatspringers.com.

3. Data we process

We process data you provide, such as name, email address, delivery and billing address, phone number, order details, payment status, support messages, newsletter consents, waitlist and referral data. We also process technical data such as IP address, device and browser information, cookie IDs, log files, consent status, referrer, page views and interactions with our website.

4. Purposes and legal bases

  • Shop, cart, order, payment, shipping and customer service: Article 6(1)(b) GDPR.
  • Newsletter, waitlist, consent cookies and optional marketing communication: Article 6(1)(a) GDPR.
  • Fraud prevention, IT security, debugging, direct marketing to existing customers and business analytics: Article 6(1)(f) GDPR.
  • Tax, commercial, food-law and consumer-law retention and documentation duties: Article 6(1)(c) GDPR.

5. Newsletter, waitlist and referrals

When you sign up, we store your email address, language, timestamp, source, preferred flavour, referral code and proof of consent. We use this data to send launch information, discounts, availability and relevant product updates. You can unsubscribe at any time through the unsubscribe link or by email.

6. Cookies, analytics and advertising

Essential cookies provide the shop, cart, security, consent management and language settings. Optional analytics and marketing cookies are used only with consent. You can withdraw consent at any time with effect for the future.

7. Recipients and service providers

We use service providers for hosting, Shopify storefront operations, payment processing, shipping, email delivery, analytics, consent management, customer support, accounting and fraud prevention. These providers process data under data processing agreements or their own statutory responsibility. Payment data is generally processed directly by the relevant payment provider.

8. International transfers

Some providers may process data outside the EU/EEA, in particular in the United States, Canada or the United Kingdom. Where required, we use adequacy decisions, EU Standard Contractual Clauses, transfer impact assessments and additional safeguards.

9. Retention

We retain personal data only as long as needed for the relevant purposes. Order and accounting records are typically retained for up to ten years. Support data is typically retained for up to three years after the request is closed. Newsletter and waitlist data is retained until withdrawal or until it is no longer needed for the launch purpose. Technical logs are usually deleted after a short period unless security checks require longer retention.

10. Your rights

You have rights of access, rectification, erasure, restriction, portability, objection to processing based on legitimate interests and withdrawal of consent. You also have the right to lodge a complaint with a data protection supervisory authority.

11. Required data

For orders, we need the data required for contract performance, payment, delivery and statutory documentation. Without this data we cannot fulfil an order. Newsletter and analytics data are voluntary.

12. Automated decisions

We do not make decisions based solely on automated processing that produce legal effects concerning you or similarly significantly affect you. Fraud and risk checks may use automated signals, but relevant effects are reviewed.