Privacy Policy

This Privacy Policy ("Policy") describes in detail how Craxylonshuz ("we," "us," or "our") collects, uses, stores, shares, and protects your personal information when you access or use our website at craxylonshuz.world (the "Site") and when you purchase, download, or use our wellness guides and resources related to stress reduction and endocrine health (the "Products"). We are committed to protecting your privacy in accordance with the Privacy Act 2020 (New Zealand), the General Data Protection Regulation (GDPR) where applicable, and other relevant data protection standards. Please read this Policy carefully before using the Site or our Products.

Definitions

In this Policy, "personal information" (or "personal data" where GDPR applies) means any information relating to an identified or identifiable natural person; an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person. "Processing" means any operation or set of operations performed on personal data (e.g. collection, recording, organisation, structuring, storage, adaptation, retrieval, consultation, use, disclosure, restriction, erasure, or destruction). "Data subject" means the identified or identifiable natural person to whom the personal data relates.

Data Controller

The data controller responsible for your personal information in connection with the Site and our Products is Craxylonshuz. Our contact details are set out in the "Contact Us" section at the end of this Policy. If you have any questions about how we process your data or wish to exercise your rights, you may contact us using those details.

Information We Collect

We may collect the following categories of personal information in connection with the Site and our Products:

• Contact and identity information: Your full name, email address, postal address, and telephone number when you submit our contact form, request information about our stress and hormone guides, mindfulness resources, or daily balance materials, or when you place an order for any of our Products (including the Stress and Hormones Guide, the Mindfulness Starter Pack, and the Daily Balance Workbook).
• Communication and correspondence: The content of messages, enquiries, and feedback you send us when contacting us about our Products or services, including any questions about stress, hormones, mindfulness, or lifestyle recommendations. We may also retain records of our responses to you for quality and legal purposes.
• Transaction and order information: Details related to your purchase of our wellness guides, including product type, quantity, price, payment method (excluding full card numbers where we do not store them), transaction date, order status, and delivery or download confirmation. We may also collect billing and shipping addresses where applicable for physical Products.
• Technical and usage data: Your IP address, browser type and version, operating system, device type, referring URL, pages visited on the Site, time and date of access, time spent on pages, and click behaviour when you access our pages about stress reduction, endocrine wellness, and related content. This information may be collected automatically through cookies and similar technologies as described in our Cookies Policy.
• Cookie and similar technologies data: Information stored or read via cookies, local storage, session storage, and similar technologies, including your consent preferences and session identifiers, as further described in our Cookies Policy.
• Preferences and consent records: Your choices regarding cookies, marketing communications (if any), and consent to the processing of personal data as indicated when you complete our contact form or interact with our cookie notice.

We do not collect sensitive personal data (e.g. health data, racial or ethnic origin, political opinions, religious beliefs) unless you voluntarily provide it in a message and we need it to respond to your enquiry. Where you provide such information, we will use it only for the purpose for which it was given and in accordance with this Policy.

Sources of Information

We collect personal information directly from you when you use the Site, complete forms, place orders, or communicate with us. We may also receive limited technical data from your browser or device when you visit the Site. We do not purchase or obtain personal information from third-party list brokers or data brokers for marketing purposes.

How We Use Your Information

We use the personal information we collect for the following purposes:

• To respond to your enquiries and correspondence about our Products and services, including questions about our guides on stress, hormones, mindfulness, and daily balance, and to provide customer support before, during, and after a purchase.
• To process and fulfil orders for our wellness guides and related resources, to communicate with you about order confirmation, status, delivery, or download links, and to handle any follow-up requests related to your order.
• To send you information you have explicitly requested, such as updates or supplementary materials related to stress and endocrine health education, where you have opted in to receive such communications.
• To improve the Site and our Products by analysing how visitors use our content, which pages and resources are most relevant, and how we can better structure our offerings to support your interests in stress reduction and wellness.
• To detect, prevent, and address technical issues, fraud, abuse, or security incidents, and to protect the integrity and security of the Site and our systems.
• To comply with legal and regulatory obligations, including tax, consumer law, and data protection requirements, and to establish, exercise, or defend legal claims.
• To manage and honour your preferences, including your consent to the processing of personal data, cookie preferences, and communication preferences, and to maintain records of consent where required by law.

