The Office of Matthew Nguyen

Site Info (GDPR/Privacy Notice/Legal Notice)[UK]

The Zen Zone (referred to as "we," "us," or "our") operates the website [thezenzone.space] (the "Site"). We are committed to protecting the privacy and security of your personal data. This Privacy Policy sets out how we collect, use, and process your personal data in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Legal Notice

Business Name: The Zen Zone by Matthew Nguyen| Entity: Sole Proprietorship | Address: 25 Rome Road, Miles Platting, Manchester, M40 7RL | VAT: n/a

Consent

By using the Site, you agree to the collection and use of information in accordance with this policy.

Centralised Data Managment

Our Site is hosted by IONOS. We rely on the security measures and infrastructure provided by IONOS to protect your data.

  • IONOS as Data Processor: When hosting your website data, IONOS acts as our data processor. They employ high security standards, including ISO 27001 certified EU-based data centres, encryption, and strict access controls.
  • Your Responsibility: While IONOS manages the underlying infrastructure security, we (Matthew Nguyen Headquarters) remain the Data Controller and are ultimately responsible for the legal compliance and security of the applications and data we place on the platform.
  • International Transfers: We ensure any data transfers outside the UK via IONOS (if applicable and chosen by us) are protected by approved safeguards, such as UK-compliant Standard Contractual Clauses.

Data Collection & Use

We collect several categories of personal data to operate and improve our services, including Identity Data (name), Contact Data (email, address, phone), Financial Data (payment details processed securely by third parties), Transaction Data, Technical Data (IP address, browser info), and Usage Data (how you use the site).

We only process your data when we have a lawful basis under UK GDPR. This basis is typically one of the following:

  • Contract: To fulfil orders and provide services you have requested.
  • Legal Obligation: To comply with UK law, such as retaining financial records.
  • Legitimate Interest: To manage our business, prevent fraud, improve our services, and send you direct marketing about similar products if you are an existing customer (soft opt-in).
  • Consent: For specific non-essential activities, such as sending general marketing newsletters or placing non-essential cookies. You can withdraw consent at any time.

Cookies & Data Sharing

  • Cookies: We use cookies and similar technologies (tags, beacons) for essential site functions and analytics. Non-essential cookies require your explicit consent in line with UK e-Privacy rules. Please refer to our separate Cookie Policy for full details.
  • Sharing Data: We share your data with Service Providers (e.g., payment processors, web hosting, analytics providers) only as necessary for them to perform services on our behalf and under strict contract terms.
  • International Transfers: If your data is transferred outside the UK, we ensure it is protected by appropriate safeguards, such as approved Standard Contractual Clauses, as required by UK GDPR.

Data Sharing is strictly monitored & regulated internally, requiring consent from our Treasury Officer.

Under UK GDPR, you have extensive rights over your personal data. You may exercise any of these rights by contacting us using the details below. We aim to respond to requests within one calendar month.

Your Rights & Complaints

Your rights include the right to:

  • Be Informed: Know how and why your data is used (this policy).
  • Access: Request a copy of the personal data we hold about you (Subject Access Request).
  • Rectification: Have inaccurate or incomplete data corrected.
  • Erasure (Right to be Forgotten): Request that your data be deleted where there is no legal reason for us to continue processing it.
  • Restrict Processing: Request that we temporarily limit the use of your data.
  • Data Portability: Receive your personal data in a machine-readable format for transfer to another service provider.
  • Object: Object to processing based on legitimate interests, including for direct marketing.
  • Withdraw Consent: Withdraw any consent previously given for specific processing activities.

If you are unsatisfied with how we have handled your data, you have the right to lodge a complaint with the UK supervisory authority: the Information Commissioner's Office (ICO) at www.ico.org.uk.

Logo

©The Zen Zone by Matthew Nguyen (2026)

We need your consent to load the translations

We use a third-party service to translate the website content that may collect data about your activity. Please review the details in the privacy policy and accept the service to view the translations.