Privacy policy

Last updated: 11 June 2026

This Privacy Policy explains how Sabiedriba ar ierobezotu atbildibu "SmartBuy", registration number 40203098869, legal address Duntes iela 7A, LV-1013, Riga, Latvia, trading as THE JERKY ("THE JERKY", "we", "us" or "our"), processes personal data when you visit https://thejerky.world, use our online store, place an order, create a customer account, contact us or otherwise interact with us.

For the purposes of the General Data Protection Regulation (EU) 2016/679 (GDPR), we are the controller of the personal data described in this Privacy Policy, unless stated otherwise.

1. Controller and contact details

Controller: Sabiedriba ar ierobezotu atbildibu "SmartBuy"
Trading name: THE JERKY
Registration number: 40203098869
VAT/PVN number: LV40203098869
Address: Duntes iela 7A, LV-1013, Riga, Latvia
Email: info@beefjerky.world
Phone: +371 20225222

We have not appointed a Data Protection Officer because we are not currently required to do so. If this changes, this Privacy Policy will be updated.

2. Personal data we collect

Depending on how you use the store, we may process the following personal data:

  • Contact and identification data: name, surname, email address, phone number, billing address, delivery address, country and other contact details you provide.
  • Order and transaction data: ordered products, order number, date, status, payment status, delivery method, returns, refunds, invoices, discount codes and related transaction information.
  • Payment-related data: payment method, payment status, transaction identifiers, billing information, card type and last four digits where available. We do not store full card numbers or CVV codes on our own systems.
  • Customer account data: login/account details, saved addresses, order history and account preferences if you create an account.
  • Communications data: messages, support requests, return requests, complaints, reviews and other communications you send to us.
  • Marketing and preference data: email subscription status, consent records, unsubscribe records and interaction with marketing emails, where applicable.
  • Technical and usage data: IP address, device and browser information, language and region settings, cookie identifiers, pages visited, referring URLs, session data and approximate location derived from technical signals.
  • Fraud prevention and security data: risk indicators, device data, payment risk signals, order patterns, login activity and technical logs.

We do not intentionally collect special categories of personal data, such as health data, biometric data, political opinions, religious beliefs or trade union membership. Please do not provide such data to us unless specifically requested and legally justified.

3. Sources of personal data

We collect personal data directly from you, automatically through the website and checkout, and from service providers that support the store, including Shopify, payment providers, delivery providers, fraud-prevention providers, analytics tools and customer support tools.

4. Purposes and legal bases

We process personal data only where we have a lawful basis under GDPR or other applicable law.

  • Order processing and fulfilment: to receive orders, process payments, prepare and deliver products, send order confirmations, issue invoices and handle returns or refunds. Legal bases: contract performance and legal obligations.
  • Customer support: to answer questions, handle complaints, resolve delivery issues and manage returns. Legal bases: contract performance and legitimate interests.
  • Customer accounts: to create and manage customer accounts, saved addresses and order history. Legal bases: contract performance and legitimate interests.
  • Marketing communications: to send newsletters, offers and product updates where you have consented or where legally permitted for existing customers. Legal bases: consent and, where permitted, legitimate interests. You can unsubscribe at any time.
  • Website operation and improvement: to operate the store, maintain cart and checkout functions, remember preferences, analyse performance and improve user experience. Legal bases: legitimate interests and consent where required for non-essential cookies.
  • Security and fraud prevention: to detect fraud, abuse, unauthorised access, payment risks and security incidents. Legal bases: legitimate interests and legal obligations.
  • Legal compliance: to comply with accounting, tax, consumer protection, food information, product safety and regulatory obligations. Legal basis: legal obligation.
  • Legal claims: to establish, exercise or defend legal claims and handle disputes. Legal bases: legitimate interests and legal obligations.

