Privacy & Personal Data Policy

 

Last updated: April 1, 2026

 

Data Controller

This Privacy Policy applies to TMDrops, operated by:

 

Company name: KP Solutions s.r.o.
Registration number (IČ): 09034072
VAT number (DIČ): CZ09034072

Registered address: P.O. Box 77, 14200 Prague 4 – Krč, Czech Republic
Email: info@tmdrops.com

 

KP Solutions s.r.o. acts as a data controller in accordance with Regulation (EU) 2016/679 (GDPR).

 

Scope of This Policy

 

This Privacy Policy explains:

 

•     what personal data we collect

•     how we use it

•     who we share it with

•     your rights.

 

By using TMDrops services, you agree to this Policy.

 

Sources of Personal Data

 

We collect personal data:

 

Directly from you:

 

•     during registration

•     when adding shipment details

•     when contacting customer support.

 

Automatically:

 

•     through website usage (cookies, logs).

 

From third parties:

 

•     payment providers (e.g. Stripe)

•     logistics partners

•     publicly available sources (where applicable).

 

Types of Personal Data

 

We process the following categories:

 

Basic Information

 

•     full name

•     email address

•     phone number.

 

Delivery Information

 

•     delivery address

•     pickup location

•     parcel tracking data.

 

Identification Data (Important)

 

•     passport details

•     identification number (if required).

 

This data is required for:

 

•     customs clearance

•     compliance with import regulations (including Turkmenistan).

 

Transaction Data

 

•     payment status

•     transaction ID

•     billing information.

 

We do not store full payment card details.

 

Technical Data

 

•     IP address

•     browser type

•     device information

•     cookies.

 

Legal Basis for Processing

 

We process your personal data under the following GDPR legal bases:

 

Contract Performance

 

•     to create and manage your account

•     to deliver parcels

•     to provide customer support.

 

Legal Obligation

 

•     to comply with customs regulations

•     to meet tax and regulatory requirements.

 

Legitimate Interest

 

•     fraud prevention

•     service improvement

•     system security.

 

Consent (where applicable)

 

•     marketing communications (if you opt-in).

 

Passport Data (Special Notice)

 

We collect passport data only when necessary for:

 

•     customs processing

•     identity verification.

 

We ensure that:

 

•     access is strictly limited

•     data is securely stored

•     data is not used for marketing purposes.

 

Sharing of Personal Data

 

We may share your data with:

 

1.   Logistics Partners (including warehouses in USA, Italy and Greece)

2.   Delivery Partner in Turkmenistan - Türkmenpoçta

3.   Customs Authorities (where required by law)

4.   Payment Providers (e.g. Stripe)

5.   IT & Infrastructure Providers (hosting, security, system maintenance).

 

We do not sell personal data.

 

International Data Transfers

 

Your data may be transferred outside the European Economic Area (EEA).

 

We ensure protection through:

 

•     Standard Contractual Clauses (SCCs)

•     the conclusion of standard contractual provisions (SCC) and the application of other GDPR protection mechanisms.

 

Data Retention

 

We retain personal data:

 

•     for as long as your account is active

•     as required by applicable laws (including tax and customs regulations).

 

Retention periods may vary depending on the data category and legal requirements.

 

After that data is deleted or anonymized.

 

Passport data is retained only for the period necessary to comply with legal obligations.

 

Your Rights (GDPR)

 

You have the right to:

 

•     access your personal data

•     correct inaccurate data

•     request deletion (“right to be forgotten”)

•     restrict processing

•     object to processing

•     request data portability.

 

You also have the right to lodge a complaint with a supervisory authority in the EU.

 

To exercise your rights or to ask questions about personal data protection, please contact us: info@tmdrops.com

 

Cookies

 

We use cookies to:

 

•     ensure website functionality

•     improve user experience

•     analyze usage.

 

You can manage cookies via your browser settings.

 

If necessary, the user's consent to the use of cookies is requested.

 

Data Security

 

We implement appropriate technical and organizational measures, including:

 

•     encryption

•     access control

•     secure infrastructure.

 

However, no system can guarantee absolute security.

 

Third-Party Services

 

We use third-party providers (e.g. payment processors, logistics partners).

 

These providers process data under their own privacy policies.

 

Changes to This Policy

 

We may update this Privacy Policy at any time.

 

Updated versions will be published on our website.

 

Continued use of TMDrops services constitutes acceptance of the updated Policy.