Virilion Labs Ltd. (“Virilion”, “we”, “our”, “us”) owns and operates www.virilion.co.nz. We value your privacy and are committed to transparent handling of your personal information. This policy explains what we collect, how we use it, when we share it, and the choices you have—especially when we use our e-commerce platform’s advertising integration at its highest data-sharing setting to reach the broadest possible audience.
1. Information we collect
| Category | Typical examples |
|---|---|
| Device & usage data | IP address, browser type, time zone, cookies, referring/exit pages, clicks, scrolls, time on page. |
| Order & account data | Name, billing and delivery address, email, phone, payment method (tokenised), items purchased, customer notes. |
| Marketing preferences | Email/SMS opt-ins, survey responses, promotion entries. |
| Advertising event data | Pseudonymised identifiers (e.g., hashed email or phone), purchase value, currency, click IDs and device signals sent by our store’s advertising connector when its maximum data-sharing mode is enabled. |
We collect information directly from you, automatically via cookies and similar technologies, or from transactional partners (e.g., payment processors).
2. How we use your information
-
Contract fulfilment – process orders, payments, delivery, returns and warranty claims.
-
Store operations & security – load the store, diagnose bugs, prevent fraud, maintain backups.
-
Customer communications – order confirmations, shipping updates, support replies, policy notices.
-
Marketing & promotions – send newsletters and special offers (with opt-out), run competitions, personalise on-site content.
-
Advertising & audience expansion – share event data (see Section 3) so advertising networks can match, measure and optimise ads, create custom and look-alike audiences, and suppress irrelevant ads.
-
Analytics & product research – analyse aggregated or pseudonymised data to improve our products, services and user experience.
-
Legal compliance – keep records required under the New Zealand Privacy Act 2020, Fair Trading Act 1986 and, where applicable, overseas laws.
3. When and why we share information
We do not sell your personal information. We disclose it only in the circumstances below—always under confidentiality agreements or equivalent safeguards.
| Recipient type | Purpose |
|---|---|
| E-commerce platform provider | Hosts our online store, processes orders and payments, provides data-sharing tools. |
| Advertising & analytics partners | Receive pseudonymised identifiers and event data via our store’s advertising connector (set to “maximum” sharing) so they can deliver, measure and optimise our ads across their properties. |
| Operational service providers | Couriers, payment gateways, email/SMS senders, IT infrastructure, professional advisers—each receives only the data necessary to perform their function. |
| Authorities & legal parties | Disclosed where required by law, court order, or to protect our rights, property or safety. |
We never disclose personal information to any third party for their own independent marketing campaigns.
4. Cookies, pixels & similar technologies
We and our partners use cookies, pixels, local storage and device fingerprinting to:
-
remember your preferences and keep you signed-in;
-
understand how you browse and shop;
-
deliver and measure ads on other websites and social platforms;
-
limit the frequency of repetitive ads.
Your choices
-
Adjust browser settings to block or delete cookies.
-
Use industry opt-out pages such as youronlinechoices.eu or optout.aboutads.info.
-
Use the opt-out or preference tools offered by major ad networks.
Blocking cookies may reduce site functionality.
5. International data transfers
Some service providers store or process data in countries outside New Zealand (e.g., the USA, Canada, Singapore, European Economic Area). When we transfer data internationally, we rely on contractual clauses, certification schemes or other recognised safeguards to ensure your information remains protected.
6. Your rights
-
Access & correction – receive a copy of, or update, your personal information.
-
Deletion / erasure – request we delete certain data (subject to legal retention duties).
-
Object / restrict – stop direct marketing or restrict certain processing activities.
-
Data portability – receive an electronic copy in structured format (GDPR only).
-
Withdraw consent – at any time, for processing that relies on consent.
7. Data retention
-
Orders & accounting records: 7 years for tax and audit.
-
Marketing profiles: until you unsubscribe or 24 months after your last interaction, whichever is sooner.
-
Advertising event data: retained by ad networks under their own retention schedules, usually 180–720 days.
8. Minors
Our products and Site are intended for adults (18+). We do not knowingly collect or process personal information from children.
9. Changes to this policy
We may revise this policy to reflect operational, legal or regulatory changes. An updated version will be posted here with a new “Last updated” date.
By using our Site, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use and sharing of your information as described above—including the use of the advertising integration at its highest data-sharing setting for audience expansion and personalised advertising.
