-415x391.png "cosm")
Company Name: Jentrix Solutions Ltd
Company Registration Number: 20251074048
Official Website: jentrixrug.com
Contact Email: [email protected]
This Privacy Policy is prepared in accordance with the General Data Protection Regulation (GDPR, Regulation (EU) 2016/679). It sets out how Jentrix Solutions Ltd ("we") collects, uses, stores, protects, and transfers the personal data of users ("you") through our official website, jentrixrug.com ("the Website"), and protects your data subject rights under the GDPR. Please read this Policy carefully before using the Website. If you do not agree to its terms, please do not use the Website. By continuing to use the Website, you will be deemed to have fully understood and agreed to all of its terms.
1. Scope of Application
This Privacy Policy applies only to your personal data collected through this website. It does not apply to personal data collected through offline communications or third-party platforms (such as social media or partner dealer websites). It also does not apply to third-party websites or services linked to from this website. (The privacy policies of third-party websites are independently developed by their operators, and we are not responsible for their content or data processing practices.)
2. Types of Personal Data We Collect
We only collect personal data necessary to fulfill legitimate business purposes and avoid collecting information unrelated to our business. The specific types of data collected and the scenarios in which they are collected are as follows:
2.1. Personal Data You Actively Provide
Contact and Inquiry Data: When you submit an inquiry request (such as a product quote or partnership inquiry) through the "Contact Us" section of this website or through an online form, we may collect information such as your name, email address (if you provide a personal email address other than [email protected]), phone number, company name (if you are inquiring on behalf of a business), and a description of your needs.
Account-Related Data: If you register for an account on this website (to subscribe to product update notifications, track order progress, etc.), we may collect information such as your username, password (encrypted storage), registered email address, and contact number.
Order and Transaction Data: If you place a carpet purchase through this website, we may collect your delivery address, postal code, payment information (such as the last four digits of your bank card number. Full payment information is processed by a third-party payment provider; we do not store your full payment password or card number), and order details (such as product model and quantity).
2.2. Personal Data We Collect Automatically
When you visit and browse this website, we may automatically collect the following non-identifiable or anonymized data through technologies such as cookies, web logs, and server records:
Device and access data: such as the type of device you use (computer, mobile phone, tablet), operating system version, browser type, and unique device identifiers (such as IMEI and MAC address, which are used only to identify unusual device access and are not linked to personal identity);
Access behavior data: such as the date and time you visit this website, page paths you browse, duration of stay, functional modules clicked, and search keywords;
Location data: only with your permission, we collect your approximate geographic location (such as city level, to recommend nearby product showrooms or logistics services; we do not collect your precise latitude and longitude).
3. Purpose and Legal Basis of Processing Personal Data
According to GDPR requirements, we must have a lawful basis for processing personal data. The following are the specific processing purposes and corresponding legal basis:
For the purpose of responding to your inquiries, processing your orders, and providing the products or services you requested, our legal basis is "performance of contract" (GDPR Article 6 (1)(b)), which ensures the smooth performance of the transaction or service agreement between you and us;
For the processing of information such as product updates and event notifications (which require your prior consent), the legal basis is "obtaining your explicit consent" (GDPR Article 6 (1)(a)), and you can withdraw your consent at any time;
In terms of maintaining the normal operation of this website, optimizing website performance (such as fixing page errors and improving loading speed), and ensuring network security (such as identifying and blocking malicious access), the processing basis is "protecting our legitimate interests" (GDPR Article 6 (1)(f)), so as to ensure the availability and security of the website services;
For the processing of analyzing user access behavior, understanding user needs, improving product design (such as optimizing carpet style recommendations based on browsing data), and improving service quality, the basis is "pursuing legitimate business interests" (GDPR Article 6 (1)(f)), and such processing does not infringe upon your fundamental rights and freedoms;
When personal data is processed to comply with the laws and regulations of the European Union and your member state (such as tax reporting, trade compliance requirements), or to respond to investigations by regulatory authorities or legal disputes, the basis is "fulfillment of legal obligations" (GDPR Article 6 (1)(c)).
