Privacy policy

Privacy Protocol (Privacy Policy)

Last Updated: 19 may 2026

Welcome to The Ctrl Z (accessible via our website and user interfaces). Your digital privacy is a paramount command in our system architecture. This Privacy Protocol outlines how we collect, process, utilize, and protect your personal data when you interact with our e-commerce platform, purchase our premium apparel, or communicate with our support console.

By accessing our website and utilizing our services, you explicitly consent to the data collection and processing protocols detailed below.

1. Information We Collect

To compile your orders and deliver a seamless storefront experience, we collect two primary categories of data:

A. Data You Provide Directly (Consensual Data)

  • Identity & Contact Details: Your full name, delivery address, billing address, phone number, and email address.

  • Transaction Metrics: Details regarding the specific designs, sizes, and quantities you purchase, along with your order history.

  • Communication Logs: Information you submit when filing a support ticket, messaging our chat console, or filling out a contact form.

B. Data Collected Automatically (System Telemetry)

  • Device Metrics: Your IP address, browser type, operating system, and device identifiers.

  • Usage & Navigation Patterns: Pages viewed, time spent on the storefront, click paths, search queries within our store, and referring website links.

2. How We Use Your Information

We treat your personal data with strict logic. We only process your data for clear, legitimate purposes, including:

  • Fulfillment Operations: Processing transactions, validating payments, arranging domestic logistics/courier delivery, and facilitating exchanges or returns.

  • System Communications: Dispatching automated transactional messages, such as order confirmations, tracking links, and critical system status updates.

  • Customer Support Architecture: Resolving system bugs, sizing conflicts, and addressing queries submitted to our support terminal.

  • Security & Optimization: Mitigating fraudulent transactions, protecting our infrastructure from malicious cyber-attacks, and improving our storefront’s layout and performance.

3. Cookies and Tracking Technologies

Our store utilizes "Cookies" and similar digital tracking tags to optimize user navigation and store context (such as preserving items inside your shopping cart).

  • Functional Cookies: Essential for fundamental storefront operations, security validation, and user authentication.

  • Analytical Cookies: Allow us to evaluate traffic data, monitor store performance, and understand which apparel designs generate the highest engagement.

  • Managing Cookies: You have complete control. You can configure your internet browser settings to block or delete cookies entirely; however, disabling cookies may cause certain storefront workflows (like the checkout process) to encounter errors.

4. Third-Party Services & Data Processors

We do not sell, rent, or trade your personal data to third parties for their marketing purposes. We only share data with essential, vetted third-party service providers (Data Processors) to compile your requests:

  • E-Commerce Infrastructure: Our platform is hosted on Shopify Inc., which securely stores your data behind advanced firewalls.

  • Payment Gateways: All financial transactions are routed through integrated, RBI-authorized, secure payment processors. We do not store or see your raw credit card numbers, UPI PINs, or banking credentials.

  • Logistics & Delivery Partners: Your name, phone number, and shipping address are securely transmitted to our domestic courier partners to ensure accurate package delivery.

5. Data Security Protocols

We implement rigorous administrative, technical, and physical security measures to safeguard your personal data against unauthorized access, loss, alteration, or disclosure. All data transmissions during checkout are encrypted utilizing secure socket layer technology (SSL).

While we apply commercial-grade security code to protect your information, please note that no method of transmission over the Internet or electronic storage is 100% impenetrable.

6. Your Rights Under Indian Data Regulations

In compliance with the Digital Personal Data Protection (DPDP) Act, you possess comprehensive rights over your digital personal data:

  • Right to Access & Summary: You have the right to request a summary of the personal data we hold about you and the processing activities performed.

  • Right to Correction & Erasure: You can request that we update inaccurate information or permanently erase your personal data from our active databases (subject to legal or tax bookkeeping requirements).

  • Right to Withdraw Consent: If you have opted into promotional communications, you can withdraw your consent instantly by clicking the "Unsubscribe" link in any email or contacting our console.

7. Data Retention

We retain your personal data only for as long as strictly necessary to fulfill the operational purposes outlined in this policy, satisfy our warranty obligations, or comply with prevailing statutory Indian tax and accounting laws.

8. Contact Information & Grievance Officer

If you have any questions regarding this Privacy Protocol, wish to exercise your data rights, or need to log a formal grievance, please contact our designated Grievance Officer at:

Store Console: The Ctrl Z Email Link: support.thectrlz@gmail.com Physical Headquarters: 

The Ctrl z

[Asadtala, Nandigram, Haldia]

[East Medinipur, West Bengal, 721656]

India