top of page
Shiplyr.png

Privacy Policy

Last updated: 04 May 2026

 

This Privacy Policy explains how Shiplyr Ltd (“Shiplyr”, “we”, “us”, or “our”) collects, uses, stores, shares, and protects your personal data when you use our website, create an account, purchase a membership, use our parcel forwarding service, contact support, or interact with Shiplyr in any other way.

 

We process personal data in accordance with the EU General Data Protection Regulation (“GDPR”), applicable Cyprus data protection law, and other applicable privacy laws.

 

By using Shiplyr, you acknowledge that your personal data will be processed as described in this Privacy Policy.

 

1. Who We Are

 

Shiplyr is operated by:

 

Shiplyr Ltd

Registered in Cyprus

Company Registration Number: [INSERT]

Registered Address: Skoutari 18, Villa 4, 8560 Pegeia

Email: support@shiplyr.com

Website: www.shiplyr.com

 

For the purposes of data protection law, Shiplyr is generally the data controller for the personal data processed in connection with your account, membership, parcel forwarding, support, billing, and website use.

 

2. What Personal Data We Collect

 

We may collect and process the following categories of personal data:

 

a) Account Data

 

  • First name

  • Last name

  • Email address

  • Password or login credentials managed through our website provider

  • Shiplyr customer reference

  • Account status

  • Membership plan

  • Registration date

  • Communication preferences

 

b) Contact and Delivery Data

 

  • Delivery name

  • Cyprus delivery address

  • Phone number

  • Alternative delivery address, where provided

  • Recipient details where you request delivery to another person

 

c) Parcel and Shipment Data

 

  • Shiplyr reference

  • Parcel identification data

  • Merchant or online shop name

  • Inbound tracking number

  • Outbound tracking number

  • Parcel status

  • Shipment status

  • Arrival date

  • Weight

  • Dimensions

  • Shipping method

  • Delivery status

  • Consolidation requests

  • Return requests

  • Internal parcel notes

  • Photos or documents where needed for parcel handling, damage claims, identification, or support

 

d) Payment and Billing Data

 

  • Membership plan

  • Payment status

  • Transaction records

  • Invoice data

  • Amounts due

  • Payment links

  • Subscription status

  • Billing history

 

Shiplyr does not normally store full card numbers. Payments are processed by third-party payment providers such as Stripe.

 

e) Support and Communication Data

 

  • Emails and messages you send to us

  • Support requests

  • Complaint details

  • Documents, screenshots, photos, invoices, order confirmations, or tracking details you provide

  • Records of our communication with you

 

f) Website and Technical Data

 

Depending on your use of our website, we may collect:

 

  • IP address

  • Device information

  • Browser type

  • Operating system

  • Pages visited

  • Time and date of visits

  • Referring pages

  • Cookie identifiers

  • Analytics data

  • Security logs

 

g) Legal and Compliance Data

 

Where required, we may process data needed to:

 

  • verify ownership of parcels

  • prevent fraud

  • respond to legal requests

  • comply with accounting, tax, consumer protection, data protection, or transport-related obligations

  • enforce our Terms and Conditions

 

3. How We Collect Personal Data

 

We collect personal data when:

 

  • you create a Shiplyr account

  • you purchase a membership plan

  • you enter or update your delivery address

  • you use your Shiplyr reference when ordering online

  • parcels arrive at our warehouse in Germany

  • you request shipment, consolidation, storage, return, or support

  • you make payments

  • you contact us by email, form, dashboard, or other channels

  • you use our website

  • carriers, logistics providers, payment providers, warehouse operators, or online retailers provide relevant information needed to process your parcels or shipments

 

4. Why We Process Your Personal Data

 

We process your personal data for the following purposes:

 

a) To Create and Manage Your Account

 

We use your data to create your account, assign your Shiplyr reference, manage your membership, maintain your customer profile, and provide dashboard access.

 

b) To Provide Parcel Forwarding Services

 

We use your data to identify parcels, register arrivals, manage parcel status, arrange shipping, process consolidation, prepare shipments, handle returns, provide tracking, and deliver parcels to Cyprus.