4. Storage and Protection of Personal Data
4.1. Storage Period
We follow the principles of "minimum necessary" and "matching the storage period with the processing purpose" and only store your personal data for the period necessary to achieve the processing purposes described in this policy. After the expiration of the period, it will be deleted or anonymized in accordance with the law (the anonymized data is no longer personal data and can be used for statistical analysis):
Personal data used to respond to inquiries and process orders: retained for 1 year after the consultation is resolved or the order is completed (if it is necessary to deal with post-sales disputes or tax compliance, it can be extended to the expiration of the statutory retroactive period);
Personal data used for account services: retained for 6 months from the date of your account cancellation (to ensure that unfinished service needs can still be processed after cancellation);
Personal data used for compliance and legal purposes: retained until the relevant legal obligations are fulfilled or the legal dispute is resolved.
4.2. Storage Location
Your personal data is primarily stored on servers within the EU (such as data centers in Ireland and Germany). If business needs necessitate data transfer outside the EU (e.g., sharing a delivery address with a logistics partner outside the EU for delivery), we will strictly adhere to the GDPR's requirements regarding cross-border data transfers and implement the following safeguards:
Data transfers will only be made to countries or regions that have received an "adequacy determination" from the European Commission (e.g., the UK, Switzerland, etc.);
We will enter into a GDPR-compliant "Data Processing Agreement" (DPA) with the overseas data recipient, clearly defining the data protection responsibilities of both parties and ensuring that data processing abroad complies with EU privacy standards;
If data transfers are required to regions that have not received an "adequacy determination," we will implement additional measures such as encrypted transmission and access control to ensure data security.
4.3. Protection Measures
We have established GDPR-compliant technical and management systems and implemented a variety of measures to protect your personal data from unauthorized access, use, disclosure, alteration, or damage:
Technical Measures: We use SSL/TLS encryption technology to ensure secure data transmission; store sensitive data (such as passwords) in irreversibly encrypted form; deploy firewalls and intrusion detection systems (IDS) to prevent network attacks; and regularly scan and update servers and databases for security vulnerabilities.
Administrative Measures: We clearly define internal data access permissions (restricting access to specific data to business-related employees); provide employee training on GDPR and data protection, and sign confidentiality agreements. We have developed a data breach emergency response plan. In the event of a data breach, we will notify the EU Data Protection Authority (DPA) and, if necessary, you, the affected individual, within 72 hours.
5. Sharing and Disclosure of Personal Data
We promise not to sell or rent your personal data to any third party. We will only share your personal data with third parties in the following limited circumstances, and we will require such third parties to comply with this Policy and GDPR requirements for data protection:
Business Partners: For example, to fulfill order delivery, we may share your delivery address and contact number with logistics providers; to process payments, we may share your order amount and payment account information (only necessary information) with third-party payment institutions.
Legal and Regulatory Authorities: We may disclose your personal data to regulatory authorities (such as EU data protection authorities, tax authorities, and customs authorities) as required by law or to fulfill legal obligations or cooperate with investigations.
Corporate Reorganization and Mergers and Acquisitions: If we undergo a corporate restructuring, such as a merger, acquisition, or asset sale, your personal data may be transferred to the new operating entity as part of the company's assets. However, the new entity will continue to comply with this Privacy Policy. If any changes are required in our data processing practices, we will notify you in advance and obtain your consent (unless otherwise required by law).
6. Your Data Subject Rights (Under GDPR)
Under GDPR, as a data subject, you have the following rights, and we will provide you with free support in exercising these rights:
Right to be informed: You have the right to request confirmation of whether we are processing your personal data and to obtain information about the purposes, types, storage periods, and sharing partners of your personal data as described in this Policy.
Right to access: You have the right to request a copy of your personal data (in a common, machine-readable format, such as CSV or PDF).
Right to correction: If you discover an error in your stored personal data (e.g., a change in contact number or incorrect delivery address), you have the right to request that we promptly correct it.
Right to erasure ("right to be forgotten"): You have the right to request that we erase your personal data if: the purpose of the processing has been achieved, you have withdrawn your consent and there is no other legitimate basis for the processing, you have objected to the processing and there are no overriding legitimate interests, or the processing violates GDPR. or as required by law;
Right to restrict processing: You have the right to request that we restrict the processing of your personal data (retain the data but suspend its use) if the accuracy of the data is disputed, the purpose of processing has ceased but the data must be retained to defend against legal disputes, or you object to processing but we need to assess whether there are overriding legitimate interests.
