Wrozelongrizfroz

Privacy Policy

Last updated: 17 March 2025

1. Data controller and contact details

The data controller responsible for your personal data in connection with this website is:

Wrozelongrizfroz
Kings Court, King St N, Smithfield, Dublin 7, Ireland
Email: support@wrozelongrizfroz.world
Phone: +353 1 874 7440

If you have questions about this Privacy Policy or about how we process your personal data, you may contact us using the details above.

2. Scope and legal basis

This Privacy Policy applies to personal data we collect through the website wrozelongrizfroz.world (the "Site") and in the course of providing our products and services. We process personal data in accordance with the General Data Protection Regulation (EU) 2016/679 ("GDPR") and the Data Protection Act 2018 (Ireland), as well as other applicable Irish and EU law.

We process your data only where we have a lawful basis: (a) your consent, (b) performance of a contract with you or steps at your request before entering into a contract, (c) compliance with a legal obligation, (d) our legitimate interests (e.g. improving our services, security, defending legal claims), or (e) where necessary for the establishment, exercise or defence of legal claims.

3. Personal data we collect and purposes

We may collect and process the following categories of personal data:

  • Identity and contact data: name, email address, telephone number (if provided), and delivery/billing address when you place an order or contact us. We use this to process orders, communicate with you, and provide customer support.
  • Transaction and order data: order details, payment-related information (handled by our payment providers), and correspondence related to orders. We use this to fulfil contracts, handle returns, and maintain records for legal and accounting purposes.
  • Technical and usage data: IP address, browser type and version, device information, time zone, and how you use our Site (e.g. pages visited). We use this to operate and secure the Site, analyse use, and improve our services, where we rely on consent or legitimate interests as applicable.
  • Cookie and similar technologies: as described in our Cookie Policy. We use these where you have consented or where strictly necessary for the operation of the Site.

We do not collect more data than is necessary for the purposes described. Where we rely on consent, you may withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

4. How we obtain your data

We collect personal data (a) when you provide it to us (e.g. via order forms, contact forms, or email), (b) automatically when you use the Site (e.g. technical and usage data), and (c) from third parties such as payment or delivery providers where necessary to perform our contract with you.

5. Retention periods

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements.

  • Order and customer data: for the duration of the contractual relationship and thereafter for a period of up to 7 years for legal, tax, and accounting purposes, unless a longer retention is required by law.
  • Contact and enquiry data: for the time needed to respond and handle follow-up, and then for a limited period (e.g. up to 2 years) for record-keeping and potential disputes, unless you have consented to longer marketing retention.
  • Technical and access logs: typically for a period of up to 12 months for security and analytics, unless a shorter or longer period is required for legal or security reasons.
  • Marketing and consent-based processing: until you withdraw consent or object, or for a defined period in line with our consent records.

After the retention period, we securely delete or anonymise the data so that it no longer identifies you.

6. Your rights under GDPR

Under the GDPR and Irish law, you have the following rights in relation to your personal data:

  • Right of access: you may request a copy of the personal data we hold about you.
  • Right to rectification: you may request correction of inaccurate or incomplete personal data.
  • Right to erasure: you may request deletion of your personal data in certain circumstances (e.g. where it is no longer necessary, where you withdraw consent, or where you object and we have no overriding legitimate grounds).
  • Right to restriction of processing: you may request that we restrict processing in certain situations (e.g. while we verify accuracy or where you have objected).
  • Right to data portability: where processing is based on consent or contract and is carried out by automated means, you may request to receive your data in a structured, commonly used, machine-readable format or to have it transmitted to another controller where technically feasible.
  • Right to object: you may object to processing based on legitimate interests, including profiling. You may also object at any time to processing for direct marketing.
  • Right to withdraw consent: where processing is based on consent, you may withdraw consent at any time.
  • Right to lodge a complaint: you have the right to lodge a complaint with a supervisory authority. In Ireland, this is the Data Protection Commission (DPC): www.dataprotection.ie.

To exercise any of these rights, please contact us using the contact details in section 1. We will respond within one month, subject to any extension where permitted by law. We may need to verify your identity before processing your request.

7. Sharing and disclosure of personal data

We may share your personal data with:

  • Service providers: payment processors, delivery and logistics partners, IT and hosting providers, and professional advisers, who act on our instructions and are bound by data protection obligations.
  • Legal and regulatory bodies: where required by law, court order, or to protect our rights, property, or safety, or that of others.

We do not sell your personal data. We require processors to implement appropriate technical and organisational measures and only process data in accordance with our instructions and applicable law. Where we transfer data outside the European Economic Area (EEA), we ensure appropriate safeguards (e.g. adequacy decisions, standard contractual clauses) are in place.

8. Security measures

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction, including:

  • Use of HTTPS and secure communication channels for data in transit.
  • Access controls and authentication so that only authorised personnel can access personal data.
  • Regular review of our security practices and, where applicable, reliance on certified or audited service providers.
  • Procedures to handle suspected data breaches and, where required by law, notification to the supervisory authority and affected individuals.

While we take these precautions, no method of transmission or storage over the internet is completely secure; we cannot guarantee absolute security.

9. Children

Our Site and services are not directed at individuals under 16. We do not knowingly collect personal data from children under 16. If you believe we have collected data from a child under 16, please contact us and we will take steps to delete such information.

10. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. The "Last updated" date at the top indicates when it was last revised. We encourage you to review this page periodically. Where changes are material, we may notify you by email or by a notice on the Site.

11. Additional information

For information about cookies and similar technologies, please see our Cookie Policy. For the terms governing use of the Site and our products, please see our Terms of Service.