Pair & Spare — Add 2 or more optics, get 10% off.

Privacy policy

 

PRIVACY POLICY

 

I. General Information

We invite you to read this Privacy Policy, which sets out the rules for the processing of your personal data by us.
This Privacy Policy applies to all online services operated by Zepter International Poland sp. z o.o., including the website available at:
www.hyperlightoptics.com

II. Personal Data Controller

The controller of your personal data is:

Zepter International Poland sp. z o.o.
Registered in the Register of Entrepreneurs of the National Court Register
KRS: 0000107635
NIP: 5260200187
REGON: 011524677
Share capital: PLN 224,500

Address:
ul. Domaniewska 37,
02-672 Warsaw, Poland

Contact:
Phone: +48 22 565 84 84, +48 22 565 80 00
Helpline: +48 22 230 99 40 (international charges may apply)
E-mail: support@hyperlightoptics.com

III. Data Protection Officer (DPO)

The Data Protection Officer of Zepter International Poland sp. z o.o. is:

Ms. Justyna Buzała
E-mail: iod@zepter.com.pl
Postal address:
IOD Zepter International Poland
ul. Domaniewska 37
02-672 Warsaw, Poland

IV. Purposes of Processing and Legal Bases

Your personal data are processed in accordance with Regulation (EU) 2016/679 (GDPR) for the following purposes:

a) Contact forms (non-marketing)

Legal basis: Article 6(1)(f) GDPR – legitimate interest
Purpose: Responding to inquiries submitted via contact forms
Retention: For the duration necessary to handle the inquiry and up to 6 months thereafter, unless longer retention is required by law.

No marketing content is sent on this legal basis.

b) Chat service (customer support)

Legal basis: Article 6(1)(f) GDPR – legitimate interest
Purpose: Customer support and handling user inquiries
Retention: Until the inquiry is resolved and up to 6 months thereafter, unless claims require longer retention.

Chat data are not used for marketing purposes without separate consent.

c) Marketing contact (callback, newsletter, email or phone marketing)

Legal basis: Article 6(1)(a) GDPR – consent

Purpose:

  • One-time marketing contact (callback)

  • Sending newsletters or marketing information by e-mail or phone

Retention:

  • Until consent is withdrawn, or

  • Until the marketing purpose is fulfilled

Consent may be withdrawn at any time without affecting the lawfulness of processing carried out before withdrawal.

d) Order processing and Shopify checkout

Legal basis: Article 6(1)(b) GDPR – performance of a contract

Purpose:

  • Processing and fulfillment of orders

  • Payment processing

  • Delivery of products

  • Customer account management

Retention: For the duration of the contract and thereafter in accordance with tax and accounting regulations.

e) Legal obligations

Legal basis: Article 6(1)(c) GDPR

Purpose:

  • Accounting

  • Tax compliance

  • Archiving financial documentation

Retention: As required by applicable law.

f) Establishment, exercise and defence of claims

Legal basis: Article 6(1)(f) GDPR – legitimate interest
Retention: For the statutory limitation periods.

g) Analytics and statistics

Legal basis: Article 6(1)(a) GDPR – consent

Purpose:

  • Website traffic analysis

  • Performance optimization

  • Statistical reporting

Tool: Google Analytics 4 (GA4)
Analytics cookies are used only after obtaining user consent.

Providing personal data is voluntary, however failure to provide certain data may prevent us from providing specific services.

V. Data Recipients and Transfers Outside the EEA

Personal data may be disclosed to:

  • Entities within the Zepter group of companies,

  • Service providers cooperating with us (e.g. IT, hosting, payment, logistics providers).

Personal data may be transferred outside the European Economic Area (EEA), in particular to the United States, in connection with the use of:

  • Shopify Inc.

  • Google LLC (Google Analytics 4)

  • Meta Platforms Inc. (if marketing cookies are enabled)

Such transfers are carried out on the basis of:

  • Standard Contractual Clauses (SCCs) adopted by the European Commission (2021),

  • Additional technical and organizational safeguards, including IP anonymization,

  • Transfer Impact Assessments (TIA), where required.

Data are not transferred to international organizations.

Information about applied safeguards may be obtained by contacting the Data Protection Officer.

VI. Cookies and Similar Technologies

1. Legal basis

Cookies that are not strictly necessary are used only after obtaining explicit consent, in accordance with:

  • Article 5(3) of the ePrivacy Directive,

  • Article 6(1)(a) GDPR.

