Skip to Content

Privacy Policy — BIZI

Last updated: 24 January 2026

This privacy policy explains how BIZI (hereinafter “we”) collects, uses, and protects your personal data when you visit our site, create an account, place an order, or contact us.

Our online store is operated via Odoo.

1) Data Controller

BIZI (commercial name)
Legal name: Gashi Sala 
Adresse : Rue de Fiennes 16, 1070 Bruxelles, Belgique
TVA : BE1032484529
Email : info@bizi.com

2) Personal data collected

Depending on how you use the site, we may collect:

a) Identity and contact data

  • First name, last name

  • Email, phone number

  • Delivery and/or billing address

b) Order and service data

  • Purchased products, order history, returns

  • Messages exchanged with support (after-sales service, complaints, requests)

  • Information provided during a purchase/buyback request (if applicable: description, photos, list)

c) Payment data (depending on the chosen method)

  • PayPal : the information required for the transaction is processed via PayPal.

  • Bank transfer: information related to the transfer visible on our statements (e.g., account holder name, reference, IBAN, amount).

  • MasterCard/VISA/Bancontact/Stripe :  the information required for the transaction is processed via STRIPE

We do not store your full bank card details. Payments are processed by the relevant providers.

d) Technical and browsing data

  • IP address, session identifiers, security logs

  • Device/browser information

  • Audience measurement data via the Analytics tool provided by Odoo (see Cookies section)

We do not seek to collect sensitive data. Please do not provide it to us.

3) Purposes of processing

We process your data to:

  • Create and manage your customer account

  • Process your orders (confirmation, invoicing, preparation)

  • Manage payments (PayPal, bank transfer tracking)

  • Ensure delivery (bpost / Mondial Relay, tracking and incident management)

  • Handle after-sales service (returns, refunds, support)

  • Prevent fraud and secure the site

  • Comply with our legal obligations (accounting, taxation)

  • Measure audience and improve the site (Odoo Analytics)

We do not send newsletters (therefore no email marketing processing for promotional purposes, except emails necessary for your order/service).

4) Legal bases (GDPR)

  • Performance of a contract: order management, delivery, after-sales service, customer account

  • Legal obligation: invoicing, accounting, tax obligations

  • Legitimate interest: security, fraud prevention, service improvement, performance statistics

  • Consent: only for non-essential cookies/trackers if a consent banner is used

5) Data recipients

We share your data only when necessary, with:

a) Odoo (e-commerce platform)

Your data may be processed via Odoo for running the store (customer account, orders, invoices, back-office management) and for audience measurement via Odoo’s analytics tool.

b) Payments

  • PayPal: if you pay via PayPal, PayPal processes the data necessary for the transaction and may act as an independent controller for certain operations (e.g., compliance, fraud prevention).

  • Bank transfer: our banking institution processes transfer-related data according to its obligations.

  • Stripe : if you pay via Visa/MasterCard/Bancontact, Stripe processes the data necessary for the transaction and may act as an independent controller for certain operations (e.g., compliance, fraud prevention).

c) Delivery

  • bpost and Mondial Relay: to ship your order (name, address, and possibly phone/email for tracking).

d)Internal access

Access is limited to authorised persons (preparation, support, administration), only as needed for service purposes.

6)Transfers outside the EEA

Some providers (notably PayPal) may process data outside the European Economic Area. In such cases, appropriate safeguards (e.g., Standard Contractual Clauses or recognised mechanisms) are used in accordance with the GDPR.

7)Retention periods

We keep your data only as long as necessary:

  • Orders / invoices / accounting: retained in accordance with the legal obligations applicable in Belgium

  • Customer account: as long as the account is active, then deleted/anonymised after a reasonable period of inactivity

  • After-sales/support: for the time needed to handle the request, then limited archiving

  • Payment data (bank transfers): in line with accounting requirements and bank statements

  • Security logs: limited duration for security and fraud prevention

  • Analytics: according to retention settings configured in Odoo and/or your cookie consent if applicable

8)Cookies and audience measurement (Odoo Analytics)

The site uses cookies:

  • Essential: required for operation (cart, session, security)

  • Audience measurement: via the analytics tool provided byOdoo(if enabled)

Depending on your site's configuration, a cookie banner may allow you to accept/reject non-essential cookies. You can also manage cookies through your browser settings.

9) Your rights (GDPR)

You have the following rights: access, rectification, erasure (within legal limits), restriction, objection, portability (where applicable).

You may also object to certain processing based on legitimate interests.

To exercise your rights:info@bizishop.eu

We may request proof of identity in case of doubt to protect your data.

You can also lodge a complaint with the Data Protection Authority (Belgium).

10) Security

We implement technical and organisational measures to protect your data (access control, account security, incident management, recognised payment providers). No system is infallible, but we apply reasonable and appropriate measures.

11) Data of minors

The site is not specifically aimed at minors. If the law requires parental consent for certain actions, please ensure you are authorised.

12) Changes

We may update this policy at any time. The date of 'last update' will be changed accordingly.