Privacy Policy

Last updated:

Controller and contact

The controller of personal data is Bryxemarxex, operating at Dronningens gate 38, 7011 Trondheim, Norway. For privacy requests, contact us using the email identifiers published in the site footer (plain text, no automated decision-making solely based on these messages).

Geography, language, and audience

The site is operated from Norway and published in English. Product and policy information is written for adults browsing from the European Economic Area and, where we ship, other regions only when permitted. Local rules on food supplements, labelling, and distance selling apply in addition to this policy.

Dietary supplements and marketing data

We do not use personal data to imply that a food supplement treats or prevents disease. Where we measure advertising or site traffic, we use the minimum data needed and respect consent choices recorded in the cookie layer. Measurement may include pseudonymous identifiers from analytics or advertising partners; you can limit optional cookies through the banner or your browser.

Scope and legal bases

We process personal data in line with the EU General Data Protection Regulation (GDPR) and applicable Norwegian law. Depending on the activity, we rely on performance of a contract, legitimate interests (for example secure website operation), or consent where required (for example optional cookies or marketing where you opt in).

Categories of data

We may process identification and contact data (name, email, optional phone), message content you send through forms, technical logs (IP address, browser type, timestamps), and cookie-related signals as described in the Cookie Policy.

Purposes

Data is used to respond to enquiries, operate the online shop, improve security, comply with law, and—only if you allow—analytics and marketing measurement.

Retention

Data type Typical retention
Contact form messages Up to 24 months unless a longer period is required for legal claims
Server security logs Up to 90 days
Cookie and consent records 12 months from last update, unless law requires otherwise

Security measures

We apply access controls, encryption where appropriate for transmission, and vendor review for processors. No method is perfect; we describe incidents to regulators and to data subjects when required by law.

Your rights

You may request access, rectification, erasure, restriction, portability, and objection where applicable. You may withdraw consent for processing based on consent without affecting earlier lawful processing. You may lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet) or your local supervisory authority.

International transfers

If data leaves the European Economic Area, we use safeguards such as standard contractual clauses or adequacy decisions, and we document the transfer category in internal records.

Updates

We revise this policy when practices change. The footer shows the latest update date for the website shell; material changes will also be reflected in this section.

We use optional cookies for analytics and marketing. Necessary cookies are always active. You can change this later in your browser or by clearing stored preferences.

Strictly necessary cookies support security and basic shop functions. Optional categories can be switched off.

Strictly necessary

Always on

Analytics

Helps us understand traffic

Marketing

Used for campaign measurement