 

c) To Process Payments and Billing

 

We use payment and billing data to charge membership fees, create payment links, process shipment payments, manage subscriptions, issue invoices, track unpaid amounts, and maintain financial records.

 

d) To Communicate With You

 

We use your contact data to send parcel arrival notifications, shipping updates, payment requests, storage reminders, support responses, important service notices, and account-related messages.

 

e) To Provide Customer Support

 

We use your data to answer questions, investigate parcel issues, resolve complaints, process claims, review damage reports, and assist with returns or delivery problems.

 

f) To Improve and Secure Our Service

 

We may use technical and usage data to improve website performance, prevent abuse, detect fraud, secure accounts, troubleshoot errors, and maintain reliable operations.

 

g) To Comply With Legal Obligations

 

We may process personal data to comply with tax, accounting, consumer protection, data protection, legal, regulatory, and transport-related obligations.

 

h) To Protect Our Rights and Business

 

We may process data to enforce our Terms and Conditions, recover unpaid amounts, handle disputes, defend legal claims, prevent misuse, and protect Shiplyr, our customers, and our partners.

 

5. Legal Bases for Processing

 

Under the GDPR, we rely on the following legal bases:

 

a) Performance of a Contract

 

We process personal data where necessary to provide your Shiplyr membership and parcel forwarding services.

 

This includes account creation, parcel registration, shipment processing, consolidation, returns, payment handling, and support.

 

b) Legal Obligation

 

We process data where required to comply with legal obligations, such as accounting, tax, regulatory, consumer protection, or data protection obligations.

 

c) Legitimate Interests

 

We may process data based on our legitimate interests, including service operation, fraud prevention, security, customer support, business administration, dispute handling, service improvement, and protection of our legal rights.

 

d) Consent

 

Where required, we may rely on your consent, for example for certain cookies, marketing communications, or optional features.

 

You may withdraw consent at any time where processing is based on consent.

 

6. Sharing Personal Data

 

We may share your personal data with trusted third parties where necessary to provide the service, operate our business, or comply with legal obligations.

 

These may include:

 

a) Warehouse and Logistics Providers

 

We may share data with warehouse operators and logistics partners in Germany and Cyprus where necessary to receive, identify, store, consolidate, return, or forward parcels.

 

b) Carriers and Delivery Providers

 

We may share recipient name, address, phone number, shipment details, parcel data, and tracking information with carriers or delivery providers.

 

c) Payment Providers

 

We use payment providers such as Stripe to process payments, subscriptions, payment links, and billing-related transactions.

 

d) Website and IT Providers

 

We may use providers such as Wix, hosting providers, database tools, email systems, analytics tools, automation tools, security tools, or technical service providers.

 

e) Professional Advisers

 

We may share data with accountants, lawyers, tax advisers, compliance advisers, or business consultants where necessary.

 

f) Public Authorities

 

We may share data with courts, regulators, tax authorities, law enforcement, or other public authorities where required by law or necessary to protect our rights.

 

g) Business Transfers

 

If Shiplyr is involved in a merger, acquisition, restructuring, sale of assets, or similar business transaction, personal data may be transferred as part of that transaction, subject to appropriate safeguards.

 

We do not sell your personal data.

 

7. International Data Transfers

 

Shiplyr is based in Cyprus and operates with service providers and logistics partners that may be located in Cyprus, Germany, other EU/EEA countries, or other jurisdictions.

 

Where personal data is transferred outside the European Economic Area, we will take appropriate measures required by applicable data protection law. These may include adequacy decisions, standard contractual clauses, contractual safeguards, or other lawful transfer mechanisms.

 

8. Cookies and Similar Technologies

 

Our website may use cookies and similar technologies to:

 

  • operate the website

  • keep you logged in

  • remember preferences

  • improve website performance

  • analyse website traffic

  • support security

  • enable marketing or analytics tools, where applicable

 

Some cookies are necessary for the website to function. Other cookies may require your consent.

 

You can manage cookies through your browser settings and, where available, through the cookie banner or preferences tool on our website.

