Website Privacy and Cookies Policy

This is the privacy and cookies policy for Crux Inc ("Crux," "we," "our," or "us"), covering your use of our website at https://cruxlegacy.com/ (our “Website”) and the services we offer. This policy applies globally and details how we process your personal information in accordance with UK GDPR regulations.

If you continue to browse and use the Website and our services, you agree to this policy together with our terms and conditions (our “Terms”). If you do not agree, you must stop using the Website and services immediately. We may update this policy from time to time, and the revised version will apply from its publication date. Check this page regularly for updates.
Our Website must not be used by anyone under the age of 18 without parental or guardian consent.

About Crux Global Ltd
This Website is operated by CRUX GLOBAL LTD, a private limited company registered in England and Wales (Company Number 16006514). Our registered office is located at 20, Wenlock Road, N1 7GU, London, United Kingdom.
You can contact us regarding data protection matters at: support@cruxlegacy.com. Please use this email if you wish to exercise any of your legal rights concerning your data or have questions about our data processing.
1. Personal Data We Collect
We consider personal data to be any data that can identify you as an individual person. We do not consider data where your identity has been irretrievably removed or anonymous data to constitute personal data.
We may collect the following types of information:
* User Profile Information: Such as username, password, site and purchase history, and your marketing preferences.
* Basic Information: Name, gender, date of birth, and marital status.
* Contact Information: Email address, telephone number, and shipping addresses.
* Site Activity Information: Including how you use the Website, its features, and our other services.
* Technical Information: Such as the internet browser and computer you use, your IP address, your location, information about the cookies you have on your device, and plugins you have enabled in your browser. We may also receive this information if you use other websites that utilize our cookies.
We collect this data as you:
* Use our Website and its associated features.
* Use our services and buy our products and services.
* Request to receive marketing materials.
* Contact, communicate, or correspond with us.
We do not collect any sensitive personal information about you. This means we do not collect information in the following areas: religious and philosophical beliefs, race and ethnicity, sex life, health information, sexual orientation, genetic and biometric data, political opinions, and information about trade union membership. You agree not to tell us or send us this type of information.
Sources of Personal Data: We collect data directly from you as you use our Website, request services, or contact us. We may also receive data from third-party sources like analytics providers (e.g., Google and Facebook), search engines (e.g., Google and Bing), and advertising companies.
2. How We Use Your Data
We will not use your data in any way that breaches UK law.
We may use your personal data:
* To fulfill our business goals.
* To contact you in relation to your use of our Website and services.
* Where we need to comply with a legal obligation (e.g., performing a contract or disclosing information to the Courts).
* Where we need to use your data to perform our contractual obligations with you (e.g., to provide you with the services this Website offers). * To create aggregated statistics.
* Where we have a legitimate interest to use your personal data and your fundamental rights and interests do not override these interests.
You may receive promotional messages from us in cases where it is legally permissible for us to do so. Whenever we send you marketing content, you have the option to unsubscribe at any moment either by following the opt-out instructions provided within the marketing materials or by contacting us directly at hello@cruxlegacy.com to express your preferences. We will not sell your personal data to third parties unless you consent.
We retain your data only for the period necessary to achieve the purpose for which it was collected, except when legal obligations necessitate a longer retention period (such as for tax, accounting purposes, or if there is a reasonable likelihood of litigation).
Where relevant, our parent company and other companies in our group may also have access to the data we store.
3. Third Party Content
Please note that our website contains links to third-party sites and may include features that integrate with external services (for example, payment processors). When you interact with these links or utilize third-party features, the terms, privacy, and cookie policies governing those experiences will differ from ours and they will apply to your use of those sites and services. We encourage you to review the terms, privacy policies, and cookie policies of any third-party sites you visit or features you use to ensure you understand how your information will be handled.
We occasionally outsource certain aspects of our website, its functionalities, or our services to third-party providers. This subcontracting may necessitate the sharing of your personal information with these entities. Whenever such sharing occurs, we guarantee compliance with legal standards, ensuring that your data is securely handled and used strictly for predefined purposes, in alignment with our directives.
4. Data Security
We prioritize the security of your personal information with the highest regard, employing various technical safeguards to protect against the loss, accidental deletion, alteration, or unauthorized access of your data.
In addition, we have established protocols to be enacted in the event of a security breach. Should any breach occur, we are committed to fulfilling our legal responsibilities, including notifying both you and the UK's Information Commissioner's Office (ICO) as required.
