Privacy Policy
Last updated:
Data controller
Chakrelliedholai, with business address at Kirkegata 10A, 0153 Oslo, Norway, is the controller for personal data described in this policy. Correspondence identifiers: info@chakrelliedholai.world, contact@chakrelliedholai.world, support@chakrelliedholai.world, help@chakrelliedholai.world.
Scope and legal bases
We process personal data to operate the website, respond to requests, deliver products, meet accounting obligations, and improve our services. Depending on the activity, we rely on GDPR Article 6(1)(b) for contractual steps, Article 6(1)(c) for legal duties, Article 6(1)(f) for legitimate interests such as fraud prevention, and Article 6(1)(a) when you provide consent for optional marketing communications or non-essential cookies.
Geographic scope and online advertising
Chakrelliedholai is established in Norway and primarily serves customers in the European Economic Area. Online advertising, where used, may be shown based on general location signals (such as country or region) and campaign settings. We do not use health-related sensitive categories from advertising platforms to target individuals. Measurement and remarketing tags, if activated, rely on the cookie choices recorded in your browser and are described in the Cookie Policy.
Dietary supplements and messaging
Personal data linked to inquiries about Navio is processed for customer service and order fulfilment. We do not use such data to infer medical conditions. Marketing for food supplements is limited to product facts, availability, and lawful commercial messaging. We avoid claiming that supplements treat or prevent disease, and we honour opt-outs for electronic marketing where consent or soft opt-in rules apply.
Categories of personal data
| Category | Examples | Purpose |
|---|---|---|
| Identity and contact | Name, email address, phone number if supplied | Order handling, customer support, delivery coordination |
| Transaction | Order references, payment status from payment partners | Fulfillment, refunds, accounting |
| Technical | IP address, device type, log timestamps | Security monitoring, troubleshooting, analytics if allowed |
| Communication | Messages you send through forms or email | Responding to inquiries and documenting agreements |
Retention
We keep order and accounting records for the period required by Norwegian bookkeeping laws, generally five to ten years depending on the record type. Marketing consents and related profiles are stored until you withdraw consent. Security logs rotate on a short cycle unless needed for investigations. Inactive marketing contacts are reviewed at least every twenty-four months.
Your rights
You may request access, rectification, erasure, restriction, portability, and objection where applicable. You may withdraw consent at any time without affecting prior processing that was lawful. To exercise rights, email any of the contact identifiers listed above with a description of your request. You may lodge a complaint with Datatilsynet in Norway or your local supervisory authority if you reside in the European Economic Area.
International transfers
If we transfer personal data outside the European Economic Area, we use safeguards such as Standard Contractual Clauses or adequacy decisions, and we document transfer impact assessments where required.
Security measures
We apply HTTPS across the site, role-based access to internal tools, pseudonymised analytics where possible, and periodic review of subprocessors. No method of transmission is completely secure; we encourage strong passwords on your accounts and prompt reporting of suspected misuse.
Automated decision-making
We do not use automated decision-making that produces legal effects concerning you.
Changes
We update this policy when our processing activities or legal obligations change. Material updates will be highlighted on this page with a refreshed last updated date.