Privacy Policy of www.phixclothing.com

Last updated: 10 September 2025

Who We Are

In this policy, “PHIX”, “we”, “us” or “our” refers to the PHIX brand operated by the entities set out below. We explain how we collect, use, share and protect your personal information when you use our products, services and website.

Website operator statement:
In the United Kingdom, Europe, and all other countries outside the United States, www.phixclothing.com is operated by Rock N Roller Limited (trading as PHIX). In the United States, www.phixclothing.com is operated by Phix Group International, Inc. (trading as PHIX), a company registered in Delaware with operations in New Jersey. PHIX GROUP INTERNATIONAL, INC. is a wholly owned subsidiary of Rock N Roller Limited, a company incorporated in the United Kingdom.

What This Policy Covers

This policy covers situations where PHIX accesses, collects, stores, processes, uses, discloses or transfers your personal information in paper or electronic form when you interact with our Website, products and services. It does not cover services offered by third parties acting on their own account (e.g., social networks, payment providers in their own capacity); those are governed by their own policies.

Applicability by Region

• UK & European Union Users (UK GDPR / GDPR)
• Users in Switzerland
• Users in Brazil (LGPD)
• California (CCPA/CPRA)
• Virginia (VCDPA)
• Colorado (CPA)
• Connecticut (CTDPA)
• Utah (UCPA)

Types of Data We Collect

We collect Personal Data you provide directly and data collected automatically when you use the Website. This may include: identifiers (name, email, phone, shipping/billing address), order and payment info (processed by third-party processors), account details, communications, marketing preferences, device/browser data, IP address, general geolocation, and usage data (page views, clicks, scrolls, session duration). Where permitted and applicable, we may collect advertising identifiers and use cookies/trackers (see Cookies & Tracking).

Data marked as mandatory (e.g., checkout essentials) is needed to provide our services. If you do not provide mandatory data, we may be unable to fulfill your order or deliver certain features.

How & Where We Process Your Data

Security Measures

We implement appropriate technical and organizational measures to protect Personal Data against unauthorized access, disclosure, alteration or destruction.

Where We Process

Processing occurs at our operational locations (UK/US) and at service providers’ locations (which may be outside your country). See International Transfers for safeguards.

Retention

We retain Personal Data for as long as necessary for the purposes described in this policy (e.g., contract performance, legal obligations, accounting/tax), and thereafter as required by law or legitimate interests. Once retention expires, we securely delete or anonymize data.

Purposes & Legal Bases

We process Personal Data to:

• provide and operate the Website, process orders, handle payments and deliveries;
• customer support, returns, warranty and dispute handling;
• fraud prevention and security (including bot/spam protection and traffic distribution);
• analytics, performance, and product improvement;
• marketing, remarketing and personalisation (where permitted);
• comply with legal obligations and enforce our rights.

Legal bases (UK/EU & comparable regimes): consent; performance of a contract; legal obligation; legitimate interests (e.g., security, service improvement, limited direct marketing); and, where applicable, vital/public interest when provided by law.

Automated Decision-Making

We do not make decisions based solely on automated processing that produce legal or similarly significant effects about you. If that changes, we will disclose the logic involved and your rights to request human review where required.

Detailed Processing (Services & Vendors)

Depending on your location and usage, we may use the following categories of services (which process some Personal Data and often use cookies/Trackers):

Platform services & hosting

• Shopify (storefront/checkout infrastructure).

Payments & checkout partners

• Shopify Payments, PayPal, Klarna (UK & many international orders outside the US are collected by Rock N Roller Limited and processed via these providers). Klarna’s terms and privacy apply; late fees may apply. See our Terms & Conditions for links.
• Global-E (certain markets and U.S. orders may be collected and processed via Global-E as our cross-border partner). Some non-UK markets for Rock N Roller Limited may also be processed by Global-E. See Global-E’s terms during checkout.

Advertising, analytics & remarketing

• Google Analytics (including Advertising features)
• Meta Pixel / Meta Events
• Microsoft Advertising & Clarity (heatmaps/session)
• TikTok Pixel/Remarketing
• AdRoll / NextRoll
• Google Tag Manager (tag orchestration)

Customer messaging & support

• Klaviyo (emails/SMS, segments, personalization)
• Zendesk Widget (support/contact)

Security, traffic optimization & bots

• Cloudflare (CDN, DDoS/bot mitigation, performance)

Each provider processes data under its own privacy terms as a controller or processor. Specific data elements can include identifiers, order metadata, usage data, device/browser data, IP, and cookie IDs. See providers’ notices during checkout or via their sites.

Cookies & Tracking

This Website uses cookies and similar technologies for core functionality, analytics, performance, security and advertising (including Shopify, Google Analytics, Meta Pixel, and others listed above). For details and choices, see our Cookie Policy. Where required (e.g., EU/UK), we obtain consent via a cookie banner and respect your preferences. You can also use browser controls and industry opt-outs.

