Call us: +44 95 4653 4054

Get in Touch

Privacy Policy

Your privacy is important to us at Xylonix. Learn how we collect, use, and protect your personal information.

Introduction

At Xylonix, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy outlines how we collect, use, disclose, and safeguard your data when you visit our website, purchase our natural supplements and skincare products, or interact with our services. We comply with the General Data Protection Regulation (GDPR) and other applicable data protection laws in the United Kingdom.

This policy applies to all users of our website, customers, and individuals who contact us. By using our website or providing your information, you consent to the practices described in this policy. We encourage you to read this policy carefully to understand our approach to your personal data.

Information We Collect

We collect information to provide you with a personalized shopping experience, process orders, improve our products, and communicate effectively. The types of information we collect include:

Personal Data

  • Name and Contact Information: When you place an order, create an account, or contact us, we collect your name, email address, phone number, and shipping address.
  • Payment Information: For order processing, we collect payment details through secure third-party processors. We do not store credit card information on our servers.
  • Account Information: If you create an account, we store your login credentials and purchase history.

Usage Data

  • Website Analytics: We use cookies and similar technologies to collect information about your browsing behavior, including IP address, browser type, device information, pages visited, and time spent on our site.
  • Communication Data: When you contact us via email, phone, or our contact form, we record the content of your communications and our responses.

We only collect information necessary for our legitimate business purposes and do not collect sensitive personal data such as health information unless voluntarily provided for order processing.

How We Use Your Information

Your personal information is used solely for the following purposes:

  • Order Processing: To fulfill your purchases, arrange shipping, and provide customer support related to your orders.
  • Customer Service: To respond to your inquiries, resolve issues, and provide assistance with our products.
  • Marketing Communications: With your consent, to send you promotional emails about new products, special offers, and wellness tips. You can opt out at any time.
  • Website Improvement: To analyze website usage, improve user experience, and develop new features.
  • Legal Compliance: To comply with legal obligations, prevent fraud, and protect our rights and those of our customers.

We do not sell, trade, or rent your personal information to third parties for marketing purposes. All data processing is based on legitimate grounds such as contract performance, legal obligation, or your consent.

Data Sharing & Disclosure

We value your trust and are committed to protecting your privacy. We may share your information in the following limited circumstances:

  • Service Providers: We work with trusted third-party service providers for shipping, payment processing, and website hosting. These providers are contractually obligated to protect your data and only use it for the services they provide to us.
  • Legal Requirements: We may disclose information if required by law, court order, or government regulation, or to protect our rights, property, or safety.
  • Business Transfers: In the event of a merger, acquisition, or sale of our business, your information may be transferred to the new owner.

We do not sell or share your personal data for commercial purposes unrelated to our business operations. All data sharing is conducted with appropriate safeguards in place.

Your Data Protection Rights

Under GDPR and other data protection laws, you have several rights regarding your personal information:

  • Right to Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can ask us to correct inaccurate or incomplete information.
  • Right to Erasure: You can request deletion of your personal data in certain circumstances.
  • Right to Restrict Processing: You can limit how we use your information.
  • Right to Data Portability: You can request your data in a structured, machine-readable format.
  • Right to Object: You can object to processing based on legitimate interests or for direct marketing.

To exercise these rights, please contact us using the information provided below. We will respond to your request within 30 days and may ask for verification of your identity. If you are in the EU, you also have the right to lodge a complaint with your local data protection authority.

Cookies

Our website uses cookies and similar technologies to enhance your browsing experience and provide personalized content. Cookies are small text files stored on your device.

Types of Cookies We Use:

  • Essential Cookies: Necessary for the website to function properly, such as remembering your shopping cart contents.
  • Analytical Cookies: Help us understand how visitors use our site to improve performance and user experience.
  • Marketing Cookies: Used to deliver relevant advertisements and track campaign effectiveness.

You can manage your cookie preferences through your browser settings. However, disabling certain cookies may affect website functionality. For more detailed information about our cookie practices, please see our Cookie Policy.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we make significant changes, we will notify you by email or through a prominent notice on our website. The updated policy will be effective immediately upon posting, but changes will not apply retroactively to information collected before the update.

We encourage you to review this policy periodically. Your continued use of our website after any changes constitutes acceptance of the updated policy.

Data Security

We implement robust technical and organizational measures to protect your personal information against unauthorized access, loss, alteration, or disclosure. Our security practices include:

  • Encryption: All sensitive data transmitted between your browser and our servers is encrypted using SSL/TLS protocols.
  • Access Controls: We limit access to personal information to authorized personnel who need it to perform their job functions.
  • Regular Audits: We conduct periodic security audits and vulnerability assessments to identify and address potential risks.
  • Data Minimization: We only collect and retain the minimum amount of personal information necessary for our business purposes.
  • Incident Response: In the unlikely event of a data breach, we have procedures in place to notify affected individuals and regulatory authorities as required by law.

While we strive to protect your information using industry-standard security measures, no method of transmission over the internet or electronic storage is 100% secure. Therefore, we cannot guarantee absolute security. However, we are committed to promptly addressing any security concerns and continuously improving our practices.

International Data Transfers

As a UK-based company, your personal information is primarily processed within the United Kingdom. However, some of our service providers may be located in other countries, including countries outside the European Economic Area (EEA). When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, such as:

  • Standard contractual clauses approved by the European Commission
  • Adequacy decisions by the European Commission for certain countries
  • Binding corporate rules for multinational companies

These measures ensure that your data receives the same level of protection as it would within the EEA. You can request more information about specific transfer mechanisms by contacting us.

Children's Privacy

Our website and services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information promptly. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

  • Email: [email protected]
  • Phone: +44 95 4653 4054
  • Address: 452 Victoria Road, Sheffield, S3 7GS, United Kingdom

Our Data Protection Officer will review your inquiry and respond within 30 days. We are committed to addressing your privacy concerns promptly and transparently.

Last Updated: October 1, 2023

We use cookies to enhance your browsing experience. By continuing to use our site, you agree to our use of cookies. Learn more.