Privacy Policy
This Privacy Policy explains how Slyxaronnloxie (“we,” “us,” or “our”), operating the website at slyxaronnloxie.world (the “Site”), collects, uses, discloses, and protects personal information when you browse the Site, submit forms, place product-related requests (including for Stabilix), or communicate with us. We describe processing activities in a transparent manner and provide information about your rights under applicable laws, including where relevant the EU General Data Protection Regulation (“GDPR”) and U.S. state privacy laws.
1. Data controller and contact details
For personal data that we determine the purposes and means of processing, the controller is:
Slyxaronnloxie
352 7th Ave #1206
New York, NY 10001
United States
Email: info@slyxaronnloxie.world
Phone: +1 (212) 284-0060
If you are located in the European Economic Area (“EEA”), the United Kingdom (“UK”), or Switzerland, you may contact us using the details above to exercise GDPR-related rights described in Section 8. We may request information to verify your identity before fulfilling certain requests.
2. Scope and relationship to other documents
This Policy applies to personal information processed through the Site and related communications, including email and telephone contacts initiated through information published on the Site. It should be read together with our Cookie Policy, Terms of Service, and Return Policy, which may contain additional terms relevant to specific transactions.
If you provide information about another person (for example, a gift recipient), you represent that you have authority to share that information and that the person has been informed of this Policy where required.
3. Categories of personal information we collect
Depending on how you interact with us, we may collect the following categories of information:
- Identifiers, such as name, email address, telephone number, postal address, and online identifiers (for example, IP address or device identifiers when technical logs are generated).
- Commercial information, such as products you inquire about, order-related messages, and approximate order values when you submit a request through our forms.
- Communications content, including free-text messages you submit in contact or order forms.
- Internet or network activity, such as browsing interactions on the Site when analytics tools are enabled based on your cookie preferences.
- Geolocation data at a coarse level derived from IP address for security and analytics where permitted.
- Preference data, such as cookie consent selections stored in local storage on your device.
We do not intentionally collect sensitive categories of personal information as defined under certain U.S. state laws (for example, precise health information) through the Site. If such information is inadvertently included in a free-text field, we will use reasonable measures to limit processing to what is necessary to respond to your inquiry or comply with law.
4. Sources of personal information
We collect personal information directly from you when you type it into forms, email us, or call us. We may also receive technical data automatically through cookies and similar technologies as described in our Cookie Policy. In limited cases, we may receive information from service providers who assist with hosting, email delivery, fraud screening, or analytics, solely to the extent needed to perform their services for us.
5. Purposes and legal bases for processing (GDPR)
Where GDPR applies, we rely on one or more of the following legal bases:
| Purpose | Legal basis |
|---|---|
| Operating the Site, delivering pages, maintaining security, and preventing abuse | Legitimate interests (Article 6(1)(f) GDPR) and, where strictly necessary cookies are used, performance of measures requested by you (Article 6(1)(b)) |
| Processing and fulfilling product requests, responding to inquiries, and providing customer support | Performance of a contract or pre-contractual steps (Article 6(1)(b) GDPR) |
| Sending transactional communications about your request or account-related notices | Performance of a contract and legitimate interests in providing accurate information (Article 6(1)(b) and (f)) |
| Compliance with legal obligations, including tax, accounting, and regulatory requirements | Legal obligation (Article 6(1)(c) GDPR) |
| Optional analytics and marketing cookies and related processing | Consent (Article 6(1)(a) GDPR), where required |
| Improving the Site, measuring performance, and understanding aggregate usage trends | Legitimate interests, where not overridden by your rights, or consent where mandated by law |
Where we rely on legitimate interests, we balance our interests against your rights and offer opt-out mechanisms where appropriate, particularly for non-essential cookies and direct marketing where such rights arise.
6. U.S. privacy disclosures
Residents of certain U.S. states may have rights under applicable state privacy laws. Depending on your state, these may include rights to access, delete, correct, or opt out of certain processing activities such as targeted advertising or sales of personal information, subject to verification and exceptions. To exercise rights, contact us using the details in Section 1. We do not discriminate against individuals for exercising privacy rights granted by law.
We do not “sell” personal information as that term is commonly defined in state privacy laws, and we do not knowingly sell personal information of minors under sixteen years of age.
7. How we use personal information
We use personal information to:
- Present the Site and enable navigation between pages and sections.
- Process and respond to order-related requests and contact form submissions.
- Communicate with you about your inquiries, shipping, billing (if applicable), and policy updates that materially affect you.
- Maintain records required for accounting, dispute resolution, and legal compliance.
