Terms of Use

The e-shop Legacy Legends on this website processes personal data provided by Customers to fulfill and confirm the Terms and Conditions, process electronic orders and shipments, and ensure necessary communication during the period required by law.

General Provisions

  1. The personal data controller, in compliance with GDPR (hereinafter referred to as "Regulation"), is Legacy Legends, a company based at Stoney Works, 8 Stoney Lane, London, United Kingdom, SE19 3BD (hereinafter referred to as "Controller").
  2. The contact details of the Controller are: email: sdklegends.service@gmail.com.
  3. Personal data refers to any information that relates to an identified or identifiable natural person.

Source of Personal Data

  1. The Controller processes personal data obtained from the Customer through the contract for purchase and fulfillment of the electronic order created in the e-shop Legacy Legends.
  2. The Controller processes only identifying and contact details of the Customer which are necessary for the fulfillment of the contract to purchase.
  3. The Controller processes personal data for shipping and accounting purposes and for the necessary communication between the contracting parties for the duration required by law. Personal data will not be made public and will not be transferred to other countries.

Purpose of Data Processing

  1. Registration on the website in compliance with Chapter 4, Section 2 of the GDPR.
  2. Fulfillment of the electronic order created by the Customer (name, address, email, telephone number).
  3. Compliance with laws and regulations arising from the contractual relationship between the Customer and the Controller.
  4. Personal data is necessary for the fulfillment of the purchase contract. The contract cannot be concluded without providing such data.

Duration of Personal Data Storage

  1. The Controller stores personal data for the period necessary for the fulfillment of rights and obligations arising from the contractual relationship between the Controller and the Customer and for the duration of 3 years after the conclusion of the contractual relationship.
  2. The Controller must delete all personal data after the expiration of the period required for the storage of personal data.

Recipients and Processors of Personal Data

  1. Third parties processing personal data of the Customer are subcontractors of the Controller. Services of these subcontractors are indispensable for the successful fulfillment of the contract to purchase and processing of the electronic order between the Controller and the Customer.
  2. Subcontractors of the Controller are: Webnode AG (e-shop system), shipping company, Google Analytics (website analytics).

Rights of the Customer

  1. The right of access to personal data.
  2. The right to rectification of personal data.
  3. The right to erasure of personal data.
  4. The right to object to processing of personal data.
  5. The right to data portability.
  6. The right to withdraw consent to the processing of personal data in writing or by email sent to: sportmemorabiliaservice@gmail.com.
  7. The right to lodge a complaint with the supervisory authority in case of suspected breach of the Regulation.

Security of Personal Data

  1. The Controller declares to take all technical and organizational precautions necessary for the protection of personal data.
  2. The Controller has taken technical precautions to secure data storage spaces, in particular securing access to computers with passwords, using antivirus software, and performing regular maintenance of equipment.

Final Provisions

  1. By placing an electronic order on the website, the Customer confirms to be informed about all the conditions of personal data protection and accepts them to the full extent.
  2. The Customer accepts these Rules by ticking the checkbox in the order purchase form.
  3. The Controller can update these Rules at any time. A new, updated version must be published on the website.

Effective Date: 02.25.2011