ŠťávaRoasted in Adršpach
Cart
Sign in
Privacy

How Šťáva handles customer data without the mystery.

This page explains what the shop uses, why it uses it, and what customers can control inside their account.

Clear customer information
This page keeps privacy information readable while covering the account, order, invoice, and consent data used by the shop.
01

Controller and contact

The shop operator is the data controller for account, order, invoice, and storefront records. Operator and contact details are provided in the published business information, order documents, and customer support channels.

Customers can use the account privacy tools for export and rights requests. They can also contact the roastery through the published support contact. In the Czech Republic, unresolved complaints can be raised with the Office for Personal Data Protection.

02

Legal bases at a glance

We process account and order data mainly to perform the purchase contract, meet accounting and tax duties, protect the shop from abuse, answer customer requests, and respect consent where consent is required.

  • Contract: account access, cart, checkout, order handling, and customer support
  • Legal obligation: invoices, accounting records, tax records, and required retention
  • Legitimate interests: security, fraud prevention, basic service diagnostics, and wholesale account administration
  • Consent: optional marketing messages and optional analytics or marketing storage
03

What data we collect

Account records can include name, email address, password hash for email sign-in, company name, role assignment, and marketing preference state.

Order records can include purchased items, totals, payment references, invoice details, and shipping or inventory-related status.

04

Why we use it

We use personal data to create and secure accounts, process orders, prepare invoices, support customer service, and keep wholesale and retail access properly separated.

05

What customers can do

The account area supports common privacy actions such as export, correction, restriction, objection, and erasure requests.

  • Download account-related data
  • Request a correction to saved details
  • Ask for restriction or objection handling
  • Request erasure where the law allows it
06

Partners and processors

Infrastructure may involve database hosting, authentication providers, payment partners such as Stripe or Adyen, and an optional analytics provider chosen by the roastery.

Payment card details are handled inside the payment provider flow and are not meant to be stored directly in the shop database.

07

Retention and review

We keep customer and order data only for as long as it is needed for account service, legal obligations, and practical order support. Accounting and invoice records may need to be retained for the statutory period that applies to the operator.

Marketing consent records are kept while the preference is active and for a reasonable period needed to prove or honor the latest choice.