Spyxaronzul

Privacy Policy

Last Updated: January 2025

1. Introduction

This Privacy Policy explains how Spyxaronzul ("we," "us," or "our") collects, uses, discloses, and protects your personal information when you visit our website at spyxaronzul.world (the "Website") or use our services. We are committed to protecting your privacy and ensuring transparency in our data processing practices.

This policy complies with the General Data Protection Regulation (GDPR) (EU) 2016/679 and other applicable data protection laws in the Netherlands and the European Union.

2. Data Controller Information

Company Name: Spyxaronzul

Registered Address: Parnassusweg 819, 1082 LZ Amsterdam, Netherlands

Contact Email: reply@spyxaronzul.world

Contact Phone: +31 20 521 4777

We are the data controller responsible for your personal information. If you have any questions about this Privacy Policy or our data processing practices, please contact us using the information provided above.

3. Information We Collect

3.1 Information You Provide Directly

We collect personal information that you voluntarily provide to us when you:

  • Place an order through our contact forms
  • Subscribe to our newsletter or marketing communications
  • Contact us via email or phone
  • Interact with our customer service

This information may include:

  • Full name
  • Email address
  • Phone number
  • Delivery address
  • Payment information (processed securely through third-party payment processors)
  • Order history and preferences
  • Any other information you choose to provide in messages or forms

3.2 Information Collected Automatically

When you visit our Website, we automatically collect certain information about your device and browsing behavior, including:

  • IP address and approximate geographic location
  • Browser type and version
  • Operating system
  • Referring website URLs
  • Pages viewed and time spent on pages
  • Date and time of visits
  • Device identifiers and characteristics

This information is collected through cookies and similar tracking technologies. Please see our Cookies Policy for more details.

3.3 Information from Third Parties

We may receive information about you from third-party services such as payment processors, delivery services, and analytics providers. This information is used solely to fulfill our contractual obligations and improve our services.

4. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Contractual Necessity: Processing is necessary to fulfill our contract with you when you place an order or use our services.
  • Consent: You have given explicit consent for specific processing activities, such as receiving marketing communications or using certain cookies.
  • Legitimate Interests: Processing is necessary for our legitimate business interests, such as fraud prevention, network security, and improving our services, provided these interests do not override your fundamental rights.
  • Legal Obligations: Processing is necessary to comply with legal obligations, such as tax and accounting requirements.

5. How We Use Your Information

We use the collected information for the following purposes:

  • Order Processing: To process and fulfill your orders, including payment processing, shipping, and customer service.
  • Communication: To respond to your inquiries, provide customer support, and send order confirmations and updates.
  • Marketing: To send promotional materials, newsletters, and special offers (only with your consent, which you can withdraw at any time).
  • Website Improvement: To analyze website usage, identify trends, and improve our website functionality and user experience.
  • Security: To detect, prevent, and address fraud, security issues, and technical problems.
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes.
  • Business Operations: To maintain records, conduct internal research, and perform other business administration tasks.

6. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties. We may share your information with the following categories of recipients:

6.1 Service Providers

We engage trusted third-party service providers to perform functions on our behalf, including:

  • Payment processing companies
  • Shipping and delivery services
  • Email service providers
  • Web hosting and cloud storage providers
  • Analytics and marketing platforms
  • Customer relationship management (CRM) systems

These service providers have access to your personal information only to perform specific tasks on our behalf and are obligated to protect your data and use it only for the purposes we specify.

6.2 Legal Requirements

We may disclose your information if required by law, court order, or governmental authority, or when we believe disclosure is necessary to:

  • Comply with legal obligations
  • Protect our rights, property, or safety
  • Prevent fraud or security threats
  • Enforce our terms and conditions

6.3 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your personal information may be transferred to the acquiring entity, subject to the same privacy protections outlined in this policy.

7. International Data Transfers

Your personal information may be transferred to and processed in countries outside the European Economic Area (EEA) where our service providers are located. When we transfer data internationally, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions recognizing equivalent data protection standards
  • Binding Corporate Rules for intra-group transfers

We take all reasonable steps to ensure your data is treated securely and in accordance with this Privacy Policy and applicable data protection laws.

8. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Specific retention periods include:

  • Order Information: Retained for 7 years to comply with tax and accounting obligations.
  • Marketing Consent: Retained until you withdraw consent or for 3 years of inactivity.
  • Website Analytics: Anonymized after 26 months in accordance with data protection guidelines.
  • Customer Service Records: Retained for 2 years after the last interaction.

After the retention period expires, we securely delete or anonymize your personal information in accordance with our data retention and deletion procedures.

9. Your Rights Under GDPR

As a data subject under GDPR, you have the following rights regarding your personal information:

  • Right of Access: You can request a copy of the personal information we hold about you.
  • Right to Rectification: You can request correction of inaccurate or incomplete personal information.
  • Right to Erasure: You can request deletion of your personal information in certain circumstances.
  • Right to Restriction: You can request that we restrict processing of your personal information in certain situations.
  • Right to Data Portability: You can request to receive your personal information in a structured, commonly used, and machine-readable format.
  • Right to Object: You can object to processing of your personal information based on legitimate interests or for direct marketing purposes.
  • Right to Withdraw Consent: Where processing is based on consent, you can withdraw your consent at any time.
  • Right to Lodge a Complaint: You can file a complaint with your local data protection authority if you believe your rights have been violated.

To exercise any of these rights, please contact us at reply@spyxaronzul.world or +31 20 521 4777. We will respond to your request within one month, as required by GDPR.

10. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit using SSL/TLS protocols (HTTPS)
  • Encryption of sensitive data at rest
  • Regular security assessments and vulnerability testing
  • Access controls and authentication mechanisms
  • Employee training on data protection and security practices
  • Secure backup and disaster recovery procedures
  • Incident response and breach notification procedures

While we strive to protect your personal information, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but are committed to maintaining industry-standard security practices.

11. Children's Privacy

Our Website and services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without parental consent, we will take steps to delete that information promptly. If you believe we have collected information from a child, please contact us immediately.

12. Third-Party Links

Our Website may contain links to third-party websites, services, or applications that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit. This Privacy Policy applies only to information collected through our Website.

13. Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects you. Any automated processing we conduct is limited to analytics and website optimization, which does not result in decisions that affect your rights or interests.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our Website with a new "Last Updated" date. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

Your continued use of our Website and services after any changes to this Privacy Policy constitutes your acceptance of the updated policy.

15. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us:

Email: reply@spyxaronzul.world

Phone: +31 20 521 4777

Postal Address:
Spyxaronzul
Parnassusweg 819
1082 LZ Amsterdam
Netherlands

We will respond to your inquiry as promptly as possible, typically within 30 days.

16. Supervisory Authority

If you are not satisfied with our response to your privacy concerns, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens):

Autoriteit Persoonsgegevens
Postbus 93374
2509 AJ Den Haag
Netherlands
Website: autoriteitpersoonsgegevens.nl