5. Cookies and similar technologies

Our store uses cookies and similar technologies. Some cookies are strictly necessary for cart, checkout, account login, language/region preferences, security and order processing. Other cookies may support analytics, marketing or store improvement. Where required by law, we ask for consent before using non-essential cookies. You can manage cookies through the cookie banner or your browser settings. Blocking some cookies may affect store functionality.

6. How we share personal data

We may share personal data with the following categories of recipients where necessary:

  • Shopify, which provides the e-commerce platform, hosting, checkout, security, payment-related functionality and related services.
  • Payment providers, banks and fraud-prevention providers used to process payments, refunds, chargebacks and risk checks.
  • Delivery, postal, courier, fulfilment and logistics providers used to deliver orders.
  • Email, customer support, IT, hosting, analytics, security and maintenance providers.
  • Professional advisers, including accountants, auditors, lawyers, tax advisers and insurers.
  • Public authorities, courts, regulators, tax authorities, customs authorities or law enforcement where required by law or necessary to protect rights.
  • Parties involved in a business transfer, reorganisation, merger or sale of assets, subject to applicable law.

We do not sell your personal data in the ordinary meaning of the word "sell".

7. Shopify

Our online store is powered by Shopify. Shopify may process personal data as our service provider and, in some cases, as an independent controller for its own services, security, analytics, fraud-prevention or consumer features. You can learn more in Shopify's Consumer Privacy Policy at https://privacy.shopify.com/en.

8. International transfers

We are located in Latvia, but some service providers, including Shopify, payment providers and technology providers, may process personal data outside Latvia or the European Economic Area. Where required, transfers are protected by appropriate safeguards such as European Commission adequacy decisions, Standard Contractual Clauses or equivalent lawful transfer mechanisms.

9. Data retention

We retain personal data only for as long as necessary for the purposes described above. Order, invoice and accounting data are retained for statutory accounting and tax periods. Customer account data is retained while the account remains active unless deletion is requested and no legal reason requires retention. Support communications are generally retained for up to 3 years after the matter is resolved, unless a longer period is needed for legal, fraud-prevention or dispute purposes. Marketing records are retained until you unsubscribe or withdraw consent, with limited suppression records kept to respect your choice.

10. Your rights

Subject to applicable law, you may have the right to access your personal data, request correction, request deletion, restrict processing, object to processing, receive certain data in a portable format, withdraw consent and object to direct marketing at any time. Where automated fraud or payment risk tools are used, you may request human review where required by law.

To exercise your rights, contact us at info@beefjerky.world. We may need to verify your identity before responding. Under GDPR, we normally respond within one month, unless the request is complex or multiple requests are made.

11. Marketing communications

If you subscribe to marketing emails, you can unsubscribe at any time by using the unsubscribe link in the email or by contacting us. Even if you unsubscribe from marketing, we may still send transactional or service messages such as order confirmations, delivery updates, account notices, security notices and legally required communications. We do not use SMS marketing.

12. Security and children

We use appropriate technical and organisational measures designed to protect personal data against unauthorised access, loss, misuse, alteration or disclosure. No internet transmission or storage system is completely secure, and you are responsible for keeping account credentials confidential.

Our store is not intended for children under 18. We do not knowingly collect personal data from children. If you believe a child has provided personal data to us, contact us so we can take appropriate action.

13. Complaints

If you have concerns about how we process personal data, please contact us first at info@beefjerky.world. You also have the right to lodge a complaint with the Latvian Data State Inspectorate:

Data State Inspectorate of Latvia
Elijas iela 17, Riga, LV-1050, Latvia
Email: pasts@dvi.gov.lv
Phone: +371 67223131
Website: https://www.dvi.gov.lv

If you live in another EEA country, you may also contact your local data protection authority.

14. Changes and contact

We may update this Privacy Policy from time to time to reflect changes in our store, service providers, legal obligations or processing practices. The latest version will be published on this page.

For privacy questions, contact: THE JERKY, SIA SmartBuy, registration number 40203098869, Duntes iela 7A, LV-1013, Riga, Latvia, email info@beefjerky.world, phone +371 20225222.