{{brizy_dc_image_alt imageSrc=

Privacy Policy

Effective Date: 23 November 2025

This Privacy Policy describes how Xuan Music (“we”, “us”, or “our”) processes personal data in compliance with the General Data Protection Regulation (GDPR / AVG) and other applicable data protection laws. This policy applies to all visitors and customers of our website and webshop.

1. Data Controller

Xuan Music

contact@xuanmusicproductions.come

KvK: 98640577

2. Personal Data We Process

We process only the personal data necessary for the operation of our webshop and services, including:

  • Name
  • Email address
  • Postal address (for orders)
  • Order and transaction details
  • Payment information (processed by secure third party providers; not stored by us)
  • Account information (if you choose to create an account)
  • Information submitted through our contact form

We do not process sensitive personal data.

3. Legal Basis for Processing

Under Article 6 GDPR, we process your personal data on the following basis:

  • Contract performance: processing and delivering your order
  • Legal obligations: tax and accounting requirements
  • Legitimate interests: ensuring proper website functioning and security
  • Consent: for optional communication such as newsletters

4. Purposes of Processing

Your personal data is used for:

  • Processing and fulfilling online orders
  • Providing access to your account
  • Issuing digital products such as sheet music
  • Sending order updates and service notifications
  • Responding to inquiries
  • Website functionality, security, and analytics (anonymized)

We do not use personal data for automated decision making or profiling.

5. Cookies and Tracking Technologies

We use minimal cookies, primarily functional and anonymized analytical cookies.

All details are described in our Cookie Policy.

6. Data Retention

We retain data only for as long as necessary:

  • Order and invoice data: 7 years (statutory requirement)
  • Account information: retained until you delete your account
  • Contact form data: up to 12 months

After these periods, data is securely deleted or anonymized.

7. Sharing of Personal Data

We share personal data only with third parties essential for our business operations, such as:

  • Payment service providers
  • Hosting and IT service providers
  • Delivery services (where applicable)

Each third party acts as a data processor under a GDPR-compliant Data Processing Agreement (DPA) and may only process data according to our instructions.

We do not sell or trade personal data.

8. Security Measures

We implement appropriate technical and organizational measures, including:

  • SSL/TLS encrypted transmission
  • Restricted access to administrative systems
  • Regular security monitoring

9. International Transfers

We do not transfer personal data outside the European Economic Area (EEA) unless adequate safeguards are applied, such as Standard Contractual Clauses (SCCs).

10. Your Rights

Under the GDPR, you have the right to:

  • Access your personal data
  • Rectification
  • Erasure (“right to be forgotten”)
  • Restriction of processing
  • Data portability
  • Object to processing
  • Withdraw consent at any time

Contact: contact@xuanmusicproductions.com

You may also file a complaint with your national Data Protection Authority.

11. Contact

For questions about this Privacy Policy or data practices, contact:

Xuan Music

contact@xuanmusicproductions.com

The Netherlands

© All Copyrights 2025 by Xuan Music