Kingsley Heal respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, share, and protect your information, as well as the related rights you are entitled to.
1. Who Is Responsible for Your Data? Kingsley Heal is the data controller for all personal data you provide to us. You may contact us through email :info@kingsleyheal.com
2. What Data Do We Collect? We may collect and process the following two types of information, depending on the context of your interactions with us, your privacy settings, and the products/features you use: 2.1. Personally Identifiable Information “Personally Identifiable Information” refers to information that can directly or indirectly identify you personally, including but not limited to: Basic identity information: Name, date of birth, gender, company name, etc.; Contact information: Address, telephone number, email address, etc.; Transaction-related information: Order details, payment information (e.g., credit card details, billing information), etc.; Interaction information: Inquiry content you submit via the “Contact Us” form, communication history with our team, etc.; Event participation information: If you participate in giveaways, sweepstakes, or similar activities, we may collect your name, date of birth, email address, etc. You have the right to choose not to provide the above information, but this may prevent you from completing orders, participating in activities, or accessing relevant services. 2.2. Non-Personally Identifiable Information “Non-Personally Identifiable Information” refers to technical or statistical information that cannot identify individuals, including but not limited to: Technical information: SDK/API/JS code version, browser type and version, Internet Service Provider (ISP), IP address, device model and system version, application ID and version, application distribution channel, access timestamp, etc.; Behavioral information: Website visit path, page browsing history, stay duration, click actions, etc.; Statistical information: Access data collected via Cookies and Web Beacons (e.g., number of website visitors, ad open rate); Demographic information: Age, zip code, interests, etc., that you voluntarily provide (this information is considered non-personally identifiable if not linked to personal identity). We collect the above non-personally identifiable information from all website visitors. If you do not want us to access such information, please refrain from visiting our website.
3. Why Do We Collect Your Data?
We process your data for the following legitimate purposes, with legal bases including “performance of contractual obligations,” “compliance with legal requirements,” “pursuit of legitimate interests,” and “based on your consent”: Customer Service & Transaction Fulfillment: Respond to your inquiries, complete your orders, and provide after-sales service (based on contractual obligations); Product & Service Optimization: Operate, evaluate, and improve our products, services, and website functions (based on legitimate interests); Marketing & Promotion: Send you product updates, offers, newsletters, etc. (based on legitimate interests; you may unsubscribe at any time); Security & Management: Prevent fraud, enhance website security, count website traffic, and manage website operations (based on legitimate interests and legal requirements); Personalized Services: Provide customized content (e.g., recommending relevant products) based on your preferences, and allow you to access restricted sections of the website (based on legitimate interests or your consent); Compliance & Risk Control: Comply with legal and regulatory requirements, handle security or technical issues, and protect the legitimate rights and interests of our company and others (based on legal requirements).
4. Your Rights Under the General Data Protection Regulation (GDPR) and relevant laws and regulations, you are entitled to the following rights: Right of Access: Request access to the personal data we hold about you; Right of Correction: Request correction of inaccurate or outdated personal data; Right to Erasure: Request deletion of your personal data (“Right to be Forgotten”); Right to Object: Object to the processing of your personal data for marketing purposes; Right to Data Portability: Request transfer of your personal data to another service provider; Right to Withdraw Consent: If you provided data based on consent, you may withdraw such consent at any time (this does not affect the legality of data processing completed before withdrawal). To exercise any of the above rights, please contact us via the methods specified in Section 1 of this Policy.
5. How Do We Protect Your Data? We adopt industry-standard security measures to protect your information, including but not limited to: Technical protection: Use data encryption, firewalls, and secure server software to store and transmit personal data; Management standards: Establish data access control mechanisms, require employees to comply with confidentiality agreements, and conduct regular data security training; Risk management: Regularly detect system security vulnerabilities and handle security incidents. Please note that the Internet and electronic storage cannot guarantee 100% security, and we cannot completely rule out the risk of unauthorized access or disclosure.
6. Third-Party Sharing & Disclosure We strictly restrict the sharing of personal data with third parties and only disclose information in the following necessary circumstances: Cooperating Service Providers: Share data with trusted third parties only to complete orders or provide services (e.g., payment processors, logistics companies, marketing tool providers). These third parties may only access data within the scope of their duties, are bound by confidentiality agreements, and may not use the data for other purposes; Affiliated Companies: Share data with our affiliated companies to provide unified services and optimize user experience (affiliated companies must comply with this Privacy Policy); Legal Compliance: Disclose necessary personal data in accordance with court orders, subpoenas, national security or law enforcement requirements; Corporate Transactions: In the event of mergers, acquisitions, asset sales, bankruptcy reorganizations, or similar corporate transactions, data may be transferred as part of the transaction assets (the transferred must commit to complying with this Privacy Policy); Risk Prevention: Obtain or share necessary data with third-party institutions to verify the authenticity of information and prevent fraud. We will never sell your personal data to unrelated third parties.
7. Third-Party Websites & Advertisers Third-Party Websites: Our website may contain links to third-party websites. This Privacy Policy does not apply to these websites. We are not responsible for the privacy practices or content of third-party websites; we recommend that you review their privacy policies before visiting; Third-Party Advertisers: We may engage third-party advertisers and ad networks to serve advertisements on our website. These advertisers may collect your access information (e.g., ad browsing history) via Cookies and Web Beacons to optimize ad delivery. Their data processing practices are not governed by this Policy.
8. Visitors Under the Age of 18 We do not knowingly collect, store, or use information from visitors/users under the age of 18. Our website displays clear notices advising visitors/users under the age of 18 not to access or use the website. If we discover that we have inadvertently collected information from users under the age of 18, we will immediately delete or destroy the relevant data.
9. Data Retention We retain your personal data only for the period necessary to achieve the purposes stated in this Policy or as required by laws and regulations: Transaction-related data: Retained until the completion of the order, expiration of after-sales service, and resolution of any legal disputes; Marketing-related data: Retained until you withdraw your consent or request deletion; Compliance-related data: Retained until the expiration of the period required by laws and regulations. After the data retention period expires, we will process your information through anonymization, deletion, or other appropriate methods.
10. Changes to This Privacy Policy We reserve the right to modify or revise this Privacy Policy at any time. If changes are made, we will: Update the “Last Updated Date” at the top of this Policy; (Optional) Provide you with additional notice via email, website announcements, or other means. We recommend that you review this Policy regularly to stay informed about our latest information processing practices.
11. Contact Us If you have any questions, comments, or concerns about this Privacy Policy or privacy practices, please contact us through Contact us page. All information you provide in any written communication will also be covered by this policy.
