Privacy Policy

Introduction

This privacy policy (“Policy”) explains how 2XU Pte. Ltd. (“we”, “us”, “our”) collects, uses, and discloses your Personal Data while you browse our website(s) as well as when you interact with our different platforms, portals and applications using your Personal Data. For the purposes of this Policy, “Personal Data” means all data which is defined to be “personal data” or equivalent under applicable data protection laws, and all information the collection, use, disclosure or processing of which is subject to applicable data protection laws, in particular the Personal Data Protection Act 2012 (“PDPA”). By using our website(s) or any of our platforms, portals, and applications, you agree to the terms of this Policy.

 

Personal Data We Collect

These are the categories of Personal Data that we may collect directly or indirectly from you:

  • Identification and Contact Information: This includes your name, email address, address, telephone number, birth date, social media identifiers and handles, your device fingerprint, billing and shipping address, the IP address of your browser, and account login details.
  • Order and Transaction Information: This includes payment details such as credit details and payment platform details (handled via secure payment processors), bank account number, order history, shipping and billing address, order tracking number, transaction ID, invoice ID, and preferences (such as sizing or product interests).
  • Device and Usage Information: This includes information about your device or browser that gives us an idea about your browsing behaviour or device usage, device identifiers, IP addresses, operating system, date and time of use, the referral URL (the site from which you came), data stored on the device when access is granted, log information when access to the device (such as the camera) is granted, and browsing behaviour via cookies or similar technologies.
  • Preference Information: This includes records of your consent to receive marketing communications, newsletter sign-ups, preferred language, log-in location, wish list items, preferred shipping address, browsing preferences, and related preferences.
  • We only collect Personal Data reasonably necessary for business purposes or required by law. Where needed under PDPA, we will seek your consent before collecting sensitive or additional Personal Data.

 

Purposes for Collection, Use, and Disclosure

Your Personal Data is collected and used for the following purposes:

  • Process Orders and Deliver Services: We use your data to process purchases, arrange deliveries, process payments, and provide customer support for your orders.
  • Account Management: If you register an account, we use your information to maintain your user account, verify your identity during login, and facilitate features like saved preferences and order history.
  • Communications: We may use your contact information to send service-related communications (e.g., order confirmations, shipping updates) and to respond to your inquiries or requests to our customer service.
  • Marketing (with Consent): With your consent, we may send promotional emails or SMS about new products, special offers, or events. You can withdraw such consent anytime by using the unsubscribe mechanism provided or contacting us (see Contact Us below). Per PDPA guidelines, we will not use your Personal Data for marketing unless you have given consent.
  • Improvement of Services: We analyse how customers use our website and services to improve user experience, product offerings, and site functionality. This may include using aggregated, anonymized data for analytics.
  • Legal and Regulatory Compliance: Where necessary, we will use or disclose personal data to comply with legal obligations, such as verifying identities for payment processing, complying with regulators’ requirements, or responding to lawful requests by public authorities.

We will notify you and seek additional consent if we need to use your Personal Data for purposes beyond the above, as required by law.

 

Disclosure of Personal Data

We respect the confidentiality of your Personal Data. However, we may disclose or share some of your data with trusted third parties under these circumstances:

  • Service Providers: We share relevant data with third-party partners who help us fulfil the purposes described above – for example, logistics providers (couriers) to deliver your orders, payment processors to handle secure transactions, email service platforms to send communications, or IT/cloud service providers that host our website. These parties are contractually obligated to handle your data securely and only for our specified purposes.
  • Affiliates and Business Partners: We may share data with our affiliated companies or authorized distributors in Singapore for business continuity, product fulfillment, or joint marketing (only with your consent for marketing).
  • Professional advisors: We may share Personal Data with our professional advisors, such as our auditors, lawyers, and insurers.
  • Legal Requirements: We may disclose personal data if required to do so by law or in good faith belief that such action is necessary to (i) comply with legal obligations or requests from government authorities, (ii) enforce our terms and conditions or protect our rights, (iii) investigate fraud or security issues, or (iv) protect the safety of our customers or the public.

When disclosing Personal Data, we ensure recipients commit to confidentiality obligations and security standards per the PDPA’s requirements.

