Privacy policy

Welcome to CRUXO’s website. At CRUXO, we combine years of experience in retail, e-commerce, and digital technology to help advertisers manage digital campaigns. Through the CRUXO platform, we help both retailers and suppliers fully leverage the potential of the e-commerce ecosystem.

We highly value the privacy of visitors to our website and other individuals who communicate with us or whose personal data we process under the conditions outlined below. These Privacy Policy („Policy“) explain how we process personal data collected through our website cruxo.io, in accordance with Regulation (EU) 2016/679 (GDPR). The Policy also explains your rights regarding the processing of your personal data.

Unless stated otherwise, the data controller is CRUXO group s.r.o., registered office: Rohanské nábřeží 678/23, Karlín, 186 00 Prague 8, ID No.: 14134683, registered with the Municipal Court in Prague, Section C, Insert 360965 (“CRUXO” or “controller”).

You can contact us via our registered address or through the contact details provided on our website.

When we process personal data as a processor on behalf of our customers (based on contractual authorization and their instructions), we act according to their direction. In all other cases, we act as a controller responsible for collecting, using, and protecting your personal data.

Categories and Purposes of Data Processing

Contact details and communication records

When you contact us via forms or email, we may store your provided information, including your name, surname, and email address, to process your inquiry or establish cooperation. We process this data based on our legitimate interest (Art. 6(1)(f) GDPR).

Cookies

Cookies are small text files stored on your device when you visit our website. We use cookies and similar technologies (e.g., pixel tags) to personalize content and ads, enable social-media features, and analyze traffic. We may share this information with partners in advertising, analytics, and social media who may combine it with other data you’ve provided or that they collected from your use of their services.

Categories of Cookies Used

  • Essential cookies – Ensure core website functionality such as navigation and access to secure areas. They do not require consent and are processed under our legitimate interest (Art. 6(1)(f) GDPR).
  • Preference cookies – Store preferences such as language or region. Processed based on your consent (Art. 6(1)(a) GDPR), which can be withdrawn anytime.
  • Statistical cookies – Help us understand how users interact with the website by collecting anonymous, aggregated data. Processed with your consent (Art. 6(1)(a) GDPR).
  • Marketing cookies – Enable us to display personalized ads and offers based on browsing behavior. Processed with your consent (Art. 6(1)(a) GDPR).

Data Security

We have implemented security measures to protect your data from accidental loss, unauthorized access, or disclosure. Access to your data is limited to employees and service providers who need it for their work and are bound by confidentiality obligations.

In case of any personal data breach, we will notify you or the relevant supervisory authority as required by law.

Data Retention

Your personal data will be retained only for as long as necessary to fulfill the purpose it was collected for, including legal requirements.

The storage period for cookies depends on each specific cookie's settings — some expire when you close your browser, others may remain longer.

Data Access and Disclosure

Access to personal data is limited to CRUXO employees and authorized service providers (e.g., IT, analytics). We may disclose data to third parties only if required by law or in connection with a business transfer, ensuring that recipients handle the data in compliance with this Policy.

Aggregated, anonymized statistical data may be shared externally but will never identify any individual.

Data Transfers Outside the EU/EEA

In some cases, CRUXO may transfer data to recipients located outside the EU/EEA. If so, we ensure that your data is protected through:

  • An adequacy decision by the European Commission;
  • Standard Contractual Clauses (SCCs); or
  • Another lawful exception under GDPR.

All transfers are carried out in compliance with applicable data-protection standards and your enforceable rights.

Your Rights

Under GDPR, you have the right to:

  • Request access to your data;
  • Request correction of inaccurate or incomplete data;
  • Request erasure of your data ("right to be forgotten");
  • Object to processing based on legitimate interest;
  • Request restriction of processing;
  • Request data portability to yourself or another controller.

You can exercise your rights by contacting us using the details below. We will respond within the statutory deadline and may request proof of identity to protect your data.

If you believe we have violated data-protection rules, you may lodge a complaint with the Office for Personal Data Protection (Úřad pro ochranu osobních údajů) at https://uoou.gov.cz/.

Contact Us

Email: hello@cruxo.io
Post: CRUXO group s.r.o., Rohanské nábřeží 678/23, 186 00 Prague 8, Czech Republic

Updates to This Policy

We may update this Policy occasionally to reflect changes in data processing practices or legal requirements. Please review it periodically. If significant changes occur, we will inform you as required by law.

Effective Date: 16th October 2025