 

A separate Cookie Policy may provide more detailed information.

 

9. How Long We Keep Personal Data

 

We keep personal data only for as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

 

Retention periods may depend on:

 

  • account status

  • active membership

  • parcel and shipment history

  • legal obligations

  • accounting and tax requirements

  • dispute or claim handling

  • fraud prevention

  • operational needs

 

Examples:

 

  • Account data may be kept while your account is active and for a reasonable period after closure.

  • Parcel and shipment records may be kept for operational, support, tax, accounting, and claim purposes.

  • Payment and invoice records may be kept as required by accounting and tax laws.

  • Support messages may be kept for customer service, dispute resolution, and quality control.

  • Technical logs may be kept for security and troubleshooting for a limited period.

 

When personal data is no longer needed, we will delete, anonymise, or securely archive it where appropriate.

 

10. Security

 

We take reasonable technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, disclosure, or destruction.

 

These measures may include access controls, secure systems, account authentication, data minimisation, provider security measures, staff access restrictions, and operational safeguards.

 

However, no online service, website, database, email system, or transmission method can be guaranteed to be completely secure.

 

You are responsible for keeping your account login details confidential and for notifying us immediately if you suspect unauthorised access to your account.

 

11. Your Data Protection Rights

 

Under the GDPR, you may have the following rights:

 

  • Right to be informed about how your data is processed

  • Right of access to your personal data

  • Right to rectification of inaccurate data

  • Right to erasure of your data in certain circumstances

  • Right to restriction of processing

  • Right to data portability

  • Right to object to processing based on legitimate interests

  • Right to withdraw consent where processing is based on consent

  • Rights relating to automated decision-making and profiling, where applicable

 

To exercise your rights, please contact us at:

 

support@shiplyr.com

 

We may need to verify your identity before responding to your request.

 

Some rights are not absolute. For example, we may need to retain certain data for legal, accounting, tax, security, dispute, or service-related reasons.

 

12. Marketing Communications

 

We may send you service-related messages that are necessary for your account or parcels, such as parcel arrival notifications, shipping updates, payment requests, storage reminders, or important account notices.

 

These service messages are not marketing and are required for the operation of the service.

 

If we send marketing emails, we will do so only where permitted by law and will provide an unsubscribe option where required.

 

13. Automated Decision-Making

 

Shiplyr does not currently use automated decision-making that produces legal or similarly significant effects on customers.

 

We may use automated or semi-automated systems to support account management, parcel status updates, payment notifications, email workflows, fraud prevention, or operational efficiency.

 

14. Children

 

Shiplyr is not intended for children.

 

You must be at least 18 years old or have legal capacity to enter into a contract in order to create an account and use Shiplyr.

 

We do not knowingly collect personal data from children.

 

15. Third-Party Websites

 

Our website may contain links to third-party websites, including online retailers, payment providers, tracking pages, or other services.

 

We are not responsible for the privacy practices, content, security, or terms of third-party websites.

 

You should review the privacy policies of any third-party websites you use.

 

16. Data Breaches

 

If a personal data breach occurs and notification is required by law, we will notify the relevant supervisory authority and affected individuals where required.

 

17. Supervisory Authority

 

If you are located in Cyprus or believe your personal data has been processed in a way that violates applicable data protection law, you may have the right to lodge a complaint with the Cyprus Commissioner for Personal Data Protection.

 

Office of the Commissioner for Personal Data Protection

Cyprus

Website: www.dataprotection.gov.cy

 

We encourage you to contact Shiplyr first so we can try to resolve your concern.

 

18. Changes to This Privacy Policy

 

We may update this Privacy Policy from time to time.

 

If we make material changes, we may notify you by email, website notice, dashboard notice, or other appropriate method.

 

The updated version will be effective from the date stated at the top of the Privacy Policy.

 

19. Contact Us

 

For privacy questions, data protection requests, or concerns about how we process your personal data, please contact:

 

Shiplyr Ltd

Email: support@shiplyr.com

Website: www.shiplyr.com

Address: Skoutari 18, Villa 4, 8560 Pegeia

bottom of page