Privacy Policy
Last updated: . This Privacy Policy describes how Frozenonghim (“we”, “us”, “our”) collects, uses, stores and protects your personal data when you use our website and services. We process data in accordance with the General Data Protection Regulation (GDPR), the New Zealand Privacy Act 2020 and other applicable laws.
Data controller
Data controller: Frozenonghim. Address: 698 Mount Albert Road, Royal Oak, Auckland 1023, New Zealand. Contact: info@frozenonghim.world, contact@frozenonghim.world, support@frozenonghim.world, help@frozenonghim.world.
What data we collect
We may collect: name, email address, phone number, delivery address, and any message you send via our contact or order forms. We also collect technical data such as IP address, browser type and device information when you visit our site, where permitted by law and our Cookie Policy.
Purposes of processing
- To process orders and enquiries
- To communicate with you about your request
- To improve our website and services (e.g. analytics, where you have consented)
- To comply with legal obligations and protect our rights
Legal basis (GDPR)
We process your data on the basis of: performance of a contract (order processing), your consent (e.g. marketing, analytics), and our legitimate interests (e.g. site security, responding to enquiries) where they do not override your rights.
Retention
We keep order and contact data for as long as necessary to fulfil the purpose (e.g. order fulfilment, warranty, legal obligations). Typically order data is retained for a period required by tax and consumer law (e.g. several years). You may request erasure where we have no legal obligation to retain the data.
Data sharing
We do not sell your data. We may share data with service providers (e.g. hosting, payment, delivery) only to the extent necessary and under agreements that require them to protect your data. We may disclose data if required by law or to protect our rights.
Security
We use technical and organisational measures (e.g. HTTPS, access controls, secure storage) to protect your data against unauthorised access, loss or alteration. No method of transmission over the internet is 100% secure; we strive to apply industry-standard practices.
Your rights
Under GDPR and applicable law you may have the right to: access your data, rectify inaccuracies, request erasure (“right to be forgotten”), restrict processing, data portability, object to processing, and withdraw consent where processing is based on consent. You also have the right to lodge a complaint with a supervisory authority (e.g. in your country of residence or in New Zealand the Office of the Privacy Commissioner). To exercise your rights, contact us at the details above.
International transfers
If we transfer data outside the EEA or New Zealand, we ensure appropriate safeguards (e.g. adequacy decisions, standard contractual clauses) are in place as required by law.
Changes
We may update this policy from time to time. The “Last updated” date at the top will be revised. We encourage you to review this page periodically. Continued use of the site after changes constitutes acceptance of the updated policy where permitted by law.