Using the website alone does not constitute consent.

2. Types of cookies

a) Strictly necessary cookies

Legal basis: Article 6(1)(f) GDPR

Purpose:

  • Website security

  • Checkout and payment processing

  • Fraud prevention

  • Session management

Used by:

  • Shopify platform

  • Shopify Payments

These cookies cannot be disabled.

b) Analytics cookies

Legal basis: Article 6(1)(a) GDPR – consent

Tool: Google Analytics 4
Purpose:

  • Measuring website traffic

  • Understanding user behavior

  • Improving website performance

Safeguards:

  • IP anonymization enabled

  • Data retention limited to 14 months

c) Marketing cookies

Legal basis: Article 6(1)(a) GDPR – consent

Tool:

  • Meta Pixel (Facebook / Instagram)

Purpose:

  • Conversion tracking

  • Audience measurement

  • Advertising optimization

d) Functional cookies

Legal basis: Article 6(1)(a) GDPR – consent

Purpose:

  • Remembering language, region and preferences

  • Enhancing user experience

3. Cookie management

Upon first visit, users are presented with a cookie banner allowing them to:

  • Accept all cookies

  • Reject non-essential cookies

  • Customize cookie preferences

Consent can be withdrawn at any time via the “Cookie Preferences” link in the website footer.

VII. Rights of Data Subjects (GDPR)

You have the right to:

  1. Access your personal data

  2. Rectify inaccurate data

  3. Erase data (“right to be forgotten”)

  4. Restrict processing

  5. Data portability

  6. Object to processing, including direct marketing

  7. Withdraw consent at any time

  8. Lodge a complaint with a supervisory authority

In Poland, the supervisory authority is:
President of the Personal Data Protection Office (UODO)
ul. Stawki 2, 00-193 Warsaw, Poland
https://uodo.gov.pl

VIII. Children’s Privacy (COPPA)

Our website and services are not directed to children under the age of 13.
We do not knowingly collect personal data from children under 13 years of age.

If such data are identified, they will be deleted immediately.

Parents or legal guardians may contact us at:
support@hyperlightoptics.com

IX. California Privacy Rights (CCPA / CPRA)

California residents have the right to:

  • Know what personal information is collected, used, shared or sold

  • Request deletion of personal information

  • Correct inaccurate personal information

  • Opt out of the sale or sharing of personal information

  • Limit the use of sensitive personal information

  • Not be discriminated against for exercising their rights

We do not sell personal information for monetary compensation.
Certain data disclosures (e.g. marketing cookies) may be considered “sharing” under California law.

Requests may be submitted via:

Identity verification may be required.

X. Sensitive Personal Information (CPRA)

We process sensitive personal information only when necessary, such as:

  • Account login credentials

  • Payment-related security data

  • Customer service communications voluntarily provided by users

We do not intentionally collect:

  • Racial or ethnic origin

  • Health or biometric data

Users may request limitation of such processing at any time.

XI. Do Not Track Signals

Some browsers offer a “Do Not Track” (DNT) signal.
Currently, we do not respond to DNT signals, as there is no industry-standard mechanism.

XII. Data Retention (U.S. Residents)

Personal data are retained only for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required by law.

Additional information regarding retention periods may be obtained upon request.

XIII. Other U.S. State Privacy Rights

Residents of U.S. states with applicable privacy laws (e.g. Virginia, Colorado, Connecticut) may have rights to:

  • Access personal data

  • Correct inaccuracies

  • Delete personal data

  • Opt out of targeted advertising

Requests may be submitted via support@hyperlightoptics.com

XIV. Final Provisions

This Privacy Policy applies globally.
Certain rights and obligations may vary depending on the user’s place of residence.

We may update this Privacy Policy from time to time.
The current version will always be available on our website.

To exercise these rights, please  email support@hyperlightoptics.com                            We may need to verify your identity before processing your request.

Customer support

Premium support, always included—because your vision deserves the best.

Fast Shipping

Free shipping in the EU. Fast and reliable delivery.

Quality guarantee

We stand behind every product—built to last and designed to perform.

Secure payment

Your payment is encrypted and processed securely for a worry-free shopping experience.
© 2026 Hyperlight Optics®. 
  • American Express
  • Apple Pay
  • Bancontact
  • Google Pay
  • iDEAL Wero
  • Klarna
  • Maestro
  • Mastercard
  • PayPal
  • Shop Pay
  • Union Pay
  • Visa