Privacy Policy

Last Updated: July 2025

Introduction

At Exoluxe, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at www.exoluxelabs.com or interact with our services.

We comply with the Privacy Act 1988 (Cth) and, where applicable, the European Union General Data Protection Regulation (GDPR). This policy outlines your rights and our obligations regarding your personal information.

What Personal Information We Collect

We may collect the following types of personal information:

  • Contact Information: Name, email address, phone number, and mailing address
  • Account Information: Username, password, and account preferences
  • Purchase Information: Order history, billing details, shipping addresses, and payment information
  • Communication Data: Correspondence with our customer service team, feedback, and survey responses
  • Technical Information: IP address, browser type, device information, and operating system
  • Usage Data: Pages visited, time spent on site, click patterns, and interaction with our content
  • Marketing Preferences: Newsletter subscriptions, promotional preferences, and communication history

How We Collect Information

We collect your personal information through various methods:

Information You Provide Directly

  • When you create an account or make a purchase
  • When you subscribe to our newsletter or marketing communications
  • When you contact our customer service team
  • When you participate in surveys, promotions, or events
  • When you submit reviews or feedback

Information Collected Automatically

  • Through cookies and similar tracking technologies
  • Through web analytics tools (e.g., Google Analytics)
  • Through advertising pixels and tracking codes
  • Through server logs and technical data

Information from Third Parties

  • Payment processors (e.g., Shopify Payments, Stripe)
  • Email and SMS service providers (e.g., Klaviyo)
  • Social media platforms (when you interact with our social media accounts)
  • Analytics and advertising partners

Why We Collect Your Information

We use your personal information for the following purposes:

Essential Business Operations

  • To process and fulfill your orders
  • To provide customer service and support
  • To manage your account and preferences
  • To process payments and prevent fraud
  • To comply with legal and regulatory obligations

Marketing and Communication

  • To send you newsletters, updates, and promotional content (with your consent)
  • To personalize your experience and provide relevant offers
  • To conduct market research and improve our services
  • To send you important service updates and notifications

Website and Service Improvement

  • To analyze website usage and improve user experience
  • To develop new products and services
  • To ensure website security and prevent abuse
  • To optimize our marketing campaigns

Sharing Your Information

We do not sell your personal information to third parties. We may share your information only in the following circumstances:

Service Providers

We may share your information with trusted third-party service providers who assist us in operating our business:

  • Payment Processors: Shopify Payments, Stripe, and other payment gateways to process transactions
  • Email and SMS Providers: Klaviyo and similar services to send communications
  • Analytics Tools: Google Analytics, Meta Pixel, and other analytics services
  • Logistics Partners: Shipping and delivery companies to fulfill orders
  • IT and Security Services: Cloud hosting providers and security services

Legal Requirements

We may disclose your information when required by law or to:

  • Comply with legal processes or government requests
  • Protect our rights, property, or safety
  • Investigate potential violations of our terms of service
  • Prevent fraud or security threats

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction, subject to the same privacy protections.

Your Rights

You have the following rights regarding your personal information:

Access and Control

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request that we correct inaccurate or incomplete information
  • Deletion: Request that we delete your personal information (subject to legal obligations)
  • Portability: Request a copy of your data in a portable format (GDPR users)

Marketing Preferences

  • Opt-out of marketing communications at any time
  • Update your communication preferences
  • Unsubscribe from newsletters and promotional emails

GDPR-Specific Rights (EU Users)

  • Restriction: Request that we limit how we use your information
  • Objection: Object to our processing of your personal information
  • Withdrawal of Consent: Withdraw consent for processing based on consent
  • Lodge a Complaint: Contact your local data protection authority

To exercise any of these rights, please contact us at info@exoluxelab.com.

Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. Our security measures include:

  • Encryption of data in transit and at rest
  • Secure servers and cloud infrastructure
  • Regular security assessments and updates
  • Access controls and authentication measures
  • Employee training on data protection
  • Incident response procedures

While we strive to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to maintaining the highest standards of data protection.

How Long We Keep Your Data

We retain your personal information for as long as necessary to fulfill the purposes outlined in this policy:

Customer Data

  • Account Information: Retained while your account is active and for a reasonable period after deactivation
  • Purchase History: Retained for legal, accounting, and customer service purposes
  • Communication Records: Retained for customer service and quality improvement

Marketing Data

  • Newsletter Subscriptions: Retained until you unsubscribe or request deletion
  • Marketing Preferences: Retained until updated or withdrawn

Technical Data

  • Analytics Data: Typically retained for 26 months (Google Analytics standard)
  • Log Files: Retained for security and troubleshooting purposes

We may retain certain information longer if required by law, regulation, or legitimate business needs. When we no longer need your information, we will securely delete or anonymize it.

Cookies and Tracking

We use cookies and similar tracking technologies to enhance your experience on our website. For detailed information about the cookies we use and how to manage them, please see our Cookie Policy.

International Data Transfers

Your personal information may be transferred to and processed in countries other than your own. We ensure that such transfers comply with applicable data protection laws and that your information receives adequate protection through appropriate safeguards, such as standard contractual clauses or adequacy decisions.

Children's Privacy

Our services are not intended for children under the age of 16. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child under 16, please contact us immediately, and we will take steps to remove such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will:

  • Update the "Last Updated" date at the top of this policy
  • Notify you of significant changes through email or website notifications
  • Post the updated policy on our website

We encourage you to review this policy periodically to stay informed about how we protect your information.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: info@exoluxelab.com

Website: www.exoluxelabs.com

Address: Sydney, Australia

We will respond to your enquiry within a reasonable timeframe and work to address any concerns you may have about our privacy practices.