1.1 We are pleased that you are visiting our website and thank you for your interest. Below, we inform you how your personal data is handled when using our website in the EU and the USA.
1.2 The controller for EU data subjects within the meaning of the GDPR and for U.S. data subjects under applicable state privacy laws is:
LucaTech3D GmbH
Steinbeisweg 86, 74523 Schwäbisch Hall, Germany
Tel.: +49 791 95610189
E-Mail: info@lucatech3d.com
2.1 When you use our website for informational purposes only, we collect server log data pursuant to Art. 6(1)(f) GDPR—technical data such as your IP address (anonymized), date and time of access, page requested, referral URL, browser and operating system. This data is used only to operate and improve the site and is not passed on unless required to investigate unlawful use.
2.2 We use SSL/TLS encryption (look for “https://” and the padlock icon) to protect transmission of personal data such as orders or inquiries.
We use cookies to make your visit attractive and to enable certain functions. Session cookies expire when you close your browser; persistent cookies remain on your device to store settings. You may configure your browser to accept or reject cookies. Please note that refusing cookies may limit website functionality.
EU: Cookie-based processing is based on Art. 6(1)(a) GDPR (consent) or Art. 6(1)(f) GDPR (legitimate interest).
USA: We do not use cookies to sell or share your data with third parties. Cookies are used solely to operate the site and analyze aggregate traffic.
Hosting (Shopify)
Our site is hosted on Shopify International Ltd., Dublin, Ireland and Shopify Inc., Ottawa, Canada. All data is processed under EU-Canada adequacy provisions and the EU-US Data Privacy Framework.
USA: We engage U.S.-based analytics and payment providers under CCPA-compliant agreements. We do not “sell” personal information as defined by U.S. law.
5.1 Contact Forms & Email
EU: Processing under Art. 6(1)(f) GDPR (legitimate interest) or Art. 6(1)(b) GDPR (contract).
USA: Processing under state privacy laws; we collect only name, email, and message content to respond. We retain until inquiry is resolved or statutory retention expires.
5.2 Account Registration & Orders
EU: Processing under Art. 6(1)(b) GDPR (contract performance).
USA: We collect billing/shipping address, payment details, and order history. We use this data to fulfill orders and communicate with you. We retain your data for business recordkeeping (e.g. 4 years for tax purposes).
EU Data Subjects: You have rights of access, rectification, erasure, restriction, portability, objection, and to withdraw consent (Arts. 15–21 GDPR). You may lodge a complaint with a supervisory authority.
U.S. Data Subjects: Depending on your state, you may have rights under laws such as CCPA/CPRA (e.g. right to access, deletion, data portability) and Nevada’s law (opt-out of sale). To exercise, email info@lucatech3d.com. We do not discriminate for exercising these rights.
EU: We retain personal data only as long as necessary for the purposes and in compliance with statutory retention periods. Data is stored securely with encryption and access controls.
USA: We implement administrative, technical, and physical safeguards appropriate to the sensitivity of the information. We retain order and contact data for up to 4 years for business and legal purposes.
We may update this policy at any time. EU updates comply with GDPR requirements; U.S. updates will be posted with the revision date. Continued use after changes constitutes acceptance.
© LucaTech3D GmbH – Last updated: 04.08.2025
