Privacy Policy

Last updated: 10/03/2026

At BySuzike (“we”, “us”, “our”), we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you visit www.bysuzike.com, purchase digital products, subscribe to our newsletter, contact us, or otherwise interact with our website.

This policy is designed to help you understand what personal data we process, why we process it, the legal bases we rely on, who may receive that data, how long we keep it, and what rights you have under applicable data protection law, including the General Data Protection Regulation (GDPR).

1. Who We Are

Website: www.bysuzike.com
Brand name: BySuzike
Data Controller: Suzike Mendes / BySuzike
Contact email: [email protected]
Country: Portugal

For any privacy-related questions or requests, you may contact us using the email above.

2. What Data We Collect

Depending on how you use the website, we may collect the following categories of personal data:

a) Information you provide directly

  • Your name

  • Your email address

  • Billing details

  • Account information

  • Messages sent through contact forms, email, comments, or customer support

  • Information you provide when purchasing a digital product or booking a service

b) Information collected automatically

  • IP address

  • Browser type and device information

  • Pages viewed and actions taken on the website

  • Referring website or source

  • Cookie and similar tracking data

  • Technical logs and security-related information

c) Transaction-related information

When you place an order, we may collect data necessary to process your purchase, such as:

  • Billing name and address

  • Email address

  • Order details

  • Payment-related metadata
    We do not store full payment card details on our website when payments are processed by third-party payment providers.

WooCommerce settings also allow store owners to manage account creation, guest checkout, privacy notices and data retention for customer information.

3. How We Use Your Data

We may use your personal data for the following purposes:

  • To provide access to the website and its content

  • To process and deliver orders for digital products

  • To manage customer accounts and downloads

  • To communicate with you about orders, services, enquiries, or support

  • To send newsletters or marketing emails, where you have given consent or where otherwise permitted by law

  • To improve the performance, functionality, and security of the website

  • To analyse traffic, user behaviour, and content performance

  • To comply with legal, tax, accounting, and consumer obligations

  • To protect our rights, website, business, and users

Under the GDPR, organisations must explain the purposes of processing and the relevant legal basis for each purpose. Direct marketing and email communications also need to respect the GDPR and ePrivacy rules.

4. Legal Bases for Processing

We process personal data only where we have a valid legal basis, including:

  • Contract: when processing is necessary to provide a product, service, account, or download you requested

  • Consent: when you subscribe to newsletters, accept non-essential cookies, or otherwise give permission

  • Legal obligation: when we must retain records for tax, accounting, or legal compliance

  • Legitimate interests: when necessary to operate, secure, improve, and manage our website and business, provided those interests do not override your rights

The GDPR requires that personal data processing rely on a lawful basis and that individuals be informed of that basis.

5. Newsletter and Marketing Communications

If you subscribe to our newsletter, we may use your email address to send updates, new content, product offers, or other marketing communications related to BySuzike.

We will only send marketing emails where we have a valid basis to do so, typically your consent. You can unsubscribe at any time by clicking the unsubscribe link in any email or by contacting us directly.

If you use a third-party email marketing provider, your data may be processed by that provider on our behalf.

Newsletter provider used on this site: MailPoet

Under EU rules, direct marketing by email must comply with GDPR requirements and the ePrivacy framework. Individuals must also be able to object or unsubscribe.

6. WooCommerce, Orders, and Customer Accounts

When you purchase a digital product through our store, we collect and process the data needed to complete your order, provide access to downloads, maintain order records, and offer customer support.

Depending on your settings, WooCommerce may also allow:

  • guest checkout

  • customer account creation

  • personal data retention controls

  • account privacy notices

If you create an account, your account information and order history may be stored so you can access your downloads and purchase records.

WooCommerce documentation confirms that store owners can configure account creation, privacy notices, checkout options and personal data retention within WooCommerce settings.

7. Payments

Payments for products or services may be processed by third-party payment providers. We do not receive or store full payment card details on our own servers when those details are handled directly by the payment processor.

Payment providers may process your data in accordance with their own privacy policies and legal obligations.

Payment provider(s) used on this site: PayPal, Stripe

WooCommerce notes that, when using payment gateways, certain customer and transaction data may be shared with the chosen payment provider in order to process payments.