We will not use your personal information for purposes incompatible with those described above unless we have obtained your consent or are required or permitted to do so by law.

Legal Basis for Processing

We process your personal data on the following legal bases, as applicable:

• Consent: Where you have given clear consent for a specific purpose (e.g. when you tick the consent box on our contact form, accept our cookie notice, or opt in to receive information about our Products). You may withdraw consent at any time by contacting us or by adjusting your cookie settings; withdrawal does not affect the lawfulness of processing based on consent before its withdrawal.
• Contract: Where processing is necessary for the performance of a contract to which you are party (e.g. processing your order and delivering our wellness guides) or in order to take steps at your request prior to entering into a contract.
• Legitimate interests: Where processing is necessary for our legitimate interests (or those of a third party), such as operating and improving the Site, providing and improving our Products, communicating with you about your enquiries and orders, and ensuring security, provided your interests and fundamental rights do not override those interests. You have the right to object to processing based on legitimate interests where applicable.
• Legal obligation: Where processing is necessary for compliance with a legal obligation to which we are subject (e.g. retention of transaction data for tax or consumer law purposes).

Sharing and Disclosure

We may share your personal information with the following categories of recipients, in each case only to the extent necessary for the stated purpose and subject to appropriate safeguards:

• Service providers and processors: Third parties who assist us in operating the Site, processing payments, delivering our Products (including digital delivery or physical shipment), sending transactional or service-related emails, hosting our servers, or providing analytics or technical support. Such providers act on our instructions and are contractually bound to protect your data and use it only for the purposes we specify. We select service providers that meet applicable data protection and security standards.
• Professional advisers: Lawyers, accountants, auditors, or other professional advisers when necessary for compliance, legal advice, dispute resolution, or business operations, and only where they are bound by confidentiality obligations.
• Law enforcement and regulatory bodies: Where we are required or permitted by law to disclose information (e.g. in response to a court order, subpoena, or request from a competent authority), or where disclosure is necessary to protect our rights, your safety, or the safety of others, or to detect or prevent fraud or other illegal activity.
• Potential acquirers or successors: In the event of a merger, acquisition, reorganisation, or sale of assets, we may share your information with the relevant third party, subject to the same privacy commitments where possible.

We do not sell, rent, or trade your personal information to third parties. We do not share your data with third parties for their own marketing or advertising purposes.

Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected and to comply with legal, regulatory, tax, or accounting requirements. Our retention practices include, but are not limited to, the following:

• Contact and enquiry data: Retained for a period that allows us to respond to follow-up questions and to improve our services, typically up to three years from the last meaningful contact, unless a longer period is required for legal or dispute resolution purposes.
• Order and transaction data: Retained in accordance with New Zealand tax and commercial law requirements (typically at least seven years for tax-related records), and for the duration of any warranty or guarantee period applicable to the Product.
• Technical and usage data: Retained for a period that allows us to analyse trends and improve the Site, typically up to two years in aggregated or anonymised form where possible; raw logs may be retained for a shorter period for security and troubleshooting.
• Cookie and consent records: Retained for the duration of the cookie or consent session, or as required to demonstrate compliance with consent obligations (e.g. up to three years where required by law).

After the retention period has expired, we will securely delete or anonymise your personal information so that it can no longer be associated with you, except where we are required or permitted to retain it by law. You may request erasure of your data earlier where applicable law permits; we will comply unless we have a lawful reason to retain it.

Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, loss, or destruction. These measures include, but are not limited to: secure hosting environments with restricted access; encryption of data in transit (e.g. TLS/HTTPS) and, where appropriate, at rest; access controls and authentication; regular review of our security practices and those of our service providers; and training of personnel who have access to personal data. We require our service providers to implement comparable safeguards. Despite our efforts, no method of transmission over the internet or electronic storage is completely secure; we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of any account credentials and for any activity that occurs under your account. If you suspect any unauthorised use of your information or a security incident, please contact us immediately.

Your Rights

Depending on your location and applicable law, you may have the following rights in relation to your personal data:

• Right of access: You may request a copy of the personal data we hold about you and information about how we process it. We will respond within the timeframe required by applicable law (e.g. one month under GDPR) and may ask you to verify your identity.
• Right to rectification: You may request that we correct any inaccurate or incomplete personal data we hold about you.
• Right to erasure: You may request that we delete your personal data in certain circumstances (e.g. where it is no longer necessary, where you withdraw consent, or where you object and there are no overriding legitimate grounds). This right is not absolute; we may be required or permitted to retain data for legal or other legitimate reasons.
• Right to restrict processing: You may request that we restrict the processing of your data in certain circumstances (e.g. while we verify the accuracy of data or where you have objected to processing and we are considering your objection).
• Right to data portability: Where processing is based on consent or contract and is carried out by automated means, you may have the right to receive your data in a structured, commonly used, machine-readable format and to transmit it to another controller where technically feasible.
• Right to object: You may object to processing based on legitimate interests, including profiling. You may also object at any time to processing for direct marketing purposes. We will cease such processing unless we have compelling legitimate grounds that override your interests.
• Right to withdraw consent: Where processing is based on consent, you may withdraw consent at any time. Withdrawal does not affect the lawfulness of processing before withdrawal.
• Right to lodge a complaint: You have the right to lodge a complaint with a supervisory authority, in particular in the EU/EEA member state of your residence, place of work, or place of the alleged infringement, or with the Office of the Privacy Commissioner in New Zealand (www.privacy.org.nz). We encourage you to contact us first so that we can try to resolve your concern.

To exercise any of these rights, please contact us using the details in the "Contact Us" section. We will respond within a reasonable time and in accordance with applicable law. We may need to verify your identity before processing your request. There is no charge for exercising your rights unless the request is manifestly unfounded or excessive, in which case we may charge a reasonable fee or refuse the request in accordance with law.

International Transfers

Your personal information may be processed in New Zealand and in other countries where our service providers or we have operations. If we transfer data to a country outside New Zealand or outside the European Economic Area (where GDPR applies), we will ensure that appropriate safeguards are in place, such as: (a) an adequacy decision by the European Commission or the relevant authority recognising that the country provides an adequate level of data protection; (b) standard contractual clauses approved by the European Commission or the relevant authority; (c) binding corporate rules where applicable; or (d) another mechanism permitted under applicable law. You may request a copy of the safeguards we use for such transfers by contacting us.

Children

Our Site and Products are not directed at individuals under the age of 16 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If you are a parent or guardian and believe that your child has provided us with personal information without your consent, please contact us and we will take steps to delete such information from our systems as soon as reasonably practicable.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, the Site, our Products, technology, or the law. The updated version will be posted on this page with a revised "last updated" or effective date. Where changes are material, we may notify you by email (if we have your email address) or by a prominent notice on the Site. We encourage you to review this Policy periodically. Your continued use of the Site or our Products after the effective date of the updated Policy constitutes acceptance of the updated Policy where permitted by law. If you do not agree to the updated Policy, you should discontinue use of the Site and our Products and may contact us to request deletion of your data where applicable.

Contact Us

If you have any questions about this Privacy Policy or our handling of your personal information in relation to our wellness guides and services, or if you wish to exercise your rights, you may contact us at the address, phone number, or email set out on our Contact page. We will respond to your request or enquiry within a reasonable time and in any event within the timeframe required by applicable law.