Privacy Policy

This Privacy Policy ("Policy") outlines the principles and practices that Commerce Plex Limited (“Company”) adheres to in collecting, processing, using, disclosing, retaining, and managing personal data of our customers (“Users”). This policy does not cover any external websites or services that are not under our ownership, control, or authority of the Company, including those operated by third-party merchants.

1. DEFINITIONS:

Unless otherwise specified, all capitalized terms in this Policy shall have the meanings assigned to them in our Terms and Conditions.

2. SCOPE OF POLICY:

This Privacy Policy governs the collection, use, retention, storage, protection, management, and deletion of Users’ Personal Data across all departments within the Company. It ensures that every aspect of Personal Data handling, from initial collection to final deletion, adheres to the highest standards of security and compliance. All employees and contractors with access to this Personal Data must strictly follow this Policy. Additionally, the Policy guarantees that Personal Data is managed consistently and securely throughout the Company, maintaining the privacy and trust of our Users.

3. LEGAL BASIS FOR PROCESSING:

The Company processes Personal Data based on several legal grounds as outlined under the General Data Protection Regulation (GDPR). We process Personal Data to fulfill contractual obligations with our Users, such as managing accounts, processing transactions, and providing requested Services. Where required by law, we also process Personal Data to comply with legal obligations, including regulatory and reporting requirements. In instances where we rely on legitimate interests, we ensure that our processing activities are balanced against the rights and freedoms of our Users, such as for fraud prevention or enhancing our Services. Additionally, we may process Personal Data based on explicit consent obtained from Users for specific purposes, such as marketing communications.

4. WHAT PERSONAL DATA WE COLLECT

Personal Data: Information that can be used to directly or indirectly identify an individual. This includes but is not limited to:


Personal Data does not include data that has been anonymized or aggregated in a way that cannot identify a specific individual.

The Company does not knowingly collect Personal Data pertaining to children under the age of 18 or other individuals who are not legally able to use our Services. If we obtain actual knowledge that we have collected Personal Data from someone not allowed to use our Services, we will promptly delete it unless we are legally obligated to retain such data. Please contact us if you believe that we have mistakenly or unintentionally collected information from someone not allowed to use our Services.

5. COLLECTION, USE & DISCLOSURE OF PERSONAL DATA:

The Company collects and processes the Users’ Personal Data to ensure transparency and legality in each step:


6. CONSENT AND WITHDRAWAL OF CONSENT:

By providing Personal Data to the Company, Users are considered to have given their implicit consent to the collection, use, retention, storage, protection, and management of their Personal Data. This consent is valid until it is rescinded in writing or until the termination of the individual’s relationship with the Company.

Individuals wishing to withdraw their consent may do so at any time by following these specific steps:

  1. Contact us at:
    • Email: info@commerceplex.net – Send your withdrawal request via email for prompt processing.
    • Postal Address: Office No. 80-A, 5The Shires, Old Bedford Road, Luton, United Kingdom, LU2 7QA – For those who prefer or require a documented request.
  2. Include the Following Information in Your Request:
    • Full Name and Contact Information: To verify your identity and facilitate contact if necessary.
    • Account Information: Include your Account login ID / email address.
    • Specific Consents to Withdraw: Kindly specify which data uses or processing activities you are withdrawing consent for.
    • Signature: Include your signature with a postal request. For emails, type your full name.

Processing of the Withdrawal request: The Company aims to process all withdrawals of consent within thirty (30) working days from receipt of such request. The User will receive confirmation once the consent has been successfully withdrawn.

Impact of Withdrawal: Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. However, it may affect our ability to provide Users with certain services or products.

7. MARKETING COMMUNICATIONS:

Users may receive marketing communications from the Company via email, SMS, social media, or other channels. Users may opt out of receiving such communications at any time by following the instructions provided in the communications or by contacting the Company directly. Please note that even if Users opt-out of receiving marketing communications, they may still receive important transactional or service-related communications.

8. DATA SECURITY MEASURES:

The Company is committed to protecting the security and privacy of Users’ Personal Data. We have implemented appropriate technical, organizational, and administrative measures to safeguard Personal Data against unauthorized access, use, disclosure, alteration, or destruction. These measures include:

The Company reviews and updates its security measures periodically to ensure their effectiveness and compliance with applicable laws and regulations.

9. DATA RETENTION AND DELETION:

The Company retains Personal Data for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations, resolve disputes, and enforce agreements. The specific retention periods for different types of Personal Data depend on various factors, such as the nature of the data, the purpose for which it was collected, and applicable legal requirements.

Once the retention period has expired, or the Personal Data is no longer needed, the Company will securely delete, anonymize, or otherwise dispose of the data in accordance with its data retention and deletion policies.

10. RIGHTS OF USERS:

Users have the following rights regarding their Personal Data:

To exercise these rights, Users may contact the Company using the contact information provided in this Policy. The Company will respond to such requests promptly and in accordance with applicable laws and regulations.

11. INTERNATIONAL DATA TRANSFERS:

The Company may transfer Personal Data to countries outside the User's country of residence, including countries that may not provide the same level of data protection as the User's country. In such cases, the Company will take appropriate measures to ensure that the transferred Personal Data is adequately protected, in accordance with applicable data protection laws and regulations.

12. CHANGES TO THIS POLICY:

The Company reserves the right to update or modify this Privacy Policy at any time. Any changes will be effective upon posting of the updated Policy on the Company's Digital Platform. Users are encouraged to review this Policy periodically to stay informed about how the Company collects, uses, retains, and protects their Personal Data.

13. CONTACT INFORMATION:

If Users have any questions, concerns, or requests regarding this Privacy Policy or the Company's handling of their Personal Data, they may contact the Company at:

Email: info@commerceplex.net

Postal Address: Office No. 80-A, 5The Shires, Old Bedford Road, Luton, United Kingdom, LU2 7QA

14. GOVERNING LAW AND JURISDICTION:

This Privacy Policy shall be governed by and construed in accordance with the laws of the United Kingdom. Any disputes arising out of or in connection with this Privacy Policy shall be subject to the exclusive jurisdiction of the courts of the United Kingdom.