Do Not Track & Global Privacy Control

Some browsers transmit “Do Not Track” signals. Because there is no industry standard for DNT, we do not respond to DNT. We do recognize Global Privacy Control (GPC) signals where required by law.

Notice of Financial Incentives (California)

We may offer discounts, rewards, or similar benefits in exchange for your Personal Information (e.g., email sign-up offers). Participation is voluntary, and you may opt out at any time (e.g., unsubscribe). We make a reasonable, good-faith estimate that the value of your data to us is related to the value of the offer or discount presented. The material terms of any program will be presented at sign-up.

International Transfers

We may transfer Personal Data to countries outside your own (e.g., between the UK, EU/EEA and U.S.). Where required, we use appropriate safeguards such as Standard Contractual Clauses (and the UK Addendum/International Data Transfer Agreement as applicable), supplementary measures, and partner certifications. You may request more information via the contact details below.

Your Rights & How to Exercise Them

Depending on your location, you may have rights to access, correct, delete, restrict or object to processing, portability, withdraw consent, and the right to lodge a complaint with your supervisory authority. For U.S. states listed below, you may also opt out of “sale”/“sharing” and targeted advertising, and exercise other specific rights.

How to submit a request: Email us at info@phixclothing.com. We will verify your identity and respond within the time limits required by law. We will not discriminate against you for exercising your rights.

Country/State Specific Information

UK & EU Users (UK GDPR / GDPR)

For Users in the UK/EU, processing is based on the legal grounds described above and your local law rights apply (access, rectification, erasure, restriction, portability, objection, and where relevant, withdrawal of consent). You may also lodge complaints with your local authority (e.g., ICO in the UK).

Users in Switzerland

Swiss Users benefit from rights under the FADP, including access, correction, objection (including restriction of processing and deletion), portability, and information about disclosures. Requests can be sent to the contact details below.

Users in Brazil (LGPD)

Under the LGPD, Brazilian Users have rights including confirmation of processing, access, correction, anonymization/blocking/deletion of unnecessary or non-compliant data, portability, deletion of consent-based data, information about shared parties, revocation of consent, complaint to ANPD, objection to unlawful processing, and review of automated decisions, subject to legal exceptions.

California Consumers (CCPA/CPRA)

We provide notice at collection, disclose categories of Personal Information processed (identifiers, commercial info, internet activity, geolocation, employment-related info, inferences; and limited sensitive info where strictly necessary, e.g., payment transaction fields), purposes, retention, and disclosures. You may request access (including portability), deletion, and correction; opt out of “sale”/“sharing”; and limit use/disclosure of sensitive Personal Information to necessary purposes. We honor Global Privacy Control (GPC) signals where applicable.

Virginia Consumers (VCDPA)

Rights include access, correction, deletion, portability, and opt-out of targeted advertising, sale, and certain profiling. You may appeal any refusal within the statutory period.

Colorado Consumers (CPA)

Rights include access, correction, deletion, portability, and opt-out of targeted advertising, sale, and certain profiling. We honor universal opt-out mechanisms as required (e.g., GPC where applicable).

Connecticut Consumers (CTDPA)

Rights include access, correction, deletion, portability, and opt-out of targeted advertising, sale, and certain profiling. We recognize GPC signals where required.

Utah Consumers (UCPA)

Rights include access, deletion, portability, and opt-out of sale and targeted advertising. (UCPA does not include a correction right.)

Other U.S. State Privacy Laws

Residents of additional U.S. states (including, for example, Texas, Oregon, Indiana, Iowa, Montana, Tennessee, Delaware, and New Jersey) may have rights to access, correct, delete, or obtain a copy of their Personal Data, and to opt out of “sale” or “targeted advertising,” similar to those described above. To exercise these rights, email info@phixclothing.com. Where required, we honor recognized universal opt-out mechanisms (e.g., Global Privacy Control) for relevant processing.

Security, System Logs & Legal Requests

For operation/maintenance and security, we and our providers may log technical data (e.g., IP address, request metadata). We may disclose Personal Data where required by law or to protect our rights/users/safety.

Children’s Privacy

Our Website is not directed to children and we do not knowingly collect Personal Data from children under 13 (or under the age of digital consent where applicable). If you believe a child has provided us Personal Data, please contact info@phixclothing.com and we will delete it.

Typical Retention Periods (Illustrative)

• Orders & invoices: up to 6 years (accounting/tax).
• Customer support: up to 3 years after last interaction.
• Marketing preferences: until you opt out or withdraw consent.
• Security logs: typically 12–24 months, unless needed longer for security/legal reasons.

Changes to this Policy

We may update this policy from time to time and will post changes here. If changes materially affect your rights, we will take additional steps required by law (e.g., seeking consent where needed). Please review periodically.

Contact Information

General Contact / Data Controller Contact:
info@phixclothing.com  |  Contact Us

Related Pages

• Terms & Conditions
• Cookie Policy

Back to top ↑