Privacy policy

1. Who We Are

Business Name: Vaxlux
Address: 65 London Road, Stretton-on-Dunsmore, Rugby CV23 9JB, United Kingdom
Email: contact@vaxlux.com
Phone: +44 7172 917377
Website: https://vaxlux.com/
Hosting Provider: Shopify.com

For data protection matters, you can contact us via email at contact@vaxlux.com.

2. Information We Collect

We collect personal and non-personal information to process orders, improve our services, and ensure a secure online shopping experience.

2.1 Information You Provide

  • Contact details: name, phone number, email address, shipping and billing address.
  • Order information: products ordered, transaction details.
  • Payment information: processed securely via Discover, Diners Club, Apple Pay, Google Pay, American Express, Mastercard, Visa, Afterpay / Clearpay; we do not store credit or debit card numbers.
  • Support messages: via email or phone.

2.2 Automatically Collected Information

When you browse the Site, we automatically collect:

  • IP address
  • Browser type and version
  • Device type
  • Pages visited and time on site
  • Cookies and tracking technologies (see Section 7)

2.3 Shopify Data

Our store is hosted on Shopify, which may collect and process data necessary for Site functionality, analytics, and security.

3. How We Use Your Information

We use your personal information for the following purposes:

  • To process and fulfil your orders
  • To provide customer support
  • To manage shipping, delivery, and returns
  • To send order confirmations and status updates
  • To detect and prevent fraud or security breaches
  • To analyse website performance and improve user experience
  • To comply with UK laws, accounting requirements, and Shopify policies

We do not sell your personal data.

4. Sharing Your Information

We share your information only with trusted partners when necessary:

4.1 Service Providers

  • Shopify (website hosting, security, online store management)
  • Shipping and courier services (for order delivery within the United Kingdom)
  • Discover, Diners Club, Apple Pay, Google Pay, American Express, Mastercard, Visa, Afterpay / Clearpay (for secure payments)
  • Analytics or anti-fraud tools (if used)

These partners operate under strict confidentiality and data protection agreements.

4.2 Legal Requirements

We may disclose your data if required by:

  • Court orders
  • Government authorities
  • Legal compliance obligations

5. International Data Transfers

Shopify and Discover, Diners Club, Apple Pay, Google Pay, American Express, Mastercard, Visa, Afterpay / Clearpay may process data outside the UK.
They both apply adequate safeguards, including:

  • Standard Contractual Clauses
  • UK Data Transfer Addendum
  • Certified security practices

By using our Site, you acknowledge these transfers.

6. Data Retention

We retain your information only as long as necessary to provide our services and comply with UK legal obligations.

Typical retention periods:

  • Order and transaction data: 6 years (UK tax law)
  • Customer support messages: up to 24 months
  • Cookie data: per Section 7 below

You may request data deletion at any time (see Section 9).

7. Cookies & Tracking Technologies

We use cookies to:

  • Improve website functionality
  • Remember your preferences
  • Analyze site traffic and performance
  • Enable secure checkout via Shopify and Discover, Diners Club, Apple Pay, Google Pay, American Express, Mastercard, Visa, Afterpay / Clearpay

You can manage or disable cookies through your browser settings. Some features may not function properly if cookies are disabled.

We will provide a full Cookie Policy if you ask.

8. Your Rights Under UK GDPR

You have the following rights:

  • Right to access – request a copy of your personal data
  • Right to rectification – correct inaccurate information
  • Right to erasure – request deletion where legally permitted
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent at any time
  • Right to lodge a complaint with the ICO (Information Commissioner’s Office)

To exercise your rights, email us at contact@vaxlux.com.

9. Data Security

We implement technical and organisational measures to protect your data, including:

  • Shopify’s PCI-compliant infrastructure
  • Encrypted checkout process
  • Secure HTTPS connection
  • Secure communication with payment providers (Discover, Diners Club, Apple Pay, Google Pay, American Express, Mastercard, Visa, Afterpay / Clearpay)

Despite these measures, no online transmission is 100% secure.

10. Payments

Payments are processed securely via Discover, Diners Club, Apple Pay, Google Pay, American Express, Mastercard, Visa, Afterpay / Clearpay.
We never store your full payment card details.
Discover, Diners Club, Apple Pay, Google Pay, American Express, Mastercard, Visa, Afterpay / Clearpay uses advanced security measures including encryption and fraud monitoring.

11. Children’s Privacy

Our Site is not intended for individuals under 16 years old.
We do not knowingly collect data from minors.

12. Changes to This Privacy Policy

We may update this Privacy Policy to remain compliant with laws and technology changes.
Updates will be posted with a revised “Last updated” date at the top of this page.

13. Contact Information

If you have questions about this Privacy Policy or wish to exercise your rights, contact us at:

Vaxlux
📍 65 London Road, Stretton-on-Dunsmore, Rugby CV23 9JB, UK
📧 contact@vaxlux.com
📞 +44 7172 917377
🕘 Monday–Saturday, 9:00 AM – 6:00 PM