Last Updated: January 20, 2026

Company Name: Zhijiang Meizha Trading Co., Ltd.

Address: 1105 Room-12-0087, E-commerce Industrial Park, Building 1, No. 28-1, Donghu Avenue, Majia Dian Street, Zhijiang City, Yichang, Hubei Province, China

Authorized Director: Wang Xiangbin

Social Credit Code: 91420583MAK5K1XA1R

Email: service@mail.bix-lum.com

Phone: 19224686304

Thank you for choosing Bix-Lum Beauty and Personal Care products and services. As a company focused on the UK market, we strictly adhere to the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018, considering the protection of your personal data and privacy as our core responsibility. This policy aims to clearly inform you about how we collect, use, store, and share your personal data, as well as your data rights and the safeguards in place. If you have any questions, please feel free to contact our customer service email at service@mail.bix-lum.com, or reach out to us during our customer service hours (Monday to Friday, 9:00 AM to 6:00 PM UTC+8:00).

This policy applies to the personal data processing activities generated during your use of Bix-Lum products and services (including purchasing facial care, lip care, body care, and hair care products, consulting customer service, tracking orders, etc.).

1. Collection Scope and Legal Basis of Personal Data

1.1 Scope of Data Collection

We adhere to the "data minimization" principle and collect only the necessary personal data to provide services. The specific data includes:

• Order and Delivery Data: Name, delivery address, contact number, payment account information, and order details. This data is used for order processing, arranging shipment within 3-5 working days, tracking logistics (delivery within 7-10 working days after shipment), and after-sales support. It is essential for fulfilling the transaction contract.
• Consultation and Service Data: Your inquiries sent to customer service email, communication records, issue descriptions, and related documents (such as product photos). This data is used to provide accurate answers regarding product selection, logistics progress, and usage questions, improving service response efficiency.
• Technical Access Data: Device model, browser type, IP address, access time, and page browsing records (non-personally identifiable information). This data is used to optimize platform experience and ensure service stability, and this data cannot identify your personal identity.

We will not actively collect sensitive personal data (such as health status, biometric information) unless we have your explicit written consent and a legitimate purpose.

1.2 Legal Basis for Processing

We process your personal data on the following legal bases:

• Performance of Contract: To complete your order transactions, deliver products, and provide after-sales support, we must process your order and delivery data.
• User Consent: By proactively contacting us via email for consultation or submitting issues, you consent to us processing the communication data to provide the requested services.
• Legitimate Interests: We process technical access data to optimize services and ensure platform security, provided this does not harm your rights.

2. Use and Sharing Rules for Personal Data

2.1 Data Usage Limitations

The collected personal data will only be used for the following specified purposes, and we will never use it for unrelated purposes without your written consent:

1. Order Processing: To complete order processing, product delivery, and logistics tracking, ensuring timely delivery of products like amino acid facial cleanser and moisturizing lip balm.
2. Customer Service Response: To respond to your customer service inquiries, address product usage, order issues, logistics delays, etc.
3. Service Optimization: To enhance product and service experience, based on technical access data to improve page display and delivery efficiency.
4. Legal Obligations: To comply with legal obligations, such as cooperating with judicial authorities and regulatory bodies when required.

2.2 Data Sharing Regulations

We strictly limit data sharing and will never sell or lease your personal data to third parties. We will only share data in the following necessary situations:

• Logistics Partners: To fulfill product delivery, we will provide necessary information such as your name, delivery address, and contact number to logistics partners. These partners are required to sign confidentiality agreements and will only use the data for delivery purposes.
• Regulatory and Judicial Authorities: We will cooperate with the Information Commissioner’s Office (ICO), judicial authorities, and other regulatory bodies when required by law, providing the necessary information.

3. Data Storage and Security Measures

3.1 Storage Period and Method

We follow the "storage limitation" principle, storing personal data only for the period necessary to fulfill the purposes of collection:

• Order and Delivery Data: Stored until the order is completed and the after-sales period expires (usually the 14-day return/exchange period after delivery), after which it will be anonymized or securely deleted.
• Consultation and Service Data: Stored for 6 months after the issue is resolved, to enable traceability of service records, after which it will be securely deleted.
• Technical Access Data: Anonymized data may be retained for service optimization purposes, with a retention period not exceeding 12 months.

Data is stored on UK-based servers that comply with GDPR requirements, and encryption technology is used to ensure storage security.

3.2 Security Protection Measures

We implement multi-layered technical and management measures to protect the integrity and confidentiality of your personal data:

1. Technical Protection: Data transmission and storage are encrypted (SSL/TLS protocols), with firewalls and intrusion detection systems in place. We regularly conduct security vulnerability scans and fixes to defend against cyber-attacks.
2. Access Control: We strictly limit access to personal data, allowing only authorized personnel to access it for their job responsibilities. All actions are traceable, and employees must sign confidentiality agreements.
3. Emergency Response: We have an emergency plan for data breaches. If a data breach occurs, we will notify affected users and the ICO within 72 hours, take remedial measures, and pursue legal action if necessary.

4. Your Personal Data Rights

Under GDPR and UK data protection regulations, you have the following rights concerning your personal data, and we will provide convenient channels for you to exercise them:

• Right of Access: You can request to access the personal data we store and the processing records.
• Right to Rectification: If your data is incorrect (such as an incorrect delivery address), you can request us to correct it promptly.
• Right to Erasure (Right to be Forgotten): You can request the deletion of your personal data when the processing purpose has been fulfilled or if you withdraw consent (except where required by law).
• Right to Data Portability: You can request us to provide your personal data in a structured, readable format to facilitate transfer to another service provider.
• Right to Object: You can object to unnecessary data processing based on legitimate interests, and we will verify and stop the processing (without affecting existing orders).

To exercise these rights, you can submit a written request via our customer service email service@mail.bix-lum.com. We will verify and respond within 30 working days.

5. Additional Information and Compliance Commitment

1. Third-Party Responsibility: If you obtain our products through non-official channels (such as third-party resellers or unauthorized platforms), the risks related to personal data processing will be borne by the third party, and we are not responsible for user data in such scenarios.
2. Policy Updates: This policy will be optimized based on changes in laws, regulations, and business development. Updated versions will be published through official channels, and the new policy will take effect immediately after the publication. If you continue to use our products and services, you agree to the updated policy.
3. Compliance Accountability: We regularly conduct data protection compliance checks, record data processing activities, and ensure compliance with GDPR and the UK Data Protection Act 2018. We are subject to oversight by the Information Commissioner’s Office (ICO).

Bix-Lum is committed to safeguarding your personal data security with rigorous measures. Thank you for your trust and support. We will continue to provide you with high-quality beauty and personal care products and a compliant service experience!

Customer Service Email: service@mail.bix-lum.com
Customer Service Hours: Monday to Friday, 9:00 AM - 6:00 PM (UTC+8:00)