Privacy Policy

Last updated: February 10, 2026

1. Introduction

GLENDER ("we", "us", "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you visit glenderdj.com ("Website").

This policy complies with the General Data Protection Regulation (GDPR) — Regulation (EU) 2016/679 — and applicable Portuguese data protection legislation.

2. Data Controller

The data controller responsible for your personal data is:

GLENDER
Website: glenderdj.com
Contact: glenderdj.com/contact

3. Data We Collect

We may collect the following types of personal data:

Data Type Source Purpose
Email address Newsletter subscription Sending updates, releases, and event information
Name, email, message Contact / booking form Responding to enquiries and booking requests
Name, address, email, payment info Online store (WooCommerce) Processing and fulfilling orders
IP address, browser, device info Automatic collection Analytics, security, and Website improvement
Chat messages AI chatbot Providing automated assistance

4. How We Use Your Data

We use your personal data for the following purposes:

  • To process and fulfil merchandise orders, including payment and shipping
  • To respond to contact and booking enquiries
  • To send newsletter communications (only with your consent)
  • To analyse Website traffic and improve user experience
  • To provide AI chatbot assistance
  • To ensure the security and proper functioning of the Website

5. Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

  • Consent — for newsletter subscriptions and push notifications
  • Contract — to fulfil orders placed through our online store
  • Legitimate interest — for analytics, Website security, and improving our services

6. Third-Party Services

We use the following third-party services that may process your data:

  • Stripe & Google Pay — secure payment processing for online purchases
  • Brevo (formerly Sendinblue) — newsletter email delivery and subscriber management
  • Google Analytics — anonymous Website traffic analysis
  • WonderPush — push notification delivery
  • AIKit — AI-powered chatbot functionality

Each of these services operates under their own privacy policies. We encourage you to review them. We do not sell your personal data to any third party.

7. Cookies

Our Website uses cookies and similar technologies to enhance your experience. The types of cookies we use include:

  • Essential cookies — required for the Website to function (e.g., session management, shopping cart)
  • Analytics cookies — help us understand how visitors interact with the Website (Google Analytics)
  • Functional cookies — remember your preferences (e.g., loading screen skip)

You can manage cookie preferences through your browser settings. Disabling certain cookies may affect Website functionality.

8. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy:

  • Newsletter subscribers — until you unsubscribe
  • Order data — for the duration required by tax and accounting regulations (typically 7 years)
  • Contact form submissions — up to 12 months after the enquiry is resolved
  • Analytics data — anonymised and retained as per Google Analytics defaults

9. Your Rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access — request a copy of the data we hold about you
  • Right to rectification — request correction of inaccurate data
  • Right to erasure — request deletion of your data ("right to be forgotten")
  • Right to restrict processing — request limitation of how we use your data
  • Right to data portability — receive your data in a structured, machine-readable format
  • Right to object — object to processing based on legitimate interest
  • Right to withdraw consent — withdraw consent at any time for newsletter or notifications

To exercise any of these rights, please contact us via our contact page.

10. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including:

  • SSL/TLS encryption for all data in transit
  • Secure payment processing via Stripe (PCI DSS compliant)
  • Content Security Policy (CSP) headers to prevent cross-site scripting
  • Regular security updates and monitoring

11. International Transfers

Some of our third-party service providers may process data outside the European Economic Area (EEA). Where this occurs, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

12. Children's Privacy

Our Website is not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a minor, please contact us immediately.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. We encourage you to review this policy periodically.

14. Contact & Complaints

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact us at:

glenderdj.com/contact

You also have the right to lodge a complaint with the Portuguese Data Protection Authority:

CNPD — Comissão Nacional de Proteção de Dados
Website: www.cnpd.pt

← Back to Home

Chat with Guardian of the Ritual

Greetings, traveler of sound. I am the Guardian of the Ritual, here to guide you through GLENDER’s sonic temple.