← Back to shop

Privacy Policy

Last updated: April 1, 2026

This Privacy Policy describes how InjectKit (operated by meeco Servicios Globales S.L., CIF: B42774703, hereinafter "we," "us," or "our") collects, uses, and discloses your personal data when you visit our website injectkit.com, use our services, or interact with us. We are committed to protecting your privacy and handling your data in an open and transparent manner, in accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679.

1. Who is the Data Controller?

The data controller responsible for your personal data is:

meeco Servicios Globales S.L.
CIF: B42774703
Carrer de Rocafort, 241-243
08029 Barcelona, Spain
Email: [email protected]

2. What Personal Data Do We Collect?

We may collect and process the following types of personal data about you:

  • Identity Data: Name, surname, title, date of birth.
  • Contact Data: Billing address, shipping address, email address, telephone numbers.
  • Financial Data: Payment card details (processed securely by our third-party payment processor, Revolut; we do not store full card numbers), bank account details for refunds.
  • Transaction Data: Details about payments to and from you and other details of products and services you have purchased from us.
  • Technical Data: Internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
  • Usage Data: Information about how you use our website, products, and services.
  • Marketing and Communications Data: Your preferences in receiving marketing from us and our third parties and your communication preferences.
  • Correspondence Data: Information you provide when you communicate with us, such as customer service inquiries, feedback, or support requests.

3. How Do We Collect Your Data?

We use different methods to collect data from and about you, including through:

  • Direct interactions: You may give us your Identity, Contact, and Financial Data by filling in forms or by corresponding with us by post, phone, email, or otherwise. This includes personal data you provide when you:
    • Apply for our products or services.
    • Create an account on our website.
    • Subscribe to our service or publications.
    • Request marketing to be sent to you.
    • Enter a competition, promotion, or survey.
    • Give us feedback or contact us.
  • Automated technologies or interactions: As you interact with our website, we may automatically collect Technical Data about your equipment, browsing actions, and patterns. We collect this personal data by using cookies and other similar technologies. Please see our Cookie Policy for more details.
  • Third parties or publicly available sources: We may receive personal data about you from various third parties, such as:
    • Payment processors (e.g., Revolut) for Transaction Data.
    • Analytics providers (e.g., Google Analytics) for Technical and Usage Data.

4. How Do We Use Your Data and What is Our Legal Basis?

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

  • To perform the contract we are about to enter into or have entered into with you:
    • Processing and delivering your orders (Identity, Contact, Financial, Transaction Data).
    • Managing your account (Identity, Contact Data).
    • Providing customer support (Identity, Contact, Correspondence Data).

    Legal Basis: Performance of a contract.

  • Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests:
    • Improving our website, products/services, marketing, customer relationships, and experiences (Technical, Usage Data).
    • To prevent fraud and ensure security (Technical, Transaction Data).
    • To administer and protect our business and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting, and hosting of data) (Technical Data).
    • To keep our records updated and to study how customers use our products/services (Identity, Contact, Usage, Marketing, and Communications Data).

    Legal Basis: Legitimate interests.

  • Where we need to comply with a legal or regulatory obligation:
    • Maintaining records for tax and audit purposes (Identity, Contact, Transaction Data).

    Legal Basis: Compliance with a legal obligation.

  • Where you have given your explicit consent:
    • Sending you marketing communications about our products and services (Marketing and Communications Data).
    • For certain types of cookies (see our Cookie Policy).

    Legal Basis: Consent. You have the right to withdraw consent at any time by contacting us or unsubscribing.

5. Who Do We Share Your Data With?

We may share your personal data with the following categories of recipients:

  • Internal Third Parties: Other companies within our group acting as processors or joint controllers and who are based in the EU.
  • External Third Parties:
    • Payment Processors: We use Revolut for secure online payment processing. Your payment information is provided directly to Revolut, which operates under its own privacy policy. We do not store your full payment card details.
    • Shipping Carriers: To deliver your orders, we share your Identity and Contact Data (name, address, phone number) with shipping companies such as DHL, UPS, and national postal services.
    • Service Providers: IT and system administration services, email service providers, analytics providers (e.g., Google Analytics for anonymized usage data).
    • Professional Advisers: Lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance, and accounting services.
    • Government Bodies/Regulators: If legally required to do so, or to protect our rights, property, or safety, or that of others.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

6. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data, and whether we can achieve those purposes through other means, and the applicable legal requirements.

For example, by law, we have to keep basic information about our customers (including Contact, Identity, Financial, and Transaction Data) for six years after they cease being customers for tax purposes.

7. International Data Transfers

We primarily store and process your personal data within the European Economic Area (EEA). If we transfer your personal data outside the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

  • We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
  • Where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe.
  • Where we use providers based in the US, we may transfer data to them if they are part of the EU-US Data Privacy Framework (if applicable) or have equivalent safeguards in place.

8. Your Data Protection Rights (GDPR)

Under certain circumstances, you have rights under data protection laws in relation to your personal data:

  • The right to access: You have the right to request copies of your personal data.
  • The right to rectification: You have the right to request that we correct any information you believe is inaccurate. You also have the right to request that we complete the information you believe is incomplete.
  • The right to erasure ("right to be forgotten"): You have the right to request that we erase your personal data, under certain conditions.
  • The right to restrict processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
  • The right to object to processing: You have the right to object to our processing of your personal data, under certain conditions.
  • The right to data portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
  • The right to withdraw consent: Where we rely on consent to process your personal data, you have the right to withdraw that consent at any time. This will not affect the lawfulness of any processing carried out before you withdraw your consent.

If you make a request, we have one month to respond to you. Please contact us at [email protected] if you wish to exercise any of these rights.

9. Cookies

Our website uses cookies to distinguish you from other users of our website. This helps us to provide you with a good experience when you browse our website and also allows us to improve our site. For detailed information on the cookies we use and the purposes for which we use them, please see our Cookie Policy.

10. Security of Your Data

We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used, accessed in an unauthorized way, altered, or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

11. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date at the top of this Privacy Policy. We encourage you to review this Privacy Policy periodically for any changes.

12. Contact Us / Data Protection Officer (DPO)

If you have any questions about this Privacy Policy, our data practices, or if you wish to exercise any of your rights, please contact us:

By email: [email protected]
By post: meeco Servicios Globales S.L., Carrer de Rocafort, 241-243, 08029 Barcelona, Spain

While we do not have a formally appointed Data Protection Officer (DPO) as we are not legally required to, the contact email above will direct your inquiries to the person responsible for data protection within our organization.

13. Complaints to the Supervisory Authority

You have the right to make a complaint at any time to the relevant supervisory authority for data protection issues. In Spain, this is the Agencia Española de Protección de Datos (AEPD).

Agencia Española de Protección de Datos (AEPD)
C/ Jorge Juan, 6
28001 Madrid, Spain
Website: www.aepd.es

We would, however, appreciate the chance to deal with your concerns before you approach the AEPD, so please contact us in the first instance.