 

Transfer of Data Overseas

Generally, we store Personal Data on secure servers located in Singapore. If it is necessary to transfer your Personal Data outside of Singapore (for instance, using a cloud service or an overseas logistics partner), we will ensure that the recipient provides a standard of data protection comparable to the requirements of the PDPA. We will take appropriate measures, such as contractual safeguards, to protect your Personal Data during cross-border transfers.

 

Protection of Personal Data

We implement reasonable security measures to protect your data from unauthorized access, collection, use, disclosure, copying, modification, disposal, or similar risks. These measures include:

  • We use Secure Sockets Layer (SSL) encryption for all data transmissions on our website (you will see “https” in our URL).
  • Encryption or tokenization of sensitive payment information (we do not store full credit card details on our servers).
  • Restricted access controls: Only authorized staff who require your data to perform their duties have access to Personal Data and are trained on confidentiality obligations.
  • Regular security audits and the use of up-to-date security software to guard against vulnerabilities or breaches.

While we strive to protect your Personal Data, please note that no method of transmission over the Internet or electronic storage is entirely secure. However, we will continuously review and enhance our security measures to ensure your data is reasonably safeguarded.

 

Retention of Personal Data

We will retain your Personal Data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law or for any other legal or business purposes. We will put in place measures such that your Personal Data in our possession or under our control is destroyed and/or anonymised as soon as it is reasonable to assume that (i) the purpose for which that personal data was collected is no longer being served by the retention of such personal data; and (ii) retention is no longer necessary for any other legal or business purposes..

 

Your Rights and Choices

  • Access and Correction: You have the right to request access to personal data we hold about you and to request corrections of any inaccuracies. Upon request, we will provide you with your data in our possession or control and correct any error or omission as required under the PDPA. Please note that we may need to verify your identity before processing such requests, and there may be circumstances under which we are allowed by law to refuse your request (in which case we will inform you of the reason).
  • Withdrawal of Consent: You have the right to withdraw any consent you have given us to collect, use, or disclose your Personal Data. For example, you may withdraw consent for marketing emails by unsubscribing, or contact us to withdraw consent for other uses. We will respect your instructions and cease such usage within a reasonable time. Do note that withdrawing consent for essential data uses (e.g., order processing) may affect our ability to serve you – we will advise if so.
  • Account Deletion: If you wish to deactivate your account with us and have your data removed from our systems, please contact us. We will evaluate and respond to such requests by our legal obligations (for instance, we may retain certain transaction records if required for legal compliance).

 

Cookies and Similar Technologies

Our website(s) uses cookies and similar technologies to enhance your browsing experience (for example, to remember your preferences and shopping cart, or to collect analytics on site usage). Cookies are small text files placed on your device.

We use both session cookies (which expire when you close your browser) and persistent cookies (which remain for a defined period or until deleted) to keep you logged in, save your language or regional preferences, and analyse site traffic.

Where required, we treat information collected by cookies as Personal Data if it can identify you (or is combined with other data that identifies you). Before cookies are placed on your computer or device, you will be shown a pop-up requesting your consent to set those cookies. Separately, you can manage your cookie preferences through your browser settings (e.g., to block or delete cookies), but please note some site features may not function properly if cookies are disabled or if consent to the placing of cookies is withheld.

This Policy and our Cookie Policy govern our use of cookies. By continuing to use our website(s) or any of our platforms, portals, and applications, you consent to our use of cookies for the stated purposes.

 

Contact Details and Additional Information

If you would like more information about 2XU's approach to privacy or if you wish to contact us regarding the information set out in this policy, don't hesitate to email us at admin.sg@2xu.com.

We will strive to acknowledge receipt of your query or request within three business days and provide a response or resolution within 30 days.

 

Updates to This Policy

We may occasionally update this Policy to ensure it remains consistent with our practices and regulatory requirements. If we make material changes, we will post the revised Policy on our website with a new effective date. We encourage you to check back periodically to review the latest version of this Policy. Your continued use of our services or access to our website(s) or any of our platforms, portals, and applications, after any changes to this Policy will be deemed acceptance of those changes.

 

Effective Date

This Policy is effective as of 05 June 2025 and supersedes all earlier versions of this Policy.