Privacy policy

We at www.massagechair-inada.com take the protection of personal data seriously. We process your personal information in full compliance with the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018. This Privacy Policy explains how we collect, use, store, transfer, and protect your personal data when you interact with us, including via our website or mobile applications.

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Please review it periodically.

1. Controller and Contact Information

MedicaRelax Holding LTD, the authorised European dealer of Inada Family Co. Ltd., is the data controller for personal data collected via this website.

You may contact our Data Protection Officer at:
Email: contact@massagechair-inada.com

All personal data provided to us is used strictly to process orders, provide customer support, and deliver promotional offers when consent is given.

2. Categories of Personal Data We Process

We generally collect your personal data directly from you, including:

• Contact forms: first name, last name, phone number, email address, and any questions submitted.

• Orders: product details, name, delivery address, billing information, payment method, phone number, email address, and company name if ordering as a business.

• Online behaviour: cookies and similar technologies to personalise your experience and improve our services.

We do not collect sensitive personal data (as defined by GDPR) or data from minors under the age of 16.

You may also review the privacy policies of third-party services we use, such as:

• Facebook: https://www.facebook.com/about/privacy

• Google: https://policies.google.com/privacy

3. Purpose and Legal Basis for Processing

We use your personal data for the following purposes:

a) Order Fulfilment and Customer Support

• Receiving, validating, shipping, and invoicing orders.

• Handling cancellations, complaints, returns, and reimbursements according to legal requirements.

• Responding to questions regarding your orders.

This processing is generally necessary to perform a contract with you or to comply with legal obligations.

b) Service Improvement
We may analyse your shopping behaviour, invite you to complete surveys, or conduct market research with partners. This is based on our legitimate interest in improving services, ensuring your rights and freedoms are not impacted.

c) Marketing Communications
With your consent or based on legitimate interest, we may send communications including emails, SMS, push notifications, or personalised recommendations about products, offers, and promotions relevant to your interests.

You can withdraw consent or opt-out at any time via unsubscribe links or by contacting us.

d) Defending Legitimate Interests
We may use or share information to protect our rights, prevent fraud, ensure website security, and manage risks. Legal bases include legitimate interest and compliance with applicable laws.

4. Data Retention

We generally retain your personal data for up to five years, unless legal requirements or legitimate business interests require longer storage. You may request deletion at any time, subject to any necessary retention for legal obligations.

5. Data Sharing

We may share your data with:

• Companies within the MedicaRelax Holding LTD group.

• Delivery and courier service providers.

• Payment processors and banks.

• Marketing, telemarketing, and research partners.

• IT service providers or other partners offering joint services.

We may also share data with public authorities if legally required or necessary to protect legitimate interests. All third-party access is regulated by contract and data protection safeguards.

6. International Transfers

Your personal data may be processed or stored in the EU or in countries outside the EU that may not have been deemed to provide an adequate level of data protection.

We ensure these transfers are protected using contractual safeguards, such as Standard Contractual Clauses (SCCs) or recognised certification mechanisms.

7. Data Security

We implement technical and organisational measures to protect your personal data, including:

• Secure servers with redundancy.

• Encrypted payment transactions via HTTPS using TLS 1.2 or higher.

However, transmission of data over the Internet cannot be completely secure, and we cannot guarantee security outside our control.

8. Your Rights

Under GDPR, you have the right to:

• Access your personal data.

• Rectify inaccurate or incomplete data.

• Delete personal data, subject to legal retention obligations.

• Restrict or object to processing.

• Data portability.

• Object to automated decision-making or profiling.

• Lodge a complaint with a supervisory authority.

You can exercise these rights by contacting: contact@massagechair-inada.com

Additional notes:

• Requests are free unless manifestly unfounded or excessive.

• We aim to respond within one month, with possible extensions up to three months for complex cases.

• We may verify your identity before fulfilling requests.

9. Automated Decision-Making

We do not make decisions solely by automated processing unless it is necessary to perform a contract, authorised by law, or based on your consent.

10. Updates

This Privacy Policy may be updated periodically. Any significant changes will be communicated on the website or via email.

11. Contact

For questions regarding your personal data or this Privacy Policy, please contact:
Email: contact(@)massagechair-inada.com