- Monitor and improve Site reliability, troubleshoot technical issues, and detect fraudulent or unauthorized activity.
- Honor cookie preferences and similar choices you make through our consent tools.
We do not use your personal information to make solely automated decisions that produce legal or similarly significant effects about you without human review where such review is required by law.
8. GDPR rights for individuals in the EEA, UK, and Switzerland
Subject to conditions and exceptions in GDPR and local implementing laws, you may have the right to:
- Access personal data we hold about you.
- Rectify inaccurate data or complete incomplete data.
- Erase data in certain circumstances (“right to be forgotten”).
- Restrict processing in certain situations.
- Data portability for data you provided where processing is based on consent or contract and carried out by automated means.
- Object to processing based on legitimate interests, including profiling in some cases.
- Withdraw consent at any time where processing is consent-based, without affecting the lawfulness of processing before withdrawal.
- Lodge a complaint with a supervisory authority in your country of residence.
To exercise these rights, email or write to us using the contact details above. We will respond within one month in most cases, or inform you if an extension is necessary under GDPR.
9. International transfers
We are located in the United States. If you access the Site from the EEA, UK, Switzerland, or other regions, your information may be transferred to and processed in the United States or other countries where our service providers operate. Where GDPR requires safeguards, we use appropriate mechanisms such as Standard Contractual Clauses approved by the European Commission, supplemented by technical and organizational measures, or we rely on adequacy decisions where applicable.
10. Disclosure to third parties
We disclose personal information only as described in this Policy:
- Service providers who host the Site, transmit email, provide analytics (when consented), process payments if enabled on our checkout path, or perform similar functions under written agreements that limit use of data to our instructions.
- Legal and safety recipients when we believe disclosure is necessary to comply with law, enforce our terms, protect rights and safety, or investigate fraud.
- Business transfers in connection with a merger, acquisition, or sale of assets, subject to appropriate confidentiality protections.
We do not authorize service providers to sell your personal information or use it for their own independent marketing unrelated to our services without consent where required.
11. Retention
We retain personal information only as long as necessary for the purposes described in this Policy, including satisfying legal, accounting, or reporting requirements. Typical retention periods include:
- Order and contact requests: up to seven years from the date of the last relevant transaction or communication where retention is justified for tax, accounting, or dispute resolution, unless a shorter period applies under law.
- Marketing and analytics records tied to cookies: according to the lifespan of each cookie category and your preferences, often not exceeding twenty-four months for analytics aggregates.
- Security logs: for a limited period necessary to detect and investigate incidents, generally not exceeding twelve months unless longer retention is required for an active investigation.
When retention periods expire, we delete or anonymize information where feasible.
12. Security measures
We implement technical and organizational measures appropriate to the risks involved, including:
- Transport encryption for Site traffic where HTTPS/TLS is correctly configured on the hosting environment.
- Access controls limiting staff and vendor access to personal data on a need-to-know basis.
- Processes to review vendor security practices for material processors.
- Procedures to respond to suspected data incidents under applicable breach-notification laws.
No method of transmission or storage is completely secure; we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of credentials if we introduce password-protected areas in the future.
13. Children’s privacy
The Site is not directed to children under sixteen years of age, and we do not knowingly collect personal information from children. If you believe we have collected information from a child, contact us and we will take steps to delete it promptly subject to applicable law.
14. Changes to this Policy
We may update this Privacy Policy to reflect operational, legal, or regulatory changes. We will revise the “Last updated” date at the top and, where changes are material, provide additional notice as required by law, such as a banner on the Site or email notice if we have your contact details.
15. California residents (CPRA summary)
If you are a California resident, you may have rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (“CPRA”), including rights to know, delete, correct, and opt out of certain processing. We describe categories of personal information in Sections 3 and 7. We do not sell personal information as “sale” is defined under CPRA, and we do not share personal information for cross-context behavioral advertising in a manner that requires opt-out rights beyond what we already provide through cookie controls. You may designate an authorized agent to submit requests where permitted by law; we may require signed permission and identity verification. To submit a request, use the contact details in Section 17.
16. Processor relationships and records
We maintain internal documentation describing categories of processing activities, purposes, categories of data subjects, and categories of recipients, as appropriate to our role as a controller under GDPR. Subprocessors who handle personal data on our behalf are bound by written agreements requiring appropriate confidentiality, security measures, and assistance with data subject requests. A current list of subprocessor categories includes hosting providers, email delivery services, payment processors where used, and analytics providers when you consent. We will provide additional transparency about specific vendors where required by law upon request.
17. Contact
For privacy questions or requests, contact Slyxaronnloxie at the address in Section 1 or email info@slyxaronnloxie.world.