Last updated: April 16, 2026

Armatrack operates this website and related services, including all information, content, features, tools, products, and services offered through the site (the “Services”). This Privacy Policy explains how we collect, use, store, disclose, and protect personal data when you visit our website, place an order, contact us, or otherwise interact with us.

This Privacy Policy applies to the processing of personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and other applicable EU data protection laws. By using our Services, you acknowledge that you have read and understood this Privacy Policy.

If there is any conflict between this Privacy Policy and our Terms of Service, this Privacy Policy prevails in relation to the processing of personal data.

Personal data we collect

When we refer to “personal data,” we mean any information relating to an identified or identifiable natural person. We may collect and process the following categories of personal data depending on how you interact with us and how required for the operation of our Services:

• Identity and contact data, such as your name, email address, phone number, billing address, shipping address, and any other contact details you provide.
• Order and transaction data, such as products purchased, order history, delivery information, payment confirmation, returns, and related customer service records.
• Payment data, such as limited payment information necessary to complete your transaction. We do not store full card details on our own systems.
• Account data, such as login credentials, account preferences, and saved settings, if you create an account.
• Communications data, such as the information you share when you contact us by email, form, or other communication channels.
• Technical data, such as IP address, device type, browser type, operating system, language settings, and similar information collected through your use of the website.
• Usage data, such as pages visited, products viewed, time spent on the site, and interaction with website features.
• Marketing preference data, such as your communication preferences and consent choices.

How we collect data

We collect personal data from the following sources:

• Directly from you, when you place an order, create an account, contact us, subscribe to communications, or otherwise submit information to us.
• Automatically, when you use our website, through cookies and similar technologies, or through your device and browser.
• From service providers, where necessary for payment processing, delivery, website operation, analytics, or customer support.
• From legal and administrative requirements, where we are required to obtain, verify, or retain specific information under applicable law.

Why we use personal data

We process personal data only where we have a valid legal basis under GDPR. Depending on the context, we may rely on one or more of the following legal bases: performance of a contract,  legal obligation, legitimate interests, and consent.

We use personal data for the following purposes:

• To process and deliver orders, including handling payment, shipping, invoicing, returns, and customer support.
• To communicate with you, including responding to enquiries, providing order updates, and sending service-related messages.
• To manage our website and services, including maintaining security, preventing fraud, troubleshooting issues, and improving functionality.
• To comply with legal obligations, including accounting, tax, consumer law, product traceability, and other regulatory requirements.
• To send marketing communications, where permitted by law and where you have provided consent where required.
• To improve our products and customer experience, including understanding how customers use the website and what content or products are most relevant.

Legal bases for processing

Under GDPR, we process personal data on the following legal bases:

• Contract performance, when processing is necessary to take steps at your request or to fulfil a contract with you, such as processing an order and shipping your purchase.
• Legal obligation, when processing is necessary to comply with applicable EU law, tax obligations, accounting requirements, or other statutory duties.
• Legitimate interests, when processing is necessary for our legitimate business interests, such as operating and securing our website, preventing fraud, and improving our Services, provided those interests are not overridden by your rights and freedoms.
• Consent, where required, such as for certain marketing communications or cookies that are not strictly necessary.

How we share data

We do not sell your personal data.

We disclose personal data only when necessary and only to the following categories of recipients:

• Revolut, our payment provider, for processing payments and related transaction handling.
• DHL, our shipping partner, for fulfillment, delivery, and tracking of orders.
• Legal or public authorities, where we are required to disclose information by applicable law, court order, or lawful request.
• Professional advisers, such as accountants, auditors, or legal advisers, where disclosure is necessary for compliance, protection of rights, or business administration.

We only disclose the information required for these purposes and only to the extent necessary to complete the transaction or comply with legal obligations.

Cookies and similar technologies

We may use cookies and similar technologies to operate the website, remember user preferences, understand traffic patterns, and improve performance. Where required by law, we will ask for your consent before placing non-essential cookies on your device.

You may control cookies through your browser settings and, where provided, through any cookie preference tool displayed on our website. Disabling some cookies may affect the functionality of the site.

Data retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including to satisfy legal, accounting, tax, warranty, or dispute-resolution requirements.

Retention periods may vary depending on the type of data and the applicable legal obligation. When personal data is no longer needed, we will delete, anonymise, or securely archive it where appropriate.

Data security

We use reasonable technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure. However, no method of transmission over the internet or method of electronic storage is completely secure, and we cannot guarantee absolute security.

You are responsible for keeping your account credentials confidential and for using secure devices and connections when interacting with our Services.

International transfers

Our Services are intended for customers in the European Union. If personal data is transferred outside the European Economic Area, we will ensure that the transfer is carried out in accordance with GDPR, including where necessary through appropriate safeguards such as Standard Contractual Clauses or transfers to countries recognised by the European Commission as providing adequate protection.

Your GDPR rights

If you are located in the EU or the EEA, you may have the following rights in relation to your personal data, subject to the conditions and exceptions under GDPR:

• Right of access: to obtain confirmation of whether we process your personal data and to receive a copy of that data.
• Right to rectification: to correct inaccurate or incomplete personal data.
• Right to erasure: to request deletion of your personal data in certain circumstances.
• Right to restriction of processing: to request that we limit the processing of your data in certain cases.
• Right to data portability: to receive your personal data in a structured, commonly used, machine-readable format and, where technically feasible, to have it transmitted to another controller.
• Right to object: to object to processing based on legitimate interests or for direct marketing.
• Right to withdraw consent: where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing before withdrawal.

To exercise any of these rights, contact us using the details found at the end of this page. We may need to verify your identity before responding to your request.

Marketing communications

If you consent to receive marketing communications, we may send you occasional emails about Armatrack products, updates, or offers. You can withdraw your consent at any time by using the unsubscribe link in our emails or by contacting us directly.

Even if you opt out of marketing messages, we may still send you essential non-marketing communications, such as order confirmations, shipping updates, account notices, or legal notices.

Children’s data

Our Services are not intended for children, and we do not knowingly collect personal data from individuals under the age of 16. If you believe a child has provided us with personal data, please contact us and we will take appropriate steps to delete it where required by law.

Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational needs. Any updated version will be posted on this page with a revised “Last updated” date.

Where required by law, we will notify you of material changes through the website or by other appropriate means.

Contact us

If you have questions about this Privacy Policy or wish to exercise your GDPR rights, please use the information on the Contact Us page to send us a written request.