Privacy

Privacy policy.

Overview

ESHGO takes the protection of your personal data seriously. This policy explains what data we collect, why we collect it, and your rights under the Swiss Federal Act on Data Protection (nDSG) and, where applicable, the EU General Data Protection Regulation (GDPR).

Data we collect

When you place an order we collect:

Name and delivery address
Email address
Order details (items, quantities, amounts)
Payment confirmation data from PayPal (we never see your card number)

We do not collect browsing data, create profiles or use tracking cookies.

Why we collect it

To process and fulfil your order
To send you an order confirmation email
To handle returns, refunds or support requests
To comply with legal obligations (e.g. accounting records)

Service providers

We share your data only with the processors needed to fulfil your order:

Supabase — order and product database (EU servers)
PayPal — payment processing
Resend — transactional email (order confirmations)
Vercel — website hosting

No data is sold or shared with third parties for marketing purposes.

How long we keep your data

Order data is retained for 10 years as required by Swiss accounting law (OR Art. 958f). Email addresses used only for transactional emails are not stored beyond what is technically required.

Your rights

You have the right to:

Access the personal data we hold about you
Have inaccurate data corrected
Request deletion of your data (where not legally required to retain it)
Receive your data in a portable format
Object to processing

To exercise any of these rights, email us at hello@eshgo.ch. We will respond within 30 days.

We use a single session cookie to keep your shopping cart and, if applicable, your admin session. No advertising or analytics cookies are used.

Changes

If we make material changes to this policy we will update the date below. Continued use of the site after changes constitutes acceptance.

Last updated: May 2025