Privacy Policy – GRNOX

Last Updated: November 2025

At GRNOX (“we”, “our”, “us”), your privacy is a core part of our commitment to transparency and responsible data handling. This Privacy Policy explains what information we collect, how we use it, and how we keep it secure when you visit grnox.com

By using our website, you agree to the practices described in this Policy.

1. Information We Collect

We collect only the data necessary to process your order, deliver your items and improve your shopping experience.

A. Information You Provide

We may collect:

  • Full name

  • Shipping and billing address

  • Email address

  • Phone number

  • Order details and purchase history

  • Information submitted through our contact form or customer support channels

B. Automatically Collected Information (Shopify & Browsing Data)

When you browse our site, our platform (Shopify) and related tools may automatically collect:

  • IP address

  • Device and browser information

  • Session data

  • Cart information

  • Basic analytics and performance data

C. Marketing & Performance Tracking

We use tracking tools to measure website performance and improve advertising, including:

  • Google Analytics

  • Meta Pixel (Facebook/Instagram)

  • TikTok Pixel

These tools may collect anonymous or pseudonymous analytics data and behavioural information. Where required by law, we rely on your consent for these tools.

2. How We Use Your Information

We use your data for the following purposes:

  • Processing and fulfilling your orders

  • Delivering shipments and providing tracking updates

  • Verifying payments and preventing fraud

  • Communicating with you regarding orders, questions or support

  • Improving website performance, usability and security

  • Running advertising and remarketing campaigns (where permitted)

  • Responding to inquiries submitted through our contact form or via email/WhatsApp

We do not sell, rent or trade your personal information to third parties.

3. Legal Basis for Processing (GDPR)

For customers located in the European Economic Area (EEA), we process personal data under the following legal bases:

  • Contractual necessity – to process and deliver your orders and provide customer support

  • Legitimate interests – for fraud prevention, security, analytics and improving our services

  • Consent – for marketing communications and non-essential cookies or tracking technologies

You may withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

4. Sharing Your Information

We only share your information with trusted service providers where necessary to operate our business and complete your order, including:

  • Shopify (store and hosting platform)

  • Payment gateways (for secure payment processing)

  • Logistics partners (for delivery and tracking, such as DHL)

  • Analytics and advertising platforms (Google, Meta, TikTok)

These partners process your data on our behalf and are required to handle it securely and in accordance with applicable data protection laws.
We do not share your data with any external parties for resale or independent commercial data exchange.

5. Cookies & Tracking Technologies

Our website uses cookies and similar technologies to:

  • Enable basic website functions (such as cart and checkout)

  • Secure user sessions and prevent fraud

  • Analyse site performance and traff

  • Improve marketing effectiveness and advertising relevance

You can manage your cookie preferences through our cookie banner (where available) and your browser settings.
For more information, please refer to our separate Cookie Policy.

6. Data Retention

We retain personal data only for as long as necessary for the purposes set out in this Policy or as required by law.

  • Order and billing information may be kept for a period required by applicable tax and accounting laws.

  • Contact and support information may be retained for a reasonable period to follow up on your requests.

  • Marketing data is retained until you unsubscribe or withdraw your consent.

After the relevant retention period expires, personal data is securely deleted or anonymised.

7. Data Security

We use industry-standard protections to safeguard your data, including:

  • SSL/TLS encryption on our website

  • Secure, PCI-compliant payment gateways

  • Restricted access controls and role-based access

  • Shopify’s certified security infrastructure

Although no system is 100% risk-free, we take reasonable and appropriate measures to protect your information against loss, misuse, unauthorised access or disclosure.

8. Your Rights (GDPR Users)

If you are located in the EU/EEA, you have certain rights in relation to your personal data, including:

  • Right of access – to request a copy of the personal data we hold about you.

  • Right to rectification – to request correction of inaccurate or incomplete data.

  • Right to erasure (“right to be forgotten”) – to request deletion of your data in certain circumstances.

  • Right to restriction of processing – to request that we limit the processing of your data in specific cases.

  • Right to data portability – to receive your data in a structured, commonly used and machine-readable format, where applicable.

  • Right to object – to object to processing based on legitimate interests, including profiling, or to direct marketing.

  • Right to withdraw consent – where processing is based on consent, you may withdraw it at any time.

Some of these rights may be limited where we have a legal obligation to retain certain records (for example, for tax or accounting purposes).

To exercise any of these rights, please contact us using the details provided in the Contact Us section below.

You also have the right to lodge a complaint with your local data protection authority if you believe that your rights have been violated.

9. Third-Party Links

Our website may include links to external websites or services that are not operated by GRNOX.
We are not responsible for the privacy practices or content of those third-party sites. We recommend that you review their privacy policies before providing any personal information.

10. Children’s Privacy

Our services are not intended for individuals under the age of 18.
We do not knowingly collect personal data from minors. If we become aware that information has been collected from a child, we will take steps to delete it as soon as reasonably possible.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements or business operations.
Any updates will be published on this page with a new “Last Updated” date. We encourage you to review this Policy periodically.

12. Contact Us

For questions regarding this Privacy Policy or how we process your data, you can contact us at:

GRNOX Customer Support
Email: sales@grnox.com
WhatsApp: +90 539 749 24 32

Business Address (USA)
GRNOX
N Gould St, Ste R
Sheridan, WY 82801
United States

Logistics & Fulfilment Hub (Turkey)
İkitelli OSB, K Blok No: 1
34490 Başakşehir / İstanbul
Turkey