Privacy Policy

Last updated: March 11, 2025

1. Controller and contact details

The data controller responsible for the processing of your personal data in connection with this website is:

Styxaronhroz
7107 Industrial Rd
Florence, KY 41042
United States

Email: feedback@styxaronhroz.world
Phone: +1 800 748 7001

2. Scope and purpose of this policy

This Privacy Policy describes how we collect, use, store, and protect your personal data when you use our website https://styxaronhroz.world (the “Website”) and related services. It applies to visitors, customers, and anyone who submits information through our forms or otherwise interacts with us.

We process personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) where it applies to our processing of data relating to individuals in the European Economic Area (EEA), and with United States federal and state privacy laws where applicable.

3. Legal basis for processing (GDPR)

Where the GDPR applies, we process your personal data on the following legal bases:

• Contract: Processing necessary for the performance of a contract with you or to take steps at your request before entering into a contract (e.g. order processing, customer support).
• Legitimate interests: Processing necessary for our legitimate interests (e.g. improving our services, security, fraud prevention), where not overridden by your rights.
• Consent: Where you have given clear consent for specific processing (e.g. marketing, non-essential cookies).
• Legal obligation: Processing necessary to comply with a legal obligation (e.g. tax, accounting, responding to lawful requests).

4. Types of data we collect

4.1 Data you provide

• Name, email address, telephone number (if provided), and message content when you use our order form, contact form, or otherwise communicate with us.
• Billing and shipping address and payment-related information where required for orders (handled in accordance with our payment processors’ policies).
• Preferences and consents (e.g. cookie preferences, marketing opt-in).

4.2 Data collected automatically

• Technical data: IP address, browser type and version, device type, operating system, referring URL, pages visited, date and time of access.
• Cookie and similar technologies data as described in our Cookie Policy.

5. Purposes of processing

We use your data for the following purposes:

• To process and fulfil orders and respond to your enquiries.
• To communicate with you about your orders, account, or requests.
• To improve our website, services, and user experience.
• To ensure security, prevent fraud, and comply with legal obligations.
• To send marketing communications only where you have given consent or where permitted by law.
• To analyse usage (e.g. analytics) where based on consent or legitimate interest and as set out in our Cookie Policy.

6. Retention periods

We retain your data only for as long as necessary for the purposes set out in this policy or as required by law:

• Order and customer correspondence: generally up to 7 years for accounting and legal compliance, then anonymised or deleted where possible.
• Contact form and general enquiries: up to 3 years from last contact unless a longer period is required for legal or claims purposes.
• Marketing and consent records: until you withdraw consent or object, then deleted within a reasonable period.
• Technical and access logs: typically up to 12 months unless a shorter or longer period is required for security or legal reasons.
• Cookie data: as specified in our Cookie Policy.

After the retention period, data is securely deleted or anonymised so that it no longer identifies you.

7. Recipients and international transfers

We may share your data with:

• Service providers (hosting, email delivery, payment processing, analytics) who process data on our instructions and under appropriate agreements.
• Legal and regulatory authorities when required by law or to protect our rights.

Some recipients may be located outside the EEA or your country of residence. Where we transfer personal data from the EEA to a country not recognised as providing an adequate level of data protection, we implement appropriate safeguards (e.g. standard contractual clauses approved by the European Commission or equivalent) as required by applicable law.

8. Security measures

We implement technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction, including:

• Use of HTTPS (TLS/SSL) for all data transmitted between your browser and our servers.
• Access controls and authentication so that only authorised personnel can access personal data.
• Regular review of our security practices and, where applicable, reliance on certified or audited service providers.
• Procedures for handling incidents and, where required by law, notifying you or supervisory authorities of a personal data breach.

While we strive to protect your data, no method of transmission or storage over the internet is completely secure; we encourage you to use strong passwords and secure devices when interacting with us.

9. Your rights (GDPR and similar laws)

Depending on your location, you may have the following rights in relation to your personal data:

• Access: To obtain confirmation as to whether we process your data and a copy of your data.
• Rectification: To have inaccurate or incomplete data corrected.
• Erasure: To request deletion of your data in certain circumstances (e.g. where no longer necessary or where you withdraw consent).
• Restriction: To request that we limit processing in certain situations.
• Data portability: To receive your data in a structured, commonly used format and to transmit it to another controller where technically feasible.
• Objection: To object to processing based on legitimate interests or to processing for direct marketing.
• Withdraw consent: Where processing is based on consent, to withdraw consent at any time without affecting the lawfulness of processing before withdrawal.
• Complaint: To lodge a complaint with a supervisory authority (e.g. in the EEA, the data protection authority of your country).

To exercise any of these rights, please contact us using the details in section 1. We will respond within the time frame required by applicable law (e.g. one month under GDPR, subject to extensions where permitted).

In the United States, you may also have rights under state laws (e.g. California, Virginia, Colorado); we will honour those rights where applicable.

10. Children

Our website and services are not directed at individuals under 16 (or higher age where required by local law). We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us and we will delete it promptly.

11. Changes to this policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top will be revised when changes are made. We encourage you to review this page periodically. Where required by law, we will notify you of material changes or seek your consent.

12. Contact

For any questions about this Privacy Policy or our data practices, please contact us at:

Styxaronhroz
7107 Industrial Rd, Florence, KY 41042, United States
Email: feedback@styxaronhroz.world
Phone: +1 800 748 7001