Privacy Policy-szxssk

1. What Personal Data Do We Gather?

• Identity and Contact Details: Your full name, email address (for communications via szxssk@outlook.com), telephone number, and delivery/billing addresses. We collect this information when you place an order, create a customer account, sign up for our new collection alerts and exclusive offers, or contact our support team for assistance—such as outerwear size recommendations, pants fit adjustments, shirt fabric care guidance, or order tracking requests.
• Transaction and Order Information: Details related to your purchases, including the specific clothing items you select (e.g., cotton shirts, high-waisted pants, midi dresses, quilted jackets), sizes, quantities, order reference numbers, transaction amounts, and payment method identifiers. We never store full payment card details; all payments are processed by PCI DSS-accredited third-party providers, ensuring the highest level of security for your financial information.
• Account and Preference Data: If you register an account with us, we will store your size preferences (customized to our shirts, pants, dresses and outerwear), order history, saved delivery addresses, and communication preferences—for example, whether you wish to receive styling inspiration for pairing shirts with pants or dresses with outerwear via email.
• Website Usage and Technical Details: When you browse our official website, we collect anonymized technical and browsing data to optimize site performance and enhance your shopping experience. This includes: This data is collected using cookies and similar tracking technologies (see Section 7 for guidance on managing these settings).
  • Device information (e.g., smartphone, laptop, tablet), operating system, and browser type.
  • Anonymized IP address (personal identifying components are permanently removed within 50 days to ensure you cannot be identified).
  • Browsing behavior: Pages visited (e.g., outerwear collection, pants category), products viewed or added to cart/wishlist, time spent on product detail pages (such as shirt sleeve lengths or outerwear insulation properties), and referral sources (e.g., search engines, social media posts featuring our clothing, or direct website visits).
• Voluntarily Disclosed Information: Details you choose to share with us, such as product reviews (e.g., feedback on the fit of our dresses or the quality of our shirts), style suggestions (e.g., pants and outerwear pairing ideas), survey responses, or information exchanged during in-store interactions (e.g., adjusting a shirt’s collar or discussing outerwear waterproof features).

2. Why We Process Your Data & Legal Grounds

• Performing a Contract: To fulfill our obligations under the purchase contract formed when you buy our clothing—this includes processing payments, arranging delivery of your shirts, pants, dresses and outerwear via UK-based couriers, sending order confirmations and shipping tracking updates, and handling returns, exchanges, or refunds in accordance with our after-sales policy.
• Your Consent: To send you personalized marketing communications, such as new arrivals of pants and dresses, exclusive discounts on shirts, in-store styling events in Norwich, and tailored product recommendations based on your browsing and purchase history. You can withdraw your consent at any time without affecting the processing of your existing orders.
• Legitimate Business Interests: To improve our product range (e.g., adjusting the fit of pants, enhancing the fabric quality of shirts, or refining outerwear designs based on customer feedback), optimize website functionality, detect and prevent fraudulent transactions, and ensure the efficient and secure operation of our business. These interests are carefully balanced to avoid overriding your privacy rights and freedoms.
• Legal Obligations: To retain transaction records for 7 years in compliance with UK tax and accounting regulations, and to respond to lawful requests from regulatory authorities (such as the Information Commissioner's Office/ICO), courts, or law enforcement agencies.

3. Third Parties With Whom We Share Data

• Payment Processors: PCI DSS-compliant payment service providers (e.g., Stripe, PayPal) that handle secure payment transactions. They receive only the minimum information needed to process payments and cannot use your data for any other purpose.
• Delivery Partners: UK-based logistics companies that require your delivery address and contact details to ship your orders. They do not store your personal data after delivery is completed and adhere to strict data protection standards.
• IT and Cybersecurity Providers: UK-hosted service providers that manage our website maintenance, customer database, and cybersecurity. They only access anonymized or encrypted data and are bound by strict confidentiality agreements.
• Legal and Regulatory Bodies: We may disclose your data if required by law, regulation, or legal process (e.g., court orders), or to protect our legitimate rights, property, or safety—as well as the rights, property, or safety of our customers or other third parties.
• Business Successors: In the event of a merger, acquisition, or sale of assets, your personal data may be transferred to the new owner or successor. The successor will be required to uphold this Privacy Policy to ensure your data remains protected.

