Privacy Policy
Privacy Policy
Last updated: 25 June 2026
This Privacy Policy explains how Cool Melon collects, uses, stores, and protects personal data when you visit this website, buy NFC products, create or manage a digital NFC profile, contact us, or use customer account features.
This page is provided as a practical privacy notice for the Cool Melon website and services. It should be reviewed and completed with the exact legal details of the business entity operating the store before final production use.
1. Who We Are
Cool Melon is an online store and digital profile service for NFC business cards, QR card destinations, editable digital profiles, vCard downloads, and related customer dashboard tools.
Website: https://coneq.me/
Operator / Data Controller: Cool Melon / First Idea. Replace this with the full registered business name, VAT number, registered address, and contact email before launch.
2. Personal Data We Collect
Depending on how you use the website, we may collect:
- Account details, such as name, username, email address, password hash, and customer account preferences.
- Order and billing details, such as billing name, company, email, phone, billing/shipping address, products purchased, order notes, invoices, payment status, and transaction references.
- NFC profile data you provide, such as full name, job title, company, bio, phone numbers, email address, website, address, social links, profile image, cover image, logo, and public profile design settings.
- Physical card data, such as card code, card status, production status, QR/NFC destination, and project/order linkage.
- Support communications, such as messages sent through contact forms, email, or account/project support requests.
- Technical and security data, such as browser type, device information, approximate analytics data, logs needed to protect the site, and cookie preferences.
- Analytics events related to NFC profile use, such as profile views, link clicks, vCard downloads, and card interactions. The NFC plugin is designed not to store raw IP addresses for analytics.
3. How We Use Personal Data
We use personal data to process orders and payments, create NFC card projects, manage public profiles and vCards, operate dashboard access and renewals, provide support, prevent fraud or abuse, secure the website, improve services, and comply with tax, accounting, consumer protection, and legal obligations.
4. Legal Bases for Processing
- Contract: to provide products, customer accounts, NFC profiles, digital card services, renewals, and support.
- Legal obligation: to keep accounting, tax, invoicing, warranty, consumer-rights, and compliance records.
- Legitimate interests: to secure the website, prevent fraud, manage production, improve services, and respond to business/customer requests.
- Consent: where required for optional marketing, non-essential cookies, or specific optional features.
5. Public NFC Profiles
NFC profile pages are designed to be public or shareable when assigned to an active NFC/QR card. Any information you add to a public profile may be viewed by people who tap the card, scan its QR code, or access the profile link. Do not publish sensitive personal data on a public NFC profile.
6. Payments
Payments are processed through WooCommerce payment methods enabled on the website. Payment providers may collect and process payment data under their own privacy notices. Cool Melon should not store complete card numbers or full payment credentials on this website.
7. Cookies and Similar Technologies
The website may use cookies for essential functions such as cart, checkout, login, security, and account sessions. Optional analytics or marketing cookies should only be used according to the active cookie-consent setup and applicable law.
8. Who We Share Data With
We may share limited personal data with service providers only where needed to operate the business, such as hosting providers, WooCommerce/payment providers, shipping/fulfilment providers, email delivery services, analytics tools, backup/security providers, accountants, legal advisors, and public authorities where legally required.
9. International Transfers
Some providers may process data outside Greece or the European Economic Area. Where this happens and GDPR applies, appropriate safeguards such as adequacy decisions, standard contractual clauses, or equivalent legal mechanisms should be used.
10. Data Retention
We keep personal data only as long as needed for the purposes described in this policy, including legal, tax, accounting, security, warranty, and customer-service requirements. Order and invoice records may be retained for the period required by applicable law. Public profile information remains available while the profile/card is active, unless deleted, unpublished, or disabled.
11. Your Rights
Where GDPR applies, you may have the right to access, correct, delete, restrict, object to processing, request portability of your data, or withdraw consent where processing is based on consent. You also have the right to lodge a complaint with the competent data protection authority. In Greece, this is the Hellenic Data Protection Authority.
12. Security
We use reasonable technical and organizational measures to protect personal data, including access controls, admin permissions, security checks, and protected account workflows. No online service can guarantee absolute security.
13. Children’s Data
The website and NFC business card services are not intended for children. Customers should not submit children’s personal data to public NFC profiles.
14. Changes to This Policy
We may update this Privacy Policy when services, laws, or operational practices change. The latest version will be posted on this page.
15. Contact
For privacy requests, contact: replace-with-your-email@example.com