Khimreonshep

Privacy Policy

Last updated: March 5, 2026

1. Controller and contact

The controller responsible for the processing of your personal data in connection with this website is:

Khimreonshep
232 W Girard Ave
Philadelphia, PA 19123
United States

Contact: support@khimreonshep.world | Phone: +12678584279

For any questions regarding this Privacy Policy or your personal data, please contact us using the details above or via our Contact page.

2. Scope and basis

This Privacy Policy describes how we collect, use, store, and protect your personal data when you use our website khimreonshep.world and related services. We process personal data in accordance with applicable local and international laws, including the General Data Protection Regulation (GDPR) where it applies, and U.S. federal and state privacy laws.

Personal data means any information relating to an identified or identifiable natural person. We process such data only where we have a lawful basis: your consent, performance of a contract, compliance with a legal obligation, or our legitimate interests where they are not overridden by your rights.

3. Data we collect

We may collect the following categories of data:

  • Identity and contact data: name, email address, telephone number, and postal address when you place an order, contact us, or subscribe to communications.
  • Transaction and order data: order details, payment-related information (processed by our payment providers), and delivery information.
  • Technical and usage data: IP address, browser type and version, device type, time zone, pages visited, and how you use our site. This may include data collected via cookies and similar technologies; see our Cookie Policy.
  • Communication data: copies of correspondence when you contact us and any feedback you provide.

We do not collect more data than is necessary for the purposes set out in this policy.

4. Purposes of processing

We use your data for the following purposes:

  • To process and fulfil your orders and to communicate with you about your order (contract performance).
  • To respond to your inquiries and provide customer support (contract performance and/or consent).
  • To send you service-related messages (e.g. order and shipping confirmations) where necessary for the performance of our contract.
  • To send marketing communications only where you have given your consent; you may withdraw consent at any time.
  • To improve our website, products, and services (legitimate interest), including analytics where based on consent or legitimate interest.
  • To comply with legal obligations (e.g. tax, consumer, and regulatory requirements).
  • To establish, exercise, or defend legal claims where necessary.

5. Legal basis (GDPR)

Where the GDPR applies, we rely on:

  • Consent: for optional cookies, marketing, and where we ask for your explicit agreement.
  • Contract: for order processing, delivery, and customer support related to your purchase.
  • Legal obligation: for retaining records and reporting as required by law.
  • Legitimate interests: for site security, fraud prevention, analytics (where not based on consent), and improving our services, provided your rights do not override these interests.

6. Data retention

We retain your data only for as long as necessary for the purposes for which it was collected:

  • Order and transaction data: typically for the period required by applicable law (e.g. tax and consumer law), often at least 6–7 years from the end of the relevant fiscal year.
  • Contact and communication data: for the duration of our relationship and for a reasonable period thereafter to handle follow-up inquiries and legal claims.
  • Marketing and consent-based processing: until you withdraw consent or object, or until we no longer use the data for that purpose; we will then delete or anonymize it in line with our retention schedule.
  • Technical and access logs: as specified in our Cookie Policy and internal policies, generally for a limited period necessary for security and analytics.

After the retention period, we delete or anonymize your data so that it no longer identifies you.

7. Your rights

Depending on your location, you may have the following rights:

  • Access: to obtain confirmation as to whether we process your data and a copy of your personal data.
  • Rectification: to have inaccurate or incomplete data corrected.
  • Erasure: to request deletion of your data where there is no overriding reason to retain it (e.g. where processing was based on consent and you withdraw it).
  • Restriction: to request that we limit processing in certain circumstances.
  • Data portability: where processing is based on contract or consent and is carried out by automated means, to receive your data in a structured, commonly used format and to transmit it to another controller.
  • Objection: to object to processing based on legitimate interests, including profiling; and to object to direct marketing at any time.
  • Withdraw consent: where processing is based on consent, you may withdraw consent at any time without affecting the lawfulness of processing before withdrawal.

To exercise these rights, contact us using the details in section 1. We will respond within the time frame required by applicable law (e.g. one month under the GDPR). You also have the right to lodge a complaint with a supervisory authority in your country of residence or place of work.

8. Data sharing and recipients

We may share your data with:

  • Service providers who act on our instructions (processors), such as hosting, payment processing, shipping, and email delivery, under contracts that ensure confidentiality and security.
  • Professional advisers (e.g. lawyers, accountants) where necessary for our legitimate interests or legal obligations.
  • Public authorities when required by law or to protect our rights.

We do not sell your personal data. If we transfer data outside the European Economic Area or the United Kingdom, we ensure appropriate safeguards (e.g. standard contractual clauses or other mechanisms approved by the relevant authorities) are in place.

9. Security

We implement appropriate technical and organizational measures to protect your data against unauthorized access, alteration, disclosure, or destruction. These include use of HTTPS (TLS) for data in transit, access controls, and secure storage. We regularly review our security practices and update them as necessary. Despite our efforts, no method of transmission or storage over the Internet is completely secure; we encourage you to use strong passwords and to contact us if you suspect any unauthorized use of your data.

10. Children

Our website and services are not directed at individuals under the age of 16 (or higher where local law requires). We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us and we will delete it promptly.

11. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices or in the law. The "Last updated" date at the top indicates when the policy was last revised. We encourage you to review this page periodically. Where required by law, we will notify you of material changes or seek your consent.

12. Additional information

For details on cookies and similar technologies, please see our Cookie Policy. For the terms governing the use of our website and products, see our Terms of Service.