Privacy Policy

Your privacy matters deeply to us. Learn how we collect, use, and protect your personal information.

Last Updated: 1 January 2025

1. Introduction

Chrexchep ("we", "our", or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, store, and protect your data when you use our personal shopping assistance services and visit our website at chrexchep.ddd.

2. Information We Collect

2.1 Personal Information You Provide

When you interact with our services, we may collect the following personal information:

  • Contact Information: Name, email address, phone number, and postal address
  • Communication Data: Messages, enquiries, and correspondence you send us
  • Preference Information: Shopping preferences, lifestyle details, sustainability priorities, and product interests you share during consultations
  • Transaction Information: Details about services you request or recommendations you receive

2.2 Automatically Collected Information

When you visit our website, we automatically collect certain technical information:

  • Device Information: IP address, browser type, operating system, device type
  • Usage Data: Pages visited, time spent on pages, navigation patterns
  • Cookies: Small data files stored on your device (see our Cookies Policy for details)

3. How We Use Your Information

We use your personal information for the following purposes:

3.1 Providing Our Services

  • Delivering personalised shopping assistance and product recommendations
  • Understanding your preferences to provide tailored guidance
  • Responding to your enquiries and providing customer support
  • Managing consultations and service appointments

3.2 Communication

  • Sending responses to your messages and enquiries
  • Providing updates about our services (with your consent)
  • Sending important notices about changes to our services or policies

3.3 Service Improvement

  • Analysing website usage to improve user experience
  • Understanding which products and services are most valued
  • Developing new features and enhancing existing services

3.4 Legal Compliance

  • Complying with legal obligations and regulations
  • Protecting our rights and preventing fraud
  • Enforcing our terms and conditions

4. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your personal data based on:

  • Consent: You have given explicit consent for specific purposes
  • Contract: Processing is necessary to provide services you've requested
  • Legitimate Interests: Processing serves our legitimate business interests while respecting your rights
  • Legal Obligation: Processing is required to comply with applicable laws

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your data in the following limited circumstances:

5.1 Service Providers

We work with trusted third-party service providers who assist with website hosting, email services, analytics, and business operations. These providers are contractually obligated to protect your data and use it only for specified purposes.

5.2 Product Partners

With your explicit consent, we may share relevant information with sustainable brands and suppliers to facilitate product recommendations or fulfil service requests. We only partner with organisations that meet our ethical and privacy standards.

5.3 Legal Requirements

We may disclose your information if required by law, court order, or government regulation, or to protect our rights, property, or safety, or that of others.

6. Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • Secure server infrastructure with encryption
  • Regular security assessments and updates
  • Access controls limiting data access to authorised personnel
  • Staff training on data protection and privacy practices

However, no method of transmission or storage is completely secure. We cannot guarantee absolute security but maintain rigorous standards to protect your data.

7. Data Retention

We retain your personal information only as long as necessary for the purposes outlined in this policy or as required by law. Specifically:

  • Consultation Data: Retained for the duration of our service relationship and up to 3 years after your last interaction
  • Communication Records: Retained for 2 years to provide continuity of service
  • Website Analytics: Anonymised data retained for 26 months
  • Legal Records: Retained as required by applicable laws and regulations

After retention periods expire, we securely delete or anonymise your data.

8. Your Rights

Under GDPR and UK data protection laws, you have the following rights:

8.1 Access and Portability

You can request a copy of your personal data in a commonly used, machine-readable format.

8.2 Correction

You can request correction of inaccurate or incomplete personal information.

8.3 Deletion (Right to be Forgotten)

You can request deletion of your personal data, subject to legal retention requirements.

8.4 Restriction of Processing

You can request that we limit how we use your data in certain circumstances.

8.5 Objection

You can object to processing based on legitimate interests or for direct marketing purposes.

8.6 Withdraw Consent

Where processing is based on consent, you can withdraw that consent at any time.

To exercise any of these rights, please contact us using the details provided below. We will respond to your request within one month.

9. International Data Transfers

Your information is primarily stored and processed in the United Kingdom. If we transfer data internationally, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

10. Children's Privacy

Our services are not directed to individuals under 16 years of age. We do not knowingly collect personal information from children. If you believe we have inadvertently collected data from a child, please contact us immediately.

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing personal information.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, services, or legal requirements. We will notify you of significant changes by posting the updated policy on our website with a new "Last Updated" date. We encourage you to review this policy regularly.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Chrexchep
119 Westwood Avenue, Seattle, WA 98109
Email: info@chrexchep.world
Phone: +1 (206) 555-4480

14. Supervisory Authority

You have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's supervisory authority for data protection:

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire SK9 5AF
Helpline: 0303 123 1113

Your privacy is our priority. We are committed to transparency, security, and respect for your personal data.

Return Home