GDPR (General Data Protection Regulation)

Privacy Policy

Please note that any image, video, or any other content posted by Users on the Webnode Sites becomes published content; hence these are not considered "personally identifiable information" and therefore are not subject to this Privacy Policy.

Identity and contact details of your personal data controller:

Webnode AG, ID CH -, based in Gartenstrasse 3, 6304, Zug, Switzerland, contact e-mail:

(collectively also referred to as "Webnode" or "we"),

1. Webnode as the controller of personal data

Webnode acts as a personal data controller in relation to the Personal Information of Users and individuals visiting the Webnode website.

Why do we process personal information? In order to comply with the contract or fulfill legal obligations, Webnode collects personal data obtained from the User when filling out the contact, registration, order, payment and invoicing forms on our site.

Webnode further processes the data it receives from the User and other individuals using Webnode or visiting our website: cookies, log files (IP address or other online identifiers).

How long do we process personal data? User's personal data are processed for the duration of the contractual relationship and subsequently for the time necessary to ensure the safety of the service and the fulfillment of the obligations arising from the special legal regulations.

2. Webnode as the processor of personal data

Webnode provides the user with data space for the purposes of storing data on Webnode servers. Data of the User may also include personal data of other natural persons (data subjects). In relation to these personal data, Webnode acts as a personal data processor. The User acts as a controller of the personal data. Under Article 28 of the GDPR, the controller and processor (Webnode) conclude a Data Processing Contract.

What is the purpose of processing and how do we handle the data? Webnode does not interfere with the User's data, and does not change them, disclose them, give access to them or pass them on to third parties (except making them available to state authorities in accordance with the law), except for their storage on Webnode servers, unless stipulated otherwise in the Contract. The sole purpose of handling these personal data is their storage and making them available to the User.

3. Recipients and processors of personal data

Webnode does not transmit personal information to any other controllers.

The personal data processors are:

  • companies, or physical business entities engaged in accounting which are responsible for carrying out accounting operations;
  • companies, or business IT entrepreneurs who are responsible for implementing IT administration and the development of software programs used by Webnode;
  • companies, or business-to-business individuals providing server services that are in charge of storing data;
  • companies providing payment services;
  • companies providing e-mail messaging services.

Personal data may be made available to state authorities under certain conditions.

4. Rights of data subjects

As a data subject are entitled to: a) the right of access; b) the right to rectification; c) the right to erasure; d) the right to restriction of processing; e) the right to object to processing; f) the right to data portability; g) the right to lodge a complaint with the supervisory authority; h) the right to information concerning the rectification or erasure of personal data or processing restrictions; i) the right to be informed in the event of a breach of security of personal data; j) the right to withdraw consent to the processing of personal data.

Your rights as a data subjects are described in detail in the EU Regulation 2016/679 (GDPR)

You may revoke your consent at any time in writing and redeem the other rights of the Subject by sending your request to the email address

Data processing contract

between Webnode as a processor and User as a controller in compliance with the article 28 of GDPR.

The subject of processing: We will process the data that you store on our servers. This could include personal data of people visiting websites you created with Webnode according to the rules stated in this Contract.

Processing time: Webnode processes personal data for the duration of the contract until the User cancels its account and subsequently for the time necessary to ensure the safety of the service and the fulfillment of the obligations arising from the special legal regulations. Subsequently, all saved user data are deleted.

Nature and purpose of processing: The purpose of the processing is to fulfil the obligations under the Contract, in particular the provision of storage space for the purpose of storing user data via Webnode.

Type and category of processed personal data: We process personal information you store on our servers.

Our responsibilities as a personal data processor: We undertake to:

a) Process personal data only based on the user's documented instructions;

b) Ensure that our authorized personnel who is in contact with personal data is committed to confidentiality;

c) Make appropriate technical and organizational safeguards to ensure a level of security appropriate to the risk involved. When assessing an appropriate level of security, we take into account, in particular, the risks involved in the processing, accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to transferred, stored or otherwise processed personal data. Technical data security is described in the Privacy Policy;

d) Take into account the nature of the processing and to assist the User through appropriate technical and organizational measures in fulfilling the User's obligation to respond to requests for the exercise of data subjects' rights set forth in Chapter III of the GDPR (Data subject rights);

e) Assist the User in complying with the obligations under Articles 32 to 36 of the GDPR (Privacy of Personal Data), taking into account the nature of the processing of the information available to Webnode;

f) Report to the User any personal data breach without undue delay;

g) Provide the User with all the information necessary to demonstrate that the above obligations have been met and enable the User to check compliance with the above obligations. All the information about the processing of personal data by Webnode is stated in the Privacy Policy.

Other processors: The user agrees that Webnode will involve other processors in the processing of personal data you store on our servers. The list of processors is stated in the Privacy Policy.

Protection of personal data

Personal information provided by the buyer (name, address, telephone, etc.) is collected and stored in the shop database for an indefinite period of time. When ordering, only the data necessary for the successful completion of the order is required. The provided data will be used for the ordering of the order, the provision of a claim or the return of the goods. The data is only available to the authorized shop assistant at and is not provided to third parties except for freight forwarding entities. Once the order is delivered, the data is archived and used for accounting and statistical purposes. At the buyer's request by phone or in writing, personal data in the vendor's database may be altered or deleted. By binding order confirmation, the buyer agrees to process his or her personal data with the above range.