Ghythrelsrximae
Legal

Privacy Policy

Last updated: 17 April 2026

1. Controller Identity and Contact Details

The data controller responsible for this website is:

Ghythrelsrximae
200 Park Ave, New York, NY 10166, USA
Phone: +1 212-578-2211
Email: office@ghythrelsrximae.world

2. Scope of This Policy

This Privacy Policy explains what personal data we collect when you visit ghythrelsrximae.world, how we use it, on what legal bases, how long we retain it, with whom we share it, and what rights you have under the General Data Protection Regulation (GDPR, EU 2016/679) and other applicable data protection laws.

3. Data We Collect

3.1 Data You Provide Directly

When you submit the contact form, we collect:

  • Full name
  • Email address
  • The content of your message
  • Record of your GDPR consent checkbox and the date/time of submission

3.2 Data Collected Automatically

When you browse the website, our hosting infrastructure may automatically collect:

  • IP address (anonymised where technically possible)
  • Browser type and version
  • Operating system
  • Pages visited and time of visit
  • Referring URL

This data is used solely for server security, error logging, and aggregated traffic analysis. It is not used to identify you personally.

3.3 Cookie Data

Please refer to our Cookie Policy for detailed information about cookies used on this website.

4. Purposes and Legal Bases for Processing

We process personal data only where we have a lawful basis to do so:

  • Responding to your enquiry — Legal basis: your consent (Article 6(1)(a) GDPR), given via the GDPR checkbox on the contact form.
  • Security and fraud prevention — Legal basis: our legitimate interests (Article 6(1)(f) GDPR) in protecting our website and users.
  • Legal compliance — Legal basis: compliance with a legal obligation (Article 6(1)(c) GDPR) where applicable.

5. Data Retention Periods

  • Contact form submissions: retained for up to 24 months from the date of submission, or until you request deletion, whichever comes first.
  • Server logs: retained for a maximum of 30 days before automatic deletion.
  • Cookie consent records: retained for 12 months in your browser's local storage.

6. Data Sharing and Third Parties

We do not sell, rent, or trade your personal data. We may share data with:

  • Hosting providers: who store our website files and server logs. These providers are contractually bound to process data only on our instructions and to maintain appropriate security measures.
  • Legal authorities: if required by law, court order, or to protect our legal rights.

No data is transferred outside the European Economic Area (EEA) or to countries without an adequate level of data protection unless appropriate safeguards (such as Standard Contractual Clauses) are in place.

7. Security Measures

We implement technical and organizational measures to protect your personal data, including:

  • HTTPS encryption across the entire website
  • Restricted access to personal data on a need-to-know basis
  • Regular review of data handling practices
  • Prompt deletion of data once retention periods expire

8. Your Rights Under GDPR

If you are located in the European Economic Area, you have the following rights:

  • Right of access: to obtain a copy of the personal data we hold about you.
  • Right to rectification: to have inaccurate data corrected.
  • Right to erasure: to request deletion of your data where it is no longer necessary.
  • Right to restriction: to limit how we process your data in certain circumstances.
  • Right to data portability: to receive your data in a structured, machine-readable format.
  • Right to object: to object to processing based on legitimate interests.
  • Right to withdraw consent: where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at: office@ghythrelsrximae.world. We will respond within 30 days.

You also have the right to lodge a complaint with a supervisory authority. In the United States, relevant authorities include state attorneys general offices. EU residents may contact their national data protection authority.

9. Children's Privacy

This website is not directed at children under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be indicated by a revised "Last updated" date at the top of this page. We encourage you to review this policy periodically.

11. Contact

For any privacy-related questions or requests, contact us at:
office@ghythrelsrximae.world