Holyn Textile

Privacy Policy

Data protection and privacy commitment for B2B manufacturing and trading services

Last Updated: January 2024 | English / 中文

🔒 Security & Compliance Certifications

🛡️ ISO 27001
🇪🇺 GDPR Ready
🔐 SSL Encrypted
📊 SOC 2 Type II
🏢 Enterprise Grade
Third-Party Audited

🔗 Related Policies:

📋 Terms of Service 🍪 Cookie Policy ⚙️ Data Processing 🔒 Security Policy 👤 Contact DPO

Table of Contents

🏢 Overview

1.1 Our Commitment

Shenzhen Holyn Textile Co., Ltd. ("Company", "we", "us") is committed to protecting the privacy and security of personal data collected through our B2B manufacturing and trading services. This Privacy Policy explains how we collect, use, and safeguard your information.

1.2 Scope of Application

This policy applies to all personal data processing activities related to our business relationships, including website interactions, quotation requests, order processing, and ongoing commercial communications.

🛡️ Privacy Principles

  • • Transparency in data collection and usage
  • • Minimal data collection - only what's necessary
  • • Strong security measures and access controls
  • • Respect for individual privacy rights

📊 Data Collection GDPR Art. 6

2.1 Business Contact Information +
  • Contact Details: Names, job titles, email addresses, phone numbers
  • Company Information: Business name, address, industry, size
  • Communication Records: Email exchanges, meeting notes, call records
  • Legal Basis: Legitimate business interests and contract performance
2.2 Order & Transaction Data +
  • Product Specifications: Design requirements, technical specifications
  • Commercial Terms: Pricing, quantities, delivery requirements
  • Payment Information: Bank details, payment records (processed by secure third parties)
  • Shipping Details: Delivery addresses, logistics preferences
2.3 Technical & Website Data +
  • Usage Analytics: Page views, interaction patterns, session duration
  • Device Information: IP address, browser type, operating system
  • Cookies: Functional and analytical cookies (see Cookie Policy)
  • Security Logs: Access logs for security monitoring

⚙️ Data Usage

3.1 Primary Business Purposes

  • Order Processing: Managing quotations, samples, production, and delivery
  • Customer Service: Responding to inquiries and providing technical support
  • Quality Control: Maintaining production records and compliance documentation
  • Account Management: Managing customer relationships and credit terms

3.2 Communication & Marketing

  • Business Updates: Product announcements, industry news, company updates
  • Service Improvements: Gathering feedback and enhancing service quality
  • Compliance Notifications: Regulatory updates and policy changes

📧 Marketing Opt-Out

You can unsubscribe from marketing communications at any time using the unsubscribe link in emails or by contacting our Data Protection Officer.

🤝 Data Sharing

4.1 Business Partners

We may share data with trusted manufacturing partners, logistics providers, and quality inspection services solely for order fulfillment and service delivery.

4.2 Service Providers

  • Cloud Infrastructure: Secure data hosting and backup services
  • Payment Processors: Banks and payment gateways for transaction processing
  • Logistics Partners: Shipping and customs clearance services
  • Quality Inspectors: Third-party inspection and testing services

4.3 Legal Requirements

Data may be disclosed when required by law, court orders, or to protect our legal rights and the safety of our business operations.

🔒 Data Security

5.1 Technical Safeguards

  • Encryption: Data encrypted in transit (SSL/TLS) and at rest (AES-256)
  • Access Controls: Role-based access with multi-factor authentication
  • Network Security: Firewalls, intrusion detection, and monitoring systems
  • Regular Updates: Security patches and vulnerability assessments

5.2 Organizational Measures

  • Staff Training: Regular privacy and security awareness programs
  • Data Minimization: Collecting only necessary data for business purposes
  • Incident Response: Defined procedures for security breach management
  • Third-Party Audits: Regular security assessments by independent auditors

🚨 Security Incident Response

In the event of a data breach, we will notify affected parties within 72 hours and provide guidance on protective measures.

⚖️ Your Rights GDPR Ch. 3

🎯 Individual Privacy Rights

📋 Right to Access: Request copies of your personal data

✏️ Right to Rectification: Correct inaccurate information

🗑️ Right to Erasure: Request deletion of your data

⏸️ Right to Restrict: Limit processing of your data

📤 Right to Portability: Transfer data to another provider

🚫 Right to Object: Opt-out of certain processing activities

6.1 Exercising Your Rights

To exercise any privacy rights, contact our Data Protection Officer at [email protected]. We will respond within 30 days and may require identity verification.

6.2 Limitations

Some rights may be limited when data processing is necessary for contract performance, legal compliance, or legitimate business interests that override individual privacy interests.

📅 Data Retention

7.1 Retention Periods

  • Active Customers: Data retained for duration of business relationship
  • Inactive Accounts: 3 years after last business activity
  • Financial Records: 7 years for tax and audit compliance
  • Marketing Data: Until consent is withdrawn or 2 years of inactivity

7.2 Secure Disposal

When retention periods expire, data is securely deleted using industry-standard data destruction methods with verification certificates.

🌍 International Transfers

8.1 Cross-Border Data Flows

As a global manufacturer, we may transfer data internationally to fulfill orders and provide services. All transfers are protected by appropriate safeguards.

8.2 Transfer Safeguards

  • Adequacy Decisions: Transfers to countries with adequate protection levels
  • Standard Contractual Clauses: EU-approved data transfer agreements
  • Binding Corporate Rules: Internal data protection standards
  • Certification Schemes: Industry-recognized privacy frameworks

🍪 Cookies & Tracking

9.1 Cookie Categories

  • Essential Cookies: Required for website functionality and security
  • Analytical Cookies: Usage statistics and performance monitoring
  • Functional Cookies: Enhanced features and user preferences
  • Marketing Cookies: Personalized content and advertising (with consent)

9.2 Cookie Management

You can control cookie preferences through our cookie banner or browser settings. Disabling essential cookies may affect website functionality.

🔗 Third-Party Services

10.1 Integrated Services

  • Payment Processors: Secure payment gateways with PCI DSS compliance
  • Cloud Providers: Enterprise-grade hosting with data protection agreements
  • Analytics Tools: Website analytics with privacy-compliant configurations
  • Communication Platforms: Email and messaging services with encryption

10.2 Third-Party Responsibilities

Third-party services operate under their own privacy policies. We select partners with strong privacy commitments and regularly review their practices.

🔄 Policy Updates

11.1 Change Notification

We will notify customers of material privacy policy changes via email and website notices at least 30 days before implementation.

11.2 Continued Use

Continued use of our services after policy updates constitutes acceptance of revised terms. You may withdraw consent or terminate services if you disagree with changes.

📞 Contact Information

Privacy & Data Protection Contacts

🛡️ Data Protection Officer

📧 [email protected]

📞 +86 755 1234 5678

Response Time: 24-48 hours

⚖️ Legal & Compliance

📧 [email protected]

💬 WhatsApp: +86 138 0013 8000

Business Hours: 9:00-18:00 CST

Shenzhen Holyn Textile Co., Ltd.

Address: Shenzhen, Guangdong Province, China

Business Registration: [Registration Number]

EU Representative: [EU Contact Details]

UK Representative: [UK Contact Details]

Supervisory Authority: Local Data Protection Authority