5. International Data Transfers
Some of our third-party providers are based outside the UK. When transferring data internationally, we ensure compliance with UK GDPR by using Standard Contractual Clauses and other appropriate safeguards.
6. Your Legal Rights
In specific situations, you are entitled to exercise the following legal rights regarding the data we hold about you:
* Right to Access: You have the right to request a copy of the personal data we hold about you.
* Right to Rectification: If any personal data we hold about you is inaccurate or incomplete, you have the right to have it corrected.
* Right to Erasure: Under certain conditions, you can request the deletion of your personal data from our records.
* Right to Restriction of Processing: You have the right to request a restriction on how we process your personal data, under certain circumstances.
* Right to Data Portability: You can request the transfer of your personal data to another organization or to you, in a structured, commonly used, and machine-readable format, in certain situations.
* Right to Object: You have the right to object to the processing of your personal data in some cases, including where personal data is processed for direct marketing purposes.
* Right to Withdraw Consent: If we are processing your personal data based on your consent, you have the right to withdraw that consent at any time, though this will not affect the lawfulness of processing based on consent before its withdrawal.
* Rights Related to Automated Decision Making and Profiling: You have rights in relation to automated decision making, including profiling, ensuring you can obtain human intervention, express your point of view, and contest the decision.
Please note that these rights may be limited in some circumstances, for example, if fulfilling your request would reveal personal data about another person, or if you ask us to delete data which we are required by law to keep or have compelling legitimate interests in keeping.
You can find more about these rights on the ICO website.
If you wish to exercise any of your data protection rights, please contact us at hello@thecruxapp.com. While we may impose a fee for the exercise of these rights where legally permissible and justified, be assured that any such fee will be reasonable. Additionally, we may request proof of your identity to confirm your request. This verification step is mandatory when you seek to exercise your right to access your personal data or your right to data portability, ensuring the security and proper handling of your information.
7. Complaints
If you have concerns about our data processing, please contact us first at hello@cruxlegacy.com. You also have the right to file a complaint with the Information Commissioner's Office (ICO). 8. Cookies
Our website (https://thecruxapp.com/) uses cookies and similar technologies to offer a personalized experience, improve performance, and provide relevant content. Cookies are small data files placed on your device to help us recognize your preferences and improve your overall experience.
We are committed to transparency about how we use cookies. This policy outlines the types of cookies we use, why we use them, and how you can manage your preferences.
8.1 Types of Cookies We Use
We categorize cookies into the following groups:
* Strictly Necessary Cookies (Legal Basis: Legitimate Interest)
Essential for our website to function properly, enabling core features like security and session management.
Example: Session cookies that maintain your login status.
* Preference Cookies (Legal Basis: Consent)
Store your settings (e.g., language preferences) to provide a more personalized experience. Example: Storing your preferred language or region.
* Analytical/Performance Cookies (Legal Basis: Consent)
These cookies help us understand how visitors interact with our website, allowing us to improve its performance.
Example: Google Analytics to track page views and user behavior.
* Targeting/Advertising Cookies (Legal Basis: Consent)
Track your activity across our website to deliver relevant advertisements based on your interests. These cookies are often placed by third-party services such as Meta (Facebook and Instagram) for targeted advertising. Example: Meta (Facebook and Instagram) cookies used to show relevant Crux ads on your social media feed.
8.2 How We Obtain Your Consent Upon your first visit to our website, you will see a cookie consent banner explaining the types of cookies we use. You can accept all cookies, reject non-essential cookies, or customize your preferences.
Cookie Preference Center: You can manage your cookie preferences or withdraw your consent at any time through our Cookie Settings Page. This can be accessed from the footer of our website.
8.3 Managing Cookies
You can manage and control cookies through your browser settings. Please note that disabling certain cookies may impact the functionality of our website.
Instructions for Common Browsers:
* Google Chrome
* Mozilla Firefox
* Safari
* Microsoft Edge
For additional information, visit the ICO website.
8.4 Cookies We Use 8.5 Third-party Cookies and Links Some features on our website rely on third-party services like Google Analytics, Meta (Facebook and Instagram). These third parties may set cookies on your device. Please refer to their privacy policies for details: * Google Analytics Privacy Policy * Meta (Facebook and Instagram) Privacy Policy 8.6 Cookie Expiry and Retention Cookies we place on your device will expire after the period necessary to fulfill their purpose. For example: * Session cookies expire when you close your browser. * Persistent cookies have a set expiry period (e.g., 90 days for Meta advertising cookies). Enhancements: * Meta-Specific Cookies: Included cookies like fr and sb that Meta uses for targeted advertising and login security. * Detailed Consent Explanation: Clear consent mechanism and Cookie Preference Center mentioned. * User-Friendly Links: Direct links to browser settings and third-party privacy policies for transparency.