Ximthorezor

Privacy Policy

Last updated:

1. Introduction

Ximthorezor ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website ximthorezor.world and use our services.

We comply with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws.

2. Data Controller Information

Contact Details

Company: Ximthorezor

Address: 1842 S Townsend Ave, Montrose, CO 81401, United States

Email: office@ximthorezor.world

Country: United States

3. Information We Collect

3.1 Personal Data You Provide

We collect information that you voluntarily provide when using our services:

  • Contact Information: Name, email address, phone number (optional)
  • Order Information: Details provided when placing an order through our forms
  • Communication Data: Messages, inquiries, and correspondence you send us
  • Consent Records: Records of permissions and consents you have given

3.2 Automatically Collected Data

When you visit our website, we may automatically collect:

  • Technical Data: IP address, browser type and version, operating system, device information
  • Usage Data: Pages visited, time spent on pages, navigation paths, referring URLs
  • Cookie Data: Information collected through cookies and similar technologies (see our Cookie Policy)

4. Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

Purpose Legal Basis
Processing orders and inquiries Contract performance / Legitimate interest
Sending marketing communications Consent
Website analytics and improvement Legitimate interest / Consent
Legal compliance Legal obligation
Fraud prevention Legitimate interest

5. How We Use Your Information

We use collected information for the following purposes:

  • To process and fulfill your orders and requests
  • To communicate with you regarding your inquiries and orders
  • To send you relevant information about our products (with your consent)
  • To improve our website, products, and services
  • To analyze website usage and user behavior
  • To comply with legal obligations
  • To prevent fraudulent activities and ensure security

6. Data Sharing and Disclosure

We may share your personal data with:

  • Service Providers: Third parties who assist in operating our website, processing payments, and delivering services
  • Legal Authorities: When required by law, court order, or government request
  • Business Transfers: In connection with mergers, acquisitions, or asset sales

We do not sell your personal data to third parties for their marketing purposes.

7. International Data Transfers

Your data may be transferred to and processed in countries outside your country of residence. When transferring data internationally, we implement appropriate safeguards such as:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions by relevant authorities
  • Other legally recognized transfer mechanisms

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • Order Data: Retained for 7 years for tax and legal compliance
  • Marketing Consent: Until consent is withdrawn
  • Communication Records: 3 years from last contact
  • Technical Logs: Up to 12 months

9. Your Rights

Under GDPR and applicable laws, you have the following rights:

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restriction: Request limitation of processing
  • Right to Data Portability: Receive your data in a structured format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent at any time
  • Right to Complain: Lodge a complaint with a supervisory authority

To exercise these rights, contact us at: office@ximthorezor.world

9.1 California Privacy Rights (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) provide you with additional rights regarding your personal information.

Categories of Personal Information Collected (Past 12 Months)

  • Identifiers: Name, email address, phone number, IP address
  • Commercial Information: Order history, purchase preferences
  • Internet/Network Activity: Browsing history, interactions with our website
  • Inferences: Preferences based on your activity

Your California Rights

  • Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected about you
  • Right to Delete: Request deletion of your personal information, subject to certain exceptions
  • Right to Correct: Request correction of inaccurate personal information
  • Right to Opt-Out of Sale or Sharing: We do not sell personal information. We do not share personal information for cross-context behavioral advertising. If our practices change, we will provide an opt-out mechanism.
  • Right to Limit Use of Sensitive Personal Information: Request that we limit use of sensitive personal information to specified purposes
  • Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

How to Exercise Your Rights: Submit a verifiable request to office@ximthorezor.world. We will verify your identity and respond within 45 days. You may designate an authorized agent to make requests on your behalf.

Do Not Sell or Share My Personal Information: We do not sell or share your personal information as defined under the CCPA/CPRA. Should our practices change, we will update this policy and provide a clear opt-out link. Learn more about your California privacy rights.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

  • Secure HTTPS encryption for all data transmission
  • Access controls and authentication measures
  • Regular security assessments and updates
  • Employee training on data protection
  • Secure data storage with limited access

11. Children's Privacy

Our website and services are not intended for individuals under 18 years of age. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child, we will take steps to delete it promptly.

12. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of these external sites. We encourage you to review the privacy policies of any third-party sites you visit.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.

14. Contact Us

Data Protection Inquiries

For questions about this Privacy Policy or our data practices, contact us:

Email: office@ximthorezor.world

Address: 1842 S Townsend Ave, Montrose, CO 81401, United States