Privacy Policy

Privacy Policy – The Retro Arcade Shop

Last updated: March 20, 2026

Welcome to The Retro Arcade Shop (“we”, “us”, or “our”). We respect your privacy and are committed to protecting your personal data in line with the General Data Protection Regulation (GDPR) and other applicable Dutch and EU data‑protection laws.

By using our website at https://retroarcadeshop.com (the “Site”) or by placing an order, contacting us, or otherwise sharing information with us, you accept and agree to the practices described in this Privacy Policy.

1. Who we are

Retro Arcade Shop B.V.
Luxemburglaan 1
2711 BD Zoetermeer
The Netherlands
Email: sales@retroarcadeshop.com
KVK number: 63760290

We are a retro and arcade‑specialist webshop that sells retro game consoles, arcade cabinets, controllers, parts, and related accessories worldwide.retroarcadeshop

2. What personal data we collect

We may collect the following categories of personal data:

  • Contact information: name, email address, telephone number, shipping address, billing address.

  • Order and payment information: order history, products purchased, order totals, and payment details (processed via your chosen payment provider; we do not store full credit‑card numbers).

  • Technical and usage data: IP address, browser type, device information, pages visited, referring/exit pages, click patterns, and approximate location (derived from IP).

  • Account‑related data: if you create an account with us, we store your username, password (hashed), and order history.

  • Communications and support: details from your messages, support tickets, repair‑request forms, and any other contact you send us.

3. How we use your data

We use your personal data for the following purposes:

  • To process and fulfill orders, including shipping, packaging, and delivery tracking.

  • To send you order confirmations, shipping updates, and after‑sale information.

  • To respond to customer‑service inquiries, repair‑support requests, and other questions.

  • To manage your customer‑account and order‑history on our site.

  • To improve our website, services, and user experience (e.g., analyzing how customers use the site).

  • To comply with legal and tax obligations (e.g., issuing invoices, VAT handling, and record‑keeping)

Where required by law, we only use your data for marketing if you have explicitly consented (for example, by opting in to email newsletters).

4. Legal basis for processing (under GDPR)

Depending on the processing, we rely on one or more of the following legal bases under GDPR:

  • Contract performance: to take and fulfill your orders and provide services.

  • Legitimate interests: to operate and improve our website, prevent fraud, and keep our business running (provided your rights are not overridden).

  • Consent: for direct marketing communications (e.g., newsletters) where you have opted in. You can withdraw consent at any time.

  • Legal obligation: to comply with tax, accounting, and consumer‑protection laws.

5. Cookies and tracking technologies

Our website uses cookies and similar technologies to enhance your experience and gather usage data.

Common purposes include:

  • Keeping you logged in (if you have an account).

  • Remembering your cart contents and preferences.

  • Analyzing traffic and user behavior (e.g., via tools such as Google Analytics or similar).

You can adjust your browser settings to block or delete cookies, but some site features may not work properly if you do so. Our use of tracking follows GDPR and e‑privacy rules, and where required we obtain your consent (e.g., via a cookie banner).

6. Sharing your data with third parties

We share personal data only when necessary and in a secure way. This may include:

  • Payment and fraud‑prevention providers (e.g., card processors, PayPal, or similar) to process transactions.

  • Shipping and logistics partners to deliver your orders (name, address, phone, email).

  • Analytics and website tools (e.g., analytics platforms, hosting providers, email‑marketing services) that help us run and improve our site.

  • Legal or regulatory authorities when required by law (e.g., tax authorities, courts).

We do not sell your personal data to marketers or third‑party advertisers.

7. International transfers of your data

Some service providers may store or process your data outside the European Economic Area (EEA). Where this happens, we ensure that:

  • They are located in countries deemed to provide an adequate level of protection by the European Commission, or

  • They use appropriate safeguards such as Standard Contractual Clauses approved by the European Commission.

8. Data retention

We keep your personal data only for as long as necessary, including:

  • For orders: typically for the duration required by tax, accounting, and consumer‑law obligations (often several years after the last order)

  • For marketing consent: until you withdraw consent or your account is closed.

  • For support and technical data: as long as it is needed to resolve issues or ensure security.

Upon request, and in accordance with data‑protection law, we may delete or anonymize your data where there is no overriding legal or contractual reason to keep it.

9. Your rights under GDPR

As a data subject under GDPR, you generally have the right to:

  • Access: receive a copy of the personal data we hold about you.

  • Rectification: request correction of inaccurate or incomplete data.

  • Erasure: request deletion of your data, subject to legal limits.

  • Restriction: ask us to stop or limit processing in certain cases.

  • Portability: receive your data in a structured, machine‑readable format where applicable.

  • Object: object to certain types of processing (e.g., direct marketing).

  • Withdraw consent: for any processing based on consent, you can withdraw it at any time.

To exercise any of these rights, please contact us at sales@retroarcadeshop.com. We will respond within the timeframes set by law (normally within one month).

10. How we protect your data

We take appropriate technical and organizational measures to protect your personal data against:

  • Unauthorized access, loss, misuse, alteration, or disclosure.

These measures may include encrypted communications, secure servers, access‑control policies, and training for staff. However, no method of transmission over the Internet or electronic storage is 100% secure, so we cannot guarantee absolute security.

11. Children’s privacy

Our website and services are intended for adults and teenage visitors. We do not knowingly collect personal data from children under the age of 16 without verifiable parental consent. If you believe we have inadvertently collected data from a child, please contact us and we will take appropriate action.

12. Analytics and tracking tools

We use the following third‑party analytics services to understand how visitors use our website and to improve our services:

  • Google Analytics (provided by Google LLC) helps us analyze website traffic, user behavior, and performance. It may collect information such as your IP address, browser type, device information, pages visited, and referral sources. This data is processed in accordance with Google’s Privacy Policy and is used only for statistical and analytical purposes.

  • Microsoft Clarity (provided by Microsoft Ireland Operations Ltd.) records session‑replay and heat‑map‑style data to analyze how users interact with our site. Clarity may collect usage data, device information, click and scroll behavior, and similar interaction data, while masking sensitive fields such as passwords and credit‑card details.

Both services are used only after you have given valid consent via our cookie‑consent banner, in line with GDPR and the Dutch e‑Privacy rules.
You can withdraw your consent at any time by adjusting your cookie preferences in the banner or via your browser settings. If you withdraw consent, these tools will no longer process data from your future visits.

13. Contact us

If you have any questions about this Privacy Policy, your data, or your rights, please contact us: