Privacy.

1. Principles

Nexotropin operates a privacy-first practice. We collect only the minimum data required to fulfill an order, comply with EU consumer law, and verify a batch on request. We do not sell, share, or rent any customer data to third parties.

2. Data we collect

• Order details (product, quantity, price)
• Delivery address and contact email
• Payment processor reference (we do not store card data)
• Batch verification queries (anonymous)

3. Data we do not collect

• No tracking pixels, no analytics, no behavioural data
• No third-party cookies, no advertising IDs
• No social-media beacons

4. Lawful basis

We process customer data under (a) contract performance and (b) legal obligation (tax records, consumer protection). We do not rely on consent for marketing because we do not market.

5. Retention

Order records are retained for the period required by EU tax law (10 years). Verification queries are retained for 30 days only.

6. Your rights

You may request access, correction, deletion, or portability of your personal data at any time by writing to privacy@nexotropin.com. We respond within 30 days, in line with GDPR.

7. Controller

Nexotropin Labs OÜ, Tartu mnt 67/1‑13b, 10115 Tallinn, Estonia. (Placeholder pending registration finalisation.)