4. How We Secure Your Personal Data

• End-to-end SSL/TLS encryption for all data transmitted between your device and our website, ensuring the security of your personal and transactional data during transmission.
• Secure, encrypted storage of data on UK-based servers, with multi-factor authentication and role-based access controls. Only authorized staff with a legitimate business need (e.g., processing orders for shirts and outerwear, assisting customers) can access personal data, and all access is logged and audited regularly.
• Proactive security management, including regular vulnerability scans, security audits, and software updates to address emerging cyber threats. We conduct annual penetration testing to verify the effectiveness of our security controls.
• Mandatory data protection training for all employees, ensuring they understand their obligations under GDPR and DPA 2018 and handle your personal information securely—including in-store data collected during dress fittings or pants size consultations.

5. How Long We Retain Your Data

• Transaction and identity data: Retained for 7 years from the date of your purchase to comply with UK tax and accounting regulations.
• Account and preference data: Retained for the duration of your account activity. If you request to delete your account, we will remove this data within 59 days (unless we are legally required to keep it).
• Marketing consent and communication data: Retained until you withdraw your consent. After withdrawal, we will delete your marketing-related information within 44 days to ensure you no longer receive promotions for our shirts, pants, dresses and outerwear.
• Website usage and technical data: Retained for 50 days before being permanently anonymized for aggregate analytics—this helps us understand customer preferences (e.g., popular outerwear styles, pants fit trends) and improve our website.

6. Your Rights Regarding Your Data

• Right to Access: You can request a free, clear copy of the personal data we hold about you, along with details of how we process it.
• Right to Rectification: You can ask us to correct any inaccurate or incomplete information (e.g., updating your delivery address or pants size preference).
• Right to Erasure (Right to be Forgotten): You may request the deletion of your data if it’s no longer needed, you withdraw consent, or our processing is unlawful (subject to legal retention requirements).
• Right to Restrict Processing: You can ask us to limit how we process your data (e.g., while we verify the accuracy of your shirt order history).
• Right to Data Portability: You have the right to receive your data in a structured, machine-readable format (e.g., a CSV file of your orders) and transfer it to another data controller.
• Right to Object: You can object to your data being used for direct marketing at any time. You may also object to processing based on our legitimate business needs, and we will stop processing if your interests outweigh ours.
• Right to Withdraw Consent: If you gave consent for marketing or other processing (e.g., personalized pants or dress recommendations), you can withdraw it anytime via the "unsubscribe" link in our emails or by contacting our support team.

7. Cookies & Tracking Technologies

• Essential Cookies: These are required for our website to work properly—they let you browse our catalog, add shirts, pants, dresses or outerwear to your cart, and complete checkout. You can’t disable these cookies, as they’re vital to our core services.
• Analytical Cookies: These collect anonymized, aggregated data on how you use our website (e.g., which outerwear styles are most viewed, how users navigate the pants category) to help us improve site performance and user experience.
• Marketing Cookies: These deliver personalized marketing (e.g., ads for new shirt collections, discounts on outerwear) based on your browsing history. We only use these cookies if you’ve given explicit consent.

8. Contact Details for Data Inquiries

• Brand Name: szxssk
• Email: szxssk@outlook.com
• Phone: +44 (0) 1603 765 429 (Mon-Fri: 9:15 AM – 5:15 PM GMT; Sat: 10:00 AM – 3:00 PM GMT)
• Address: 29 St. Giles Street, Norwich NR2 1JD, United Kingdom

9. Updates to This Privacy Policy