Privacy Policy
How GaitExo collects, uses, and protects your personal data
Contents
1. Who We Are and How to Contact Us
GaitExo is operated by Changsha ZOHOTECO Technology Co., Ltd, a company registered in Changsha City, Hunan Province, with its principal place of business at Building 1716, Kaiyuan Road, Changsha, Hunan Province, People's Republic of China.
For the purposes of the EU General Data Protection Regulation (GDPR) and applicable data protection laws, GaitExo acts as the data controller for personal data collected through this website (gaitexo.com).
Contact for Data Protection Matters
EU Representative (Article 27 GDPR)
As GaitExo is established outside the European Economic Area (EEA) but offers services to individuals in the EEA, we are in the process of appointing an EU representative as required under Article 27 of the GDPR. Until such appointment is confirmed, data subjects in the EEA may contact us directly at privacy@gaitexo.com.
2. Personal Data We Collect and Why
We collect only the personal data that is necessary for our legitimate business purposes. Below is a description of the categories of data we collect, the purposes for which we collect them, and the legal basis under GDPR.
| Category | Data Collected | Purpose & Legal Basis | Retention |
|---|---|---|---|
|
Contact & Inquiry Data
From contact forms
|
Full name, company name, job title, business email, phone number, country, message content, inquiry type |
To respond to business inquiries, send product information and pricing, and follow up on partnership discussions. Art. 6(1)(f) -- Legitimate Interests |
3 years from last contact |
|
Website Usage Data
From analytics tools
|
IP address (anonymised), browser type, pages visited, time on page, referring URL, device type |
To understand how visitors use our website and improve its content and usability. Art. 6(1)(a) -- ConsentOnly collected after cookie consent is given. |
26 months (GA default) |
|
Communication Records
From direct communications
|
Email correspondence, WhatsApp messages, call records (if applicable) |
To maintain records of business communications, manage ongoing partnerships, and ensure continuity of service. Art. 6(1)(f) -- Legitimate Interests |
5 years from end of relationship |
Contact & Inquiry Data
From contact forms
Full name, company name, job title, business email, phone number, country, message content, inquiry type
To respond to business inquiries and follow up on partnership discussions.
Website Usage Data
From analytics tools
IP address (anonymised), browser type, pages visited, time on page, referring URL, device type
To understand how visitors use our website and improve its content and usability.
Communication Records
From direct communications
Email correspondence, WhatsApp messages, call records (if applicable)
To maintain records of business communications and manage ongoing partnerships.
3. Cookies and Similar Technologies
We use cookies and similar tracking technologies on gaitexo.com. Below is a description of the cookies we use:
Strictly Necessary Cookies
Analytics Cookies
| Cookie | Provider | Purpose | Duration |
|---|---|---|---|
| _ga, _gid | Google Analytics | Website visitor statistics and usage analysis. Data is anonymised. | 26 months |
Your Cookie Choices
You can manage your cookie preferences at any time by clicking the "Cookie Settings" link in the footer of this website. You can also disable cookies through your browser settings, although this may affect the functionality of certain features.
4. Who We Share Your Data With
We do not sell your personal data to third parties.
We may share your data with the following categories of recipients only to the extent necessary:
Service Providers (Data Processors)
Business Partners
With your knowledge and in the context of a specific inquiry, we may share relevant contact details with our manufacturing partners or logistics providers solely for the purpose of fulfilling your request.
Legal Requirements
We may disclose personal data if required to do so by law, court order, or governmental authority, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
5. International Transfers of Personal Data
Important: GaitExo is based in the People's Republic of China. Submitting personal data through our website involves an international data transfer.
When you submit personal data through our website, that data will be transferred to and stored on servers and systems located in China and/or in countries where our service providers operate (including the United States, where Google's servers are located).
For transfers of personal data from the European Economic Area (EEA) to countries that have not received an adequacy decision from the European Commission (including China and the United States), we rely on the following safeguards:
Standard Contractual Clauses (SCCs) adopted by the European Commission under Article 46(2)(c) of the GDPR.
We process only the minimum necessary personal data, retain it for defined periods, and implement appropriate technical and organisational security measures as described in Section 7.
We acknowledge that China is not currently subject to an EU adequacy decision. By submitting your personal data through our website, you acknowledge this transfer. If you have concerns about cross-border data transfers, please contact us at privacy@gaitexo.com before submitting your information.
6. Your Data Protection Rights
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have the following rights under applicable data protection law:
Right of Access
Request a copy of the personal data we hold about you, along with information about how we process it.
Right to Rectification
Request correction of any inaccurate or incomplete personal data we hold about you.
Right to Erasure
Request deletion of your personal data where it is no longer necessary for the purpose for which it was collected.
Right to Restriction
Request that we restrict processing of your personal data in certain circumstances.
Right to Data Portability
Receive your personal data in a structured, machine-readable format and transmit it to another controller, where processing is based on consent or contract.
Right to Object
Object to processing of your personal data where we rely on legitimate interests as the legal basis.
Right to Withdraw Consent
Where processing is based on consent (e.g. non-essential cookies), withdraw that consent at any time without affecting prior lawful processing.
Right to Lodge a Complaint
Lodge a complaint with your local data protection authority.
Relevant Data Protection Authorities
Exercise Your Rights
Contact us at privacy@gaitexo.com. We will respond within 30 days of receiving your request. We may need to verify your identity before processing your request.
7. How We Protect Your Data
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, disclosure, alteration, or destruction. These measures include:
HTTPS Encryption
All data transmitted through our website is encrypted using HTTPS/TLS protocols.
Access Controls
Strict internal access controls limiting who within our organisation can access personal data.
Regular Reviews
Periodic review of our data handling practices and security measures to ensure ongoing compliance.
We retain personal data only for as long as necessary for the purposes described in this policy, after which it is securely deleted or anonymised.
Please note that no method of internet transmission or electronic storage is completely secure. While we take reasonable precautions, we cannot guarantee absolute security of your data.
8. Children's Privacy
Our website is a business-to-business (B2B) platform intended solely for use by professionals and organisations in the medical device, rehabilitation, and healthcare sectors.
We do not knowingly collect personal data from individuals under the age of 18.
If you believe a minor has submitted personal data through our website, please contact us at privacy@gaitexo.com and we will promptly delete such data.
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our data practices, legal requirements, or business operations.
When we make material changes, we will update the "Last Updated" date at the top of this page. We encourage you to review this policy periodically.
Continued use of our website after changes are posted constitutes your acceptance of the updated policy.
Questions About This Policy?
If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please do not hesitate to contact our data protection team.