Privacy policy

Last updated: December 25, 2025

These Privacy Policy describe how Warrior Shop (Prokop Šimek) collects, uses, stores, and protects your personal data when using the websites:

  • www.warriorshop.cz (primarily for the Czech Republic and Slovakia)
  • www.warriorshop.eu (for customers within the EU)

Warrior Shop uses the Shopify platform, which provides the infrastructure, tools, and services required to operate the online store.

By using our websites and services, you confirm that you have read this Privacy Policy and understand how we handle your data.

1. Data Controller

Prokop Šimek
Žamberecká 353, 517 54 Vamberk
Business ID: 19509057
E-mail: info@warriorshop.cz
Phone: +420 605 864 921

The controller determines the purposes and means of processing personal data and ensures their proper protection.

2. Personal Data We Collect

We collect only the data necessary to provide our services, operate the online store, and fulfill legal obligations.

2.1 Data for purchasing and service delivery

  • Name and surname
  • E-mail address
  • Phone number
  • Billing address
  • Shipping address
  • Order, payment, and invoicing information

2.2 Payment information

  • Payment method details (Shopify Payments)
  • Transaction identifiers

We do not process or store credit card numbers. All payment information is handled through Shopify Payments.

2.3 Account information (if you create an account)

  • Login e-mail
  • Password (encrypted)
  • Settings and preferences

2.4 Marketing and communication

  • E-mail for newsletters
  • E-mail interaction data (opens, clicks)
  • Preferred topics (if provided)

2.5 Technical data

  • IP address
  • Device and browser information
  • Cookies and visit identifiers

2.6 Additional data

  • Customer support communication
  • Photos and video recordings from live events (with your consent)

3. How We Use Your Data

3.1 Fulfilling the contract and providing our services

  • processing orders,
  • delivering physical products,
  • sending digital content,
  • managing customer accounts,
  • handling complaints and inquiries.

3.2 Accounting and tax compliance

  • maintaining accounting records,
  • issuing invoices and documents.

3.3 Marketing

  • sending newsletters and marketing messages (based on legitimate interest or consent),
  • remarketing on social media (only with consent),
  • personalizing content and recommendations.

3.4 Security and fraud prevention

  • protecting the website and online store,
  • analyzing suspicious activity.

3.5 Improving our services

  • traffic analysis,
  • website optimization,
  • content personalization.

4. Technologies We Use

4.1 Shopify

The Shopify platform processes some data as our processor and, in certain cases, as a separate controller (e.g., for security and personalization).

For details on Shopify's data processing, visit:
https://www.shopify.com/legal/privacy

4.2 E-mail marketing tools

We use marketing tools for newsletter distribution (either integrated in Shopify or external). These tools process only e-mail addresses and interaction data (opens, clicks).

4.3 Social networks and advertising

We use:

  • Meta (Facebook, Instagram)
  • Google Ads
  • TikTok (if active)

These tools operate only based on your consent.

4.4 Cookies

We use cookies for:

  • website functionality,
  • traffic analytics,
  • personalization,
  • remarketing (only with consent).

Details can be found in our EU Cookie Policy.

5. Sharing Personal Data

We share your data only with the following categories of recipients:

5.1 Processors

  • Shopify (store operation),
  • shipping providers (e.g., Packeta/Zásilkovna),
  • accounting and tax advisers,
  • email marketing providers,
  • hosting and IT service providers.

5.2 Marketing partners

Only with your consent, including:

  • Meta Ads,
  • Google Ads,
  • other advertising platforms.

5.3 Legal authorities

If required by law or necessary to protect the rights of the controller.

6. Data Retention

We retain personal data only for the necessary period:

  • accounting documents: 10 years,
  • marketing data: until unsubscribed or up to 10 years after last interaction,
  • order data: for the duration of statutory limitation periods,
  • cookies: depending on type and your consent settings.

7. Your Rights (GDPR)

  • right of access,
  • right to rectification,
  • right to erasure (right to be forgotten),
  • right to restrict processing,
  • right to data portability,
  • right to object,
  • right to withdraw consent at any time,
  • right to lodge a complaint with the Supervisory Authority:

https://www.uoou.cz

Requests can be sent to: info@warriorshop.cz

8. Data Security

We use modern technical and organizational measures, including:

  • encrypted connection (HTTPS),
  • secure hosting and Shopify infrastructure,
  • access control and permissions,
  • regular system and software updates.

9. International Data Transfers

Your data may be transferred outside the EU through the Shopify platform or other services (Google, Meta).

These providers rely on GDPR mechanisms such as:
Standard Contractual Clauses (SCC) and equivalent safeguards.

10. Online Marketing, Meta Ads, Google Analytics, Consent Mode

10.1 Meta (Facebook/Instagram) Advertising

We use marketing tools provided by Meta Platforms Ireland Ltd., including:

  • conversion tracking,
  • remarketing,
  • custom audiences,
  • personalized advertising.

Meta may collect data via Meta Pixel, API, or other technologies, including IP address, device identifiers, browsing behavior, cart items, and purchase metadata.

Meta acts as a separate controller for its own advertising systems.
Details: https://www.facebook.com/privacy/policy

Your choices:

  • manage personalized ads in your Facebook/Instagram account,
  • change consent settings in the cookie banner,
  • request deletion of Pixel data (if supported by Meta).

10.2 Google Analytics & Google Ads

We use services by Google Ireland Ltd., including:

  • Google Analytics,
  • Google Ads,
  • Google Consent Mode v2.

Collected data may include:

  • IP address,
  • device and browser details,
  • website behaviour,
  • order information (value, order ID – no sensitive payment data).

If consent is not granted, data is anonymized or blocked in accordance with Consent Mode rules.

More information: https://policies.google.com/privacy

10.3 Google Consent Mode (v2)

Our website uses Google Consent Mode v2 to ensure Google scripts are activated only according to your consent.

Consent Mode signals:

  • ad_user_data
  • ad_personalization
  • analytics_storage
  • ad_storage
  • other related parameters

10.4 Changing or withdrawing consent

  • Use the link “Cookie settings / Manage consent” in the footer of the websites.
  • After withdrawing consent, we will stop processing data for marketing purposes.

11. Photos and Video from Events

We may record photos and videos during live events for promotional or reporting purposes. These recordings are made:

  • with your explicit consent, or
  • in case of public events where recording is transparently announced in compliance with GDPR.

Refusing consent does not affect your ability to participate.

12. Children

Our services are not intended for persons under 16 years of age. We do not knowingly collect children’s data. If such processing occurs accidentally, we will delete the data immediately.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time due to changes in our services, legal requirements, or technologies.

Updated policies will be published on this page, including the “Last updated” date. We recommend checking this page regularly.

14. Contact

Have questions about this policy or your personal data?

Warrior Shop – Prokop Šimek
E-mail: info@warriorshop.cz
Phone: +420 605 864 921
Address: Žamberecká 353, Vamberk, 517 54, Czech Republic