Khunryonrrglox.world

Legal · Data stewardship

Privacy Policy

Document reviewed and displayed as of

Introduction and scope

This Privacy Policy describes how Khunryonrrglox.world, presenting the Sorexo brand through the website at , collects, uses, stores, and discloses personal data when you browse, inquire, create an account, subscribe to communications, or purchase dietary supplement products. We drafted this document to meet the transparency expectations of the EU General Data Protection Regulation, the UK GDPR, and evolving U.S. state privacy statutes, without replacing jurisdiction-specific advice you may obtain independently.

By accessing the site or submitting information, you acknowledge that you have read this Policy alongside our Cookie Policy, Terms of Service, and Refund Policy. If you disagree with any material provision, please discontinue use of digital services and contact us to close any active account.

Sorexo products are dietary supplements, not medicines. Privacy practices described here do not extend to medical records held by clinics or insurers.

Controller identity and representatives

The data controller responsible for personal data processed in connection with this website and related commercial activity is:

Khunryonrrglox.world 3400 Airline Dr, Bossier City, LA 71111, United States
Email: chat@khunryonrrglox.world

For GDPR purposes, we evaluate on a case-by-case basis whether appointment of a representative in the European Union is required based on processing volume and targeting. When such representation is active, contact details will be published in an annex to this Policy. Until then, EU and UK residents may direct requests to the email above with “GDPR Request” in the subject line.

Categories of personal data

Depending on how you interact with us, we may process identifiers and contact data (name, postal address, email address, telephone number), account credentials, commercial information (order history, product preferences, subscription status), payment-related references (tokenized payment identifiers rather than full card numbers when processed by our payment partners), internet activity (IP address, device type, browser language, referring URL, pages viewed, approximate location derived from IP), communications you send (free-text inquiries, customer service transcripts), and professional information if you represent a retailer or distributor.

We do not intentionally collect government identification numbers, precise geolocation, or biometric data through the consumer website. If such data is volunteered in an unstructured message, we isolate and delete it unless a legal obligation requires retention.

Sources of data

We obtain personal data directly from you when you complete forms, place orders, subscribe to email, participate in surveys, or communicate with support. We also receive technical data automatically through server logs, cookies, pixels, and analytics tools where permitted. Finally, we may receive limited data from logistics partners, fraud-screening vendors, or social platforms when you choose to interact with our brand through those channels.

Purposes and legal bases

We process personal data for the following purposes, citing GDPR Article 6 bases where applicable:

  • Website operation and security (legitimate interests and, where strictly necessary, contractual necessity): authentication, load balancing, abuse detection, debugging, and consent storage.
  • Order fulfillment (contract): processing payments, arranging shipment, issuing invoices, handling returns under our Refund Policy.
  • Customer support (contract and legitimate interests): responding to questions, documenting quality issues, escalating complaints.
  • Regulatory compliance (legal obligation): tax, customs, product safety traceability, and responding to lawful requests from authorities.
  • Analytics and product improvement (consent or legitimate interests, depending on tool configuration and jurisdiction): aggregated usage statistics, A/B testing, and cart recovery where permitted.
  • Marketing (consent or soft opt-in where allowed): newsletters, launch announcements, and personalized offers.

Where we rely on legitimate interests, we balance our needs against your rights and offer opt-out mechanisms where required. You may withdraw consent at any time without affecting prior lawful processing.

Cookies and similar technologies

We deploy strictly necessary cookies to operate authentication, security, and consent records. Optional analytics and marketing cookies activate only after you provide consent through our cookie banner or equivalent control. Detailed descriptions, retention periods, and vendor categories appear in the Cookie Policy, which should be read together with this document.

Marketing and communications

Marketing emails include unsubscribe links that process requests within legally required timelines. We maintain suppression lists to honor opt-outs even if you later resubscribe through another form. SMS or messaging programs, if introduced, will disclose frequency and data rates at enrollment.

Disclosures and subprocessors

We share personal data with hosting providers, payment processors, email delivery services, customer relationship platforms, analytics vendors, fulfillment warehouses, carriers, and professional advisers bound by confidentiality. Contracts incorporate data protection terms consistent with their role. We may disclose information when required by subpoena, court order, or to protect the rights, property, or safety of customers, staff, or the public.

In the event of a merger, acquisition, or asset sale, personal data may transfer subject to notice and, where mandated, consent.

International data transfers

Our primary operations reside in the United States. When we transfer personal data from the European Economic Area, United Kingdom, or Switzerland, we implement appropriate safeguards such as Standard Contractual Clauses, supplementary technical measures including encryption in transit, and transfer impact assessments documented internally.

Retention schedule

Marketing prospect data is retained until withdrawal of consent or twenty-four months of inactivity, whichever occurs first, unless a longer period is justified by pending disputes. Transaction records follow statutory accounting requirements, typically seven years from the fiscal year-end. Server logs rotate on a ninety-day cycle unless preserved for incident response. Cookie lifetimes align with the Cookie Policy. Backup systems may retain residual copies until overwritten according to technical schedules.

Security measures

We employ HTTPS encryption, access controls segregated by role, multi-factor authentication for administrative interfaces, vulnerability monitoring, vendor security reviews, employee training, and incident response playbooks. While we strive to protect data, no internet transmission is perfectly secure; you share information at your own risk beyond the controls we implement.

Automated decision-making

We do not make decisions based solely on automated processing that produce legal or similarly significant effects regarding consumers. Fraud scoring may flag transactions for manual review but does not automatically decline orders without human oversight.

Your rights under GDPR

If GDPR applies, you may request access, rectification, erasure, restriction, portability, objection to certain processing, and withdrawal of consent. You may lodge a complaint with your local supervisory authority. We verify identity before fulfilling requests and respond within statutory deadlines, with extensions when requests are complex.

United States privacy rights

Residents of states with comprehensive privacy laws may exercise rights to know, delete, correct, and opt out of sale or sharing of personal information. We honor browser opt-out signals where required. Appeals processes are available if you disagree with our response.

Children and sensitive data

Our services target adults. We do not knowingly collect data from children under sixteen. Parents who believe we have collected a minor’s data should contact us for prompt deletion. We avoid processing consumer health data beyond what is necessary to fulfill supplement orders and comply with law.

Third-party websites

Links to external sites are provided for convenience. Their privacy practices are governed by their own policies. Review them before submitting personal data.

Changes to this Policy

We update this Privacy Policy to reflect operational, legal, or technical developments. Material changes will be highlighted on the website or communicated through direct notice when appropriate. Continued use after the effective date constitutes acknowledgment unless applicable law requires explicit consent.

Contact and supervisory authorities

Questions, requests, or complaints may be directed to chat@khunryonrrglox.world or the postal address listed above. EU residents may also contact their national data protection authority; UK residents may contact the Information Commissioner’s Office.