Legal

Privacy Policy

Last updated: April 10, 2026

KinxKlub ("we," "us," or "our") is committed to protecting your privacy. This policy explains what data we collect, how we use it, and your rights as a user — including your rights under the General Data Protection Regulation (GDPR).

1. Data We Collect

We collect the following categories of personal data:

  • Account data: Email address, username, and password hash. Required to create and manage your account.
  • Order data: Shipping name, address, phone number, and order history. Required to fulfill your purchases.
  • Payment data: We do not store your card number. Payments are processed by Stripe, Inc. We receive only a payment reference and the last four digits of your card.
  • Usage data: Browser type, device, pages visited, time on site, and referral source — collected only with your consent via Google Analytics.
  • Communications: Emails and support messages you send us.

2. How We Use Your Data

We use your personal data only for the following purposes:

  • Processing and fulfilling your orders
  • Managing your account and authentication
  • Sending order confirmation and shipping notifications
  • Responding to customer support enquiries
  • Detecting and preventing fraud
  • Improving our platform (only with analytics consent)

We do not sell your personal data. We do not use it for profiling or automated decision-making that produces legal or similarly significant effects.

3. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), our legal basis for processing personal data is:

  • Contract performance: Account data, order data, and payment references are processed to fulfill our contract with you.
  • Legitimate interests: Fraud detection and platform security.
  • Consent: Analytics cookies (Google Analytics) are loaded only with your explicit consent via our cookie banner.

4. Third-Party Services

We share limited data with these trusted third parties solely to operate our service:

Stripe, Inc.

Payment processing. Stripe receives payment card data directly and returns a payment reference. Stripe's privacy policy applies to their handling of your payment data.

Privacy Policy ↗

Google Analytics 4

Analytics. Collected only with your consent. Data includes anonymized usage metrics (pages visited, session duration). Google may process this data in the United States. You can opt out via our cookie settings.

Privacy Policy ↗

EasyPost

Shipping rate calculation and label generation. We share your shipping address with EasyPost when calculating postage.

Privacy Policy ↗

Render

Cloud hosting provider where our servers run. Your data is stored on Render's infrastructure.

Privacy Policy ↗

5. Cookies

We use the following types of cookies:

Essential

Required for authentication, cart, and checkout. These cannot be disabled.

Always on

Analytics

Google Analytics 4. Loaded only with your consent. Helps us understand how visitors use the site.

Marketing

Advertising and retargeting. Loaded only with your consent.

You can change your cookie preferences at any time by clicking “Cookie Preferences” in the site footer, or by clearing your browser's localStorage for this site.

6. Data Retention

We retain your account data for as long as your account is active. Order data is retained for 7 years to comply with financial and tax record obligations. Analytics data collected via Google Analytics follows Google's standard 26-month data retention period.

If you delete your account, we remove your personal profile data within 30 days, except where retention is required by law (e.g., order records for tax purposes).

7. International Data Transfers

Our servers are located in the United States (Render cloud infrastructure). If you are located in the EEA, your data is transferred to the US under standard contractual clauses (SCCs) or the EU–US Data Privacy Framework where applicable.

8. Your Rights (GDPR & CCPA)

Depending on your jurisdiction, you have the right to:

  • Access: Request a copy of all personal data we hold about you.
  • Rectification: Correct inaccurate or incomplete data.
  • Erasure: Request deletion of your personal data (“right to be forgotten”).
  • Portability: Receive your data in a machine-readable format.
  • Restriction: Ask us to restrict processing of your data in certain circumstances.
  • Objection: Object to processing based on legitimate interests.
  • Withdraw consent: Withdraw analytics consent at any time via cookie settings.

To exercise any of these rights, email support@kinxklub.com. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection authority.

9. Security

We use industry-standard security measures including encrypted HTTPS connections, hashed passwords (bcrypt), and access controls to protect your data. Payment card data is never stored on our servers — it goes directly to Stripe's PCI-compliant infrastructure.

No system is 100% secure. If we become aware of a breach that affects your personal data, we will notify you and the relevant authorities as required by law.

10. Contact

For privacy-related enquiries, to exercise your rights, or to report a concern, contact us at:

KinxKlub — Data Controller

Email: support@kinxklub.com

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting a notice on the site or emailing registered users. Continued use of KinxKlub after changes constitutes acceptance of the updated policy.

Stay in the Loop

Get exclusive deals, new arrivals, and style tips delivered to your inbox.

Secure Payment

Stripe encrypted checkout

Made to Measure

Custom fit available

Worldwide Shipping

International delivery

Premium Quality

Handcrafted with care