Privacy Policy of MVS Pharma GmbH
Last Updated: July 12, 2025
This Privacy Policy explains how MVS Pharma GmbH (“we,” “us,” or “our”) collects, uses, shares, and protects your personal data when you visit our website https://mvs-pharma.com (the “Website”) or use our services. We are committed to processing your data lawfully, fairly, and transparently in accordance with applicable laws and regulations, including the EU General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), the ePrivacy Directive, and other global data protection laws.
- Controller Contact Details
MVS Pharma GmbH
Address: MVS Pharma GmbH, Leinfelder Str. 64; D-70771 Leinfelden-Echterdingen
Email: info@mvs-pharma.com
- What Data We Collect
- Data You Provide
- Contact details (name, email, phone number, company, address)
- Account registration info
- Purchase details and payment method
- Customer service communications
- Automatically Collected Data
- IP address, browser type/version, device information
- Access times and duration, pages visited, referrer URL
- Log files and diagnostic data
- Cookies & Similar Technologies
We use cookies, pixels, and tags to enhance your experience. Categories include:
- Essential cookies (required for functionality)
- Analytics cookies (usage statistics)
- Functional cookies (preferences)
- Marketing cookies (advertising, social media)
You can manage cookie preferences anytime via our cookie consent banner or browser settings.
- Legal Basis for Processing
We process your data under the following legal bases:
- Consent (Art. 6(1)(a) GDPR) – for non-essential cookies and marketing
- Contract (Art. 6(1)(b)) – when you make purchases or register
- Legal obligation (Art. 6(1)(c)) – for tax, billing, and record-keeping
- Legitimate interest (Art. 6(1)(f)) – for fraud prevention, website security, and analytics
- How We Use Your Data
- To operate and improve the Website
- To fulfill your orders and manage your account
- To communicate with you (e.g., support, newsletters with consent)
- To personalize your experience
- To comply with legal requirements
- To ensure IT and data security
- Advertising and Communication
Use of Your Personal Data for Sending Advertising Mail
We may use your name and postal address, obtained during the sale of goods or services, to send you promotional material by mail. This is done in accordance with Art. 6(1)(f) GDPR on the basis of our legitimate interest in direct advertising. You may object to this use at any time by contacting us.
Use of Your Email Address for Newsletters
If you explicitly consent, we use your email address to send newsletters containing our own marketing content. This is based on Art. 6(1)(a) GDPR. You can withdraw your consent at any time via the unsubscribe link in any email or by contacting us directly.
Use of Your Email Address for Direct Marketing (Section 7(3) UWG)
If we receive your email address during the sale of a product or service, we may use it for marketing similar products or services. This use is based on our legitimate interest under Art. 6(1)(f) GDPR in conjunction with Section 7(3) of the German UWG. You may object to this use at any time by clicking the unsubscribe link or contacting us.
- Data Sharing & Transfers We may share your data with:
- Hosting providers and IT service providers
- Payment processors (e.g., PayPal, Klarna, Unzer)
- Email and marketing service platforms
- Logistics providers (with your consent, for shipping updates)
- Legal or governmental authorities when legally required
Where required, we use Standard Contractual Clauses or ensure the provider is certified under the EU-U.S. Data Privacy Framework.
- Payment & Shipping Services
PayPal: Data is shared with PayPal for processing payments and may include contact, billing, and device information. See: https://www.paypal.com/myaccount/privacy/privacyhub
Klarna: We share contact and order details to facilitate tailored payment options. Klarna processes data in accordance with its privacy policy.
Unzer: Contact, order data, and date of birth may be shared to provide Unzer payment options. Privacy policy: https://www.unzer.com/en/data-protection/
Shipping Carriers: With your consent, your email address will be shared for shipment updates.
- Retention Periods We retain your personal data only as long as necessary:
- Contact and service data: 3 years after last interaction
- Account and transaction data: 10 years for legal reasons
- Analytics data: 26 months
- Marketing consent: until withdrawn
- Your Rights Under GDPR You have the right to:
- Access your data
- Correct inaccurate data
- Delete your data (right to be forgotten)
- Restrict or object to processing
- Withdraw consent
- Data portability
To exercise your rights, email us at [Insert Email]. We will respond within 30 days.
- Children’s Data Our Website and services are not directed at children under 13. We do not knowingly collect data from minors. If informed, we will delete such data promptly.
- Data Security We apply appropriate technical and organizational measures to protect your data against unauthorized access, accidental loss, and unlawful processing. These include encryption, access control, and regular audits.
- Automated Decision-Making We do not conduct any profiling or automated decision-making that produces legal effects or significantly affects individuals.
- Cookies & Consent Management We use a cookie consent platform in accordance with the ePrivacy Directive and GDPR. You may:
- Accept or reject all cookies
- Customize your preferences by category
- Change your consent at any time
Consent is managed via Consentmanager (Consentmanager AB, Sweden). Data such as timestamp, browser info, IP (anonymized), and preference data are collected. Legal basis: Art. 6(1)(c) GDPR. Learn more: https://www.consentmanager.net/privacy.php
- Analytics and Advertising
Google Analytics 4: We use Google Analytics to understand user behavior and improve marketing. The processing is based on your consent under Art. 6(1)(a) GDPR. Data may be processed in the USA under TADPF safeguards. Learn more: https://policies.google.com/privacy
Google Ads & Remarketing: We use conversion tracking and remarketing via Google Ads. Consent is required under Art. 6(1)(a) GDPR and §25 TDDDG. Learn more: https://www.google.com/privacy/ads/
Meta Pixel: Used for targeted advertising on Facebook and Instagram. Based on joint processing agreement under Art. 26 GDPR. Consent is required under Art. 6(1)(a). Data may be transferred to the USA under TADPF. Learn more: https://www.facebook.com/about/privacy/
- Updates to This Policy We may update this policy to reflect changes in our data practices or legal obligations. Updates will be published here, and significant changes will be communicated directly.
- Contact For questions or concerns regarding this policy or your personal data, contact:
MVS Pharma GmbH
Address: MVS Pharma GmbH, Leinfelder Str. 64; D-70771 Leinfelden-Echterdingen
Email: info@mvs-pharma.com