8. Comments, Contact Forms, and User Submissions

If you leave a comment, send a message, fill in a form, or otherwise contact us, we may collect the information you submit, along with related technical data such as your IP address and browser information where relevant for spam prevention, moderation, and security.

We use this information to respond to your message, manage enquiries, maintain website integrity, and protect against abuse or unlawful use.

9. Cookies and Similar Technologies

Our website may use cookies and similar technologies to:

  • ensure basic site functionality

  • remember preferences

  • analyse traffic and usage

  • improve performance

  • support embedded content or third-party services

  • measure marketing effectiveness, where applicable

Some cookies may be strictly necessary for the website to function and do not require consent. Other cookies, especially analytics, advertising, or similar non-essential cookies, may require your prior consent depending on how they are used.

The European Commission explains that some operational or technical cookies are necessary for website functionality, while consent requirements apply more broadly under the ePrivacy framework for non-essential tracking technologies.

10. Analytics and Performance Tracking

We may use analytics tools to understand how visitors use the website, which pages perform best, and how users find our content. This helps us improve site structure, content, products, and user experience.

Analytics provider(s) used on this site: Google Analytics, Jetpack Stats and WP Statistics.

If analytics cookies are non-essential, they should only be used in line with applicable consent requirements.

11. Affiliate Links and Third-Party Content

Some pages on this website may include affiliate links, embedded media, or links to third-party websites and services. If you click those links or interact with third-party content, those providers may collect data according to their own privacy practices.

We are not responsible for the privacy policies or practices of third-party websites or services.

12. Who We Share Data With

We may share personal data only where necessary and appropriate with:

  • payment providers

  • email marketing providers

  • website hosting providers

  • analytics providers

  • WooCommerce-related services or extensions

  • legal, tax, or professional advisers where required

  • public authorities, where disclosure is legally required

WooCommerce recommends that store owners disclose what personal data is collected, stored, and shared, including data shared through extensions and external services.

13. International Data Transfers

Some third-party service providers may process personal data outside your country or outside the European Economic Area. Where this happens, we aim to use providers that offer appropriate safeguards in accordance with applicable data protection law.

The European Commission states that transfers of personal data to third countries must rely on recognised safeguards such as adequacy decisions or standard contractual clauses where applicable.

14. Data Retention

We keep personal data only for as long as necessary for the purposes for which it was collected, including for legal, tax, accounting, dispute-resolution, fraud-prevention, and record-keeping purposes.

Retention periods may vary depending on the type of data, the purpose of processing, and legal requirements. For example:

  • order and billing data may be kept for legal and accounting purposes

  • account data may be kept while your account remains active

  • newsletter data may be kept until you unsubscribe or ask for deletion

  • enquiry emails may be kept for as long as reasonably necessary to handle the request and maintain records

WooCommerce includes settings that allow store owners to manage personal data retention for customer information.

15. Your Rights

Subject to applicable law, you may have the right to:

  • request access to your personal data

  • request correction of inaccurate or incomplete data

  • request deletion of your data

  • request restriction of processing

  • object to certain processing, including direct marketing

  • request data portability, where applicable

  • withdraw consent at any time, where processing is based on consent

  • lodge a complaint with a supervisory authority

The GDPR gives individuals rights such as access, correction, erasure, restriction, objection, portability, and the right to be informed.

16. Complaints

If you believe your personal data has been handled unlawfully, you may contact us first at [email protected]. You also have the right to lodge a complaint with the relevant supervisory authority.

In Portugal, the supervisory authority is the CNPD. The CNPD describes itself as the national supervisory authority responsible for monitoring compliance with the GDPR and Portugal’s data protection framework.

17. Security

We take reasonable technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure. However, no website, system, or online transmission can be guaranteed to be completely secure.

18. Children’s Privacy

This website is intended for a general audience, but purchases, account creation, and paid services are intended for adults. We do not knowingly collect personal data from children in a manner that violates applicable law. If you believe a child has provided personal data improperly, please contact us so we can review and take appropriate action.

19. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect legal, technical, or operational changes. The updated version will be posted on this page with the revised “Last updated” date.

20. Contact

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact:

BySuzike
Email: [email protected]