top of page

Privacy Policy

A legal disclaimer

Zen Crystal Cave Privacy Policy

Last Updated: July 2025

At Zen Crystal Cave, we respect your privacy. This policy explains how we collect, use, and protect your personal information when you visit our website, zencrystalcave.com We are committed to complying with UK data protection laws, including the UK GDPR.

1. Who We Are (Data Controller)

Zen Crystal Cave is the 'data controller' responsible for your personal data. You can contact us at: Email: [Your Customer Service Email Address]

2. The Information We Collect About You

We may collect, use, store, and transfer different kinds of personal data about you:

  • Contact & Identity Data: Your name, billing and shipping addresses, email address, and phone number.

  • Financial & Transaction Data: Details about your purchases and payments (processed securely by third parties; we do not store full card details).

  • Technical & Usage Data: Your IP address, browser type, how you use our website (e.g., pages visited, time spent), collected via cookies and analytics.

  • Marketing & Communication Data: Your preferences for receiving marketing from us.

3. How We Collect Your Information

We collect data when you:

  • Make a purchase.

  • Create an account.

  • Sign up for our newsletter.

  • Contact us.

  • Browse our website (via cookies and analytics).

4. How We Use Your Information & Why (Lawful Basis)

We use your data primarily to run our online store and provide you with services. Our legal reasons for doing so include:

  • To fulfil our contract with you: Processing your orders, payments, deliveries (e.g., sharing your address with our dropshipping suppliers and couriers).

  • For our legitimate business interests: Improving our website and services, understanding customer behaviour, preventing fraud, and for our internal administration.

  • To comply with a legal obligation: Such as for tax purposes.

  • With your consent: For sending you marketing emails (if you've opted-in) or for certain cookies.

5. Sharing Your Information

We may share your data with:

  • Our Dropshipping Suppliers and Delivery Partners: So they can send your order to you.

  • Payment Processors: To securely handle your payments.

  • Website Hosting & IT Service Providers: Who help us run our website.

  • Analytics Providers: To understand website usage.

  • Professional Advisers: Like lawyers or accountants, when necessary.

  • Legal & Regulatory Authorities: If legally required or to protect our rights.

We ensure all third parties respect your data's security and use it only for specified purposes according to our instructions.

6. Cookies

Our website uses cookies to function correctly, understand how you use our site, and improve your experience. We also use cookies for advertising purposes.

  • You can manage your cookie preferences through our Cookie Consent Banner or your browser settings. Be aware that disabling some cookies may affect website functionality.

7. International Data Transfers

Some of our suppliers or service providers may be located outside the UK/EEA. When this happens, we ensure your data is protected with safeguards like approved legal contracts (e.g., UK IDTAs).

8. Data Security

We have put in place security measures to protect your personal data from being lost, used, accessed in an unauthorised way, altered, or disclosed. While we strive for security, remember that no internet transmission is 100% secure.

9. How Long We Keep Your Information

We only keep your personal data for as long as necessary to fulfil the purposes we collected it for, including legal, accounting, or reporting requirements (e.g., typically 6 years for transactional data for tax purposes).

10. Your Data Protection Rights

Under UK GDPR, you have rights regarding your personal data:

  • Access: Request a copy of your data.

  • Correction: Ask us to correct inaccurate data.

  • Erasure: Request deletion of your data in certain circumstances.

  • Object to Processing: Challenge how we use your data.

  • Restrict Processing: Ask us to temporarily limit how we use your data.

  • Data Portability: Request your data in a structured, machine-readable format.

  • Withdraw Consent: If we rely on your consent, you can withdraw it at any time.

To exercise any of these rights, please contact us at [Your Customer Service Email Address]. We may ask for information to verify your identity.

Complaints: You have the right to complain to the Information Commissioner's Office (ICO) at www.ico.org.uk if you have concerns about our data handling. We encourage you to contact us first so we can try to resolve your issue.

11. Changes to This Policy

We may update this policy. Any changes will be posted on this page with an updated "Last Updated" date.

bottom of page