Right to data portability: You have the right to request that we transfer your personal data to another data controller designated by you (provided that the processing is based on your consent or performance of a contract, and the transfer is technically feasible).
Right to object: If we process your personal data based on "legitimate business interests" (such as targeted product information), you have the right to object at any time, and we will cease the processing upon receipt of your objection (unless we can demonstrate overriding legitimate interests).
Right to withdraw consent: If you have previously consented to our processing of your personal data (such as receiving marketing communications), you have the right to withdraw your consent at any time. This withdrawal will not affect the lawful processing of your data based on consent prior to the withdrawal. If you wish to exercise the rights described above, please contact us as follows:
Email: [email protected] (Please specify "Data Subject Rights Exercise Request" in your email and provide your name, contact number, and other information so we can verify your identity);
Postal Address: [Company Registration Address, if necessary; this field can be left blank or filled in as needed].
We will respond to your request within one month of receiving it. If the request is complex or requires additional processing time, we will notify you in advance. The extension will not exceed two months.
7. Use of Cookies
This website uses cookies to enhance your browsing experience. Cookies are small text files sent to your browser by the website server to store information such as your browsing preferences. You can manage or disable cookies through your browser settings. However, disabling some cookies may affect the functioning of some features of this website (for example, inability to save account login status or store shopping cart information).
7.1. Cookie Types and Purposes
Necessary cookies: These cookies enable the basic functionality of this website, such as maintaining account logins and recording shopping cart information. These cookies cannot be disabled (disabling them will disable the core functionality of the website).
Functional cookies: These cookies enhance the user experience, such as recording your language preferences and page display settings so you don't have to reconfigure them the next time you visit.
Analytical cookies: These cookies are used to analyze user behavior, such as counting page views and user duration, to help us optimize the website structure and content. The data collected by these cookies is anonymized and cannot be linked to any individual.
Marketing cookies: These cookies are used only with your consent to provide you with personalized product information or event notifications. If you withdraw your consent, these cookies will cease to be used.
7.2. Cookie Management
You can manage cookies in the following ways:
Browser settings: For example, in Chrome, you can manage cookies in "Settings - Privacy & Security - Cookies and Other Site Data." In Safari, you can adjust your cookie settings in "Settings - Safari - Privacy & Security."
Cookie pop-ups on this website: When you first visit this website, you will be prompted to accept or reject non-essential cookies. You can subsequently change your preferences by clicking the "Cookie Settings" button at the bottom of this website.
8. Data Protection for Minors
This website is not intended for minors under the age of 16 and does not intentionally collect personal data from minors. If you are a minor (under the age of 16), please use this website in the presence of a guardian and refrain from providing us with any personal data. If your guardian discovers that a minor's personal data has been accidentally collected, please contact us at [email protected] and we will promptly delete the data.
9. Policy Updates
We may update this Privacy Policy based on changes in EU laws and regulations, adjustments to our business model, or technological developments. The updated policy will be prominently posted on this website's homepage (e.g., via a pop-up notification or with the "Updated Date" next to the policy title) and will take effect from the date of posting. If an update affects your core rights (e.g., expansion of the scope of data collection, change in processing purposes), we will notify you seven days in advance via your registered email address or a pop-up notification on this website to ensure you have sufficient time to understand the update.
We recommend that you visit this website regularly to review the latest version of the Privacy Policy.
10. Contact Us and Complaints
If you have any questions about this Privacy Policy, wish to exercise your data subject rights, or believe that our processing of personal data violates the GDPR, you may contact us as follows:
Company Name: Jentrix Solutions Ltd
Company Registration Number: 20251074048
Email: [email protected]
Official Website: jentrixrug.com
If you are dissatisfied with our response or believe we have not fulfilled our obligations under the GDPR, you may file a complaint with the EU Data Protection Authority (DPA) in your Member State (e.g., the German Federal Data Protection Authority in Germany; the French Commission Nationale de l'Informatique et des Libertés in France). The contact information for each Member State DPA can be found on the European Commission's website.
Effective Date: This Privacy Policy is effective as of the date of publication.
Jentrix Solutions Ltd reserves the right of final interpretation of this Privacy Policy.