Privacy Policy


Last Updated: 2023-06-22
Welcome to MARVEL X LIMITED (“we,” “our,” or “us”). Your privacy is important to us.
At MARVEL X LIMITED (“we,” “our,” or “us”), we understand the importance of protecting your personal information and are committed to safeguarding your privacy. This Privacy Policy Statement outlines how we handle and process your data, and our commitment to compliance with UK and European General Data Protection Regulation (GDPR) requirements.
1. Introduction
Our Commitment to Data Protection
We take data handling seriously. Our dedication to safeguarding your information is at the core of our operations. We continually strive to implement robust measures to ensure that your data is handled securely and in compliance with applicable data protection laws.
ICO Registration
We are proud to be registered with the Information Commissioner’s Office (ICO), the UK’s independent authority for upholding information rights. This registration signifies our commitment to responsible and transparent data processing practices.
Adherence to ICO Guidance
As a registered data controller, we follow the guidance provided by the ICO to ensure compliance with data protection laws. The ICO’s expertise and resources play a crucial role in helping us navigate the complexities of data protection regulations.
2. Data Controller / Data Protection Officer (DPO)
Our Data controller at MARVEL X LIMITED, Unit 8 Oaktree Business Centre, Spitfire Way, South Marston Park, Swindon SN3 4TX, Wiltshire, United Kingdom is: Josh Bird,, 01793-574-505 is:
3. Personal Information We Collect
We may collect and process the following types of personal information:
Identity Information:
This includes your name, title, date of birth, and other identifiers.
Example: When you create an account on our website, we may collect your name and email address to set up your account.
Contact Information:
We may collect your email address, phone number, postal address, and other contact details.
Example: If you contact our customer support team, we may collect your email address and phone number to respond to your inquiry.
Example: When you sign up for our newsletter, we may collect information about your job title for newsletter content customization.
Transaction Information:
We collect details about products or services you purchase or inquire about.
Example: When you make a purchase on our website, we collect information about the products or services you are interested in.
Technical Information:
We automatically collect information about your IP address, browser type, device type, and other technical information through cookies and similar technologies.
Example: When you visit our website, we may collect technical information to optimize your browsing experience.
Usage Information:
We collect information about how you use our website and interact with our communications.
Example: We use analytics tools to understand how users navigate our website and interact with our content.
4. How We Use Your Personal Information
We collect and process personal information for specific, legitimate purposes. These include, but are not limited to:
Providing and Improving Services:
We use your information to provide and enhance our products and services.
Example: We use your contact information to deliver the products you purchase from us.
We use your information to communicate with you about your account, orders, or inquiries.
Example: We may send you order updates or respond to your inquiries via email or phone.
Marketing Communications:
With your consent, we may send you marketing and promotional materials.
Example: If you opt-in to receive marketing emails, we may send you information about our latest products and promotions.
Legal and Regulatory Compliance:
We may process your information to comply with legal and regulatory obligations.
Example: We may retain transaction information for tax and accounting purposes.
Research and Analysis:
We use data for research and analysis to improve our offerings.
Example: We analyse user behaviour on our website to identify areas for improvement and user preferences.
5. Legal Basis for Processing
We process your personal information under the legal bases provided by GDPR, including contractual necessity, legal obligation, consent, and legitimate interests. Our processing activities are always conducted in accordance with applicable law.
We process your personal information based on the following legal grounds:
Contractual Necessity:
To fulfil a contract with you or take steps at your request prior to entering into a contract.
Example: When you make a purchase, we use your information to process and fulfil your order.
Legal Obligation:
To comply with legal and regulatory obligations.
Example: We may disclose information in response to a lawful request from law enforcement or government authorities.
For specific purposes where your consent is required.
Example: We seek your consent before sending you marketing communications.
Legitimate Interests:
Pursuing our legitimate business interests, provided they are not overridden by your rights and interests.
Example: We may use your information to analyse website usage patterns for business optimization.
6. Sharing Your Personal Information
We may share your information with trusted partners and service providers who assist us in delivering our products and services. These parties are contractually bound to uphold the same level of data protection and security as we do.
We may share your personal information with:
Service Providers and Business Partners:
We may engage trusted third-party service providers and business partners who assist us in delivering our products and services.
Example: We may use a shipping company to deliver products you’ve ordered.
Legal and Regulatory Authorities:
We may disclose information when required by law or regulatory authorities.
Example: We may provide information in response to a valid court order or governmental request.
7. International Data Transfers
If we transfer your personal information outside of the European Economic Area (EEA), we will ensure adequate safeguards are in place to protect your data, in accordance with GDPR requirements.
Example: If we use a cloud service provider located outside the EEA, we will ensure they have appropriate data protection measures in place.
8. Your Rights
Under GDPR, you have several rights, including:
You can request access to your personal information.
Example: You can request a copy of the personal information we hold about you.
You can request corrections to inaccuracies in your personal information.
Example: If you believe there is an error in your contact information, you can request it to be corrected.
You can request the deletion of your personal information.
Example: If you no longer want to maintain an account with us, you can request deletion.
You can request restrictions on the processing of your personal information.
Example: If you believe the information, we hold is inaccurate, you can request a restriction on its use.
You can request a copy of your personal information in a structured, machine-readable format.
Example: You can request a copy of your transaction history in a format that can be used with other systems.
You can object to the processing of your personal information.
Example: You can object to receiving marketing communications.
9. Security
We implement appropriate technical and organizational measures to protect your personal information.
Example: We use encryption to secure data transmitted over the internet.
10. Data Retention
We retain your personal information for as long as necessary to fulfil the purposes for which it was collected.
Example: We retain transaction information for a period of [X] years for accounting and tax compliance.
11. Automated Decision-Making
We do not engage in automated decision-making, including profiling, that produces legal effects concerning you or similarly significantly affects you.
Example: We do not use automated systems to make decisions that would have legal consequences for you.
12. Marketing Communications
We may use your personal information to send you marketing communications, where permitted by law and relevant to our business relationship. You have the right to opt out of receiving marketing communications at any time by following the instructions provided in our communications.
Example: If you no longer wish to receive marketing emails, you can unsubscribe via the link provided in the email.
13. Third-Party Links
Our website may contain links to third-party websites or services. We are not responsible for the privacy practices or content of these third-party sites. We encourage you to read the privacy policies of any linked sites you visit.
Example: If you click on a link to a third-party website from our site, their privacy practices will apply.
14. Data Subject Requests
To exercise your rights under GDPR, or to make a data subject request, please contact our Data Protection Officer using the contact information provided in Section 10.
Example: If you wish to access your personal information or request a correction, please contact our Data Protection Officer.
15. Complaints
If you believe that your rights under GDPR have been violated, you have the right to lodge a complaint with a supervisory authority.
Example: If you believe we have mishandled your personal information, you can file a complaint with the Information Commissioner’s Office (ICO).
16. Changes to This Privacy Notice
We may update this Privacy Notice to reflect changes to our data practices or for other operational, legal, or regulatory reasons. We will provide notice of any updates on our website.
Example: If we make significant changes to our data handling practices, we will notify you through our website.
17. Data Protection Officer Contact
If you have any questions, concerns, or requests regarding this Privacy Notice or our data processing practices, please contact our Data Protection Officer at:
× How can I help you?