Privacy Policy

Overview of ZAREXIA E-commerce Platform Privacy Policy​

This policy covers core aspects of data collection, use, sharing, and user rights, aligned with industry standards and platform-specific features. By accessing or using the platform, users agree to these terms.

​1. Scope​

• Applies to all ZAREXIA websites, mobile apps, and third-party integrated services (e.g., payment, logistics).
• Using the platform constitutes acceptance of this policy.

​2. Types of Data Collected​

• ​User-provided information:
  • Name, email, address, payment details during registration; order records, customer service communications.
• ​Automatically collected data:
  • IP address, device information (model, OS), browsing behavior (click paths, session duration), cookies, and similar technologies.
• ​Third-party shared data:
  • Transaction and delivery status from payment gateways (e.g., PayPal) and logistics providers (e.g., DHL).

​3. Purposes of Data Use​

• ​Core services: Order processing, payments, logistics, and after-sales support.
• ​User experience optimization: Personalized recommendations, interface adaptation.
• ​Security and compliance: Fraud detection, legal obligations (e.g., tax reporting).
• ​Marketing and research: Sending promotional materials (with consent), market trend analysis.

​4. Data Sharing and Disclosure​

• ​Necessary third parties: Payment processors, logistics companies, cloud providers (e.g., AWS) under confidentiality agreements.
• ​Legal requirements: Compliance with court orders or government investigations.
• ​Business transactions: Data may transfer as assets during platform acquisition.
• ​Cross-border transfer: Data may be transferred to Singapore, the EU, etc., protected by Standard Contractual Clauses (SCCs).

​5. Cookies and Tracking Technologies​

• ​Functional: Maintain login status, save shopping cart contents.
• ​Analytical: Traffic statistics via Google Analytics (can be disabled via browser settings).
• ​Advertising: Anonymous behavioral data shared with ad platforms (e.g., Google Ads) for targeted ads.

​6. User Rights​

Under laws like the EU GDPR, users may:

• ​Access and correct: View or update personal information via account settings.
• ​Right to deletion: Request data erasure (excluding legally retained records like orders).
• ​Opt out of marketing: Unsubscribe from promotional emails or via account settings.
• ​Data portability: Obtain structured data copies.
• ​Exercise rights: Contact [email protected]; ZAREXIA will respond within 30 days.

​7. Data Security Measures​

• ​Technical protections: SSL encryption, regular security audits, role-based access control.
• ​Employee training: Only authorized personnel access data under confidentiality agreements.
• ​Breach response: Notify users and regulators in case of data leaks.

​8. Children’s Privacy​

• ZAREXIA does not serve users under 16; underage data will be deleted upon discovery.

​9. Policy Updates and Contact​

• ​Changes: Major updates communicated via email or site notices.
• ​Disputes: EU users may file complaints with local data protection authorities.
• ​Contact: [email protected]