Privacy Policy

Last updated: November 18, 2025

1. Introduction

NARRENSCHIFF (Beijing) Technology Co., Ltd. (hereinafter referred to as the “Company”, “we”, “us” or “our”) respects and protects your privacy. We are a company registered in China and we primarily provide adult products and related services to users located in the United Kingdom, the European Union and the United States (including California).

This Privacy Policy explains how we collect, use, share and protect your personal information when you use our online and offline services, and how we comply with applicable data protection laws, including the General Data Protection Regulation (GDPR), the UK GDPR and the California Consumer Privacy Act (CCPA/CPRA).

By using our official website, online store, offline stores, psychological assessments, community and other services, you acknowledge that you have read and understood this Privacy Policy.

2. Scope of Application

This Privacy Policy applies to all natural persons who interact with us, including but not limited to:

Visitors to our website and online store;
Customers who purchase products via the online store or offline stores;
Users who participate in comment sections and other community features;
Users who participate in optional psychological assessments and preference tests;
Users who upload images, reviews and other user-generated content.

Our services are intended for adults only. You must be at least 18 years old (or the higher age of majority required by the laws of your place of residence) in order to use this website, purchase products or participate in community activities. We do not knowingly provide services to, or knowingly collect personal information from, individuals under the age of 18. If you are under 18, please do not use our services.

3. Personal Information We Collect

We may collect the following categories of personal information through online and offline channels (in each case depending on what you actually provide or what is automatically collected by our systems):

(1) Identity and Contact Information

Such as your name, title, mailing address, email address, telephone number, country/region, city, and, where necessary for age verification, your date of birth or age, as well as gender and similar information.

(2) Account Information

When you create an account on our website, we collect your username, login password and other information used for identity verification and account security.

(3) Order and Payment Information

When you purchase products online or offline, we collect the information necessary to complete the transaction, including your shipping address, billing address, order details (product name, specification, quantity, price, discount, order time, order number and order status, etc.), payment method and payment status.

Payment card data (such as the full card number and CVV) is generally processed by compliant third-party payment institutions. We do not store full card numbers in our systems; we only retain partial information or payment tokens where necessary for refunds, reconciliation or fraud prevention. If you require a receipt or invoice, tax identification numbers and company names (where applicable) are also treated as necessary information.

Where you voluntarily provide it, we may collect information related to your relationship status, anniversaries, gender identity, sexual orientation, relationship structure, sexual preferences and similar information, for example the details you fill in within your profile, optional questionnaires or psychological assessments.

(5) User-Generated Content (UGC)

This includes information you send via customer service channels, and content you post on our website such as comments, suggestions, images, videos, product reviews and any related metadata (for example, timestamps attached to photos).

(6) Assessment and Preference Data

If you participate in our psychological assessments or preference tests, we will collect your responses and assessment results in order to provide you with feedback, analysis and—where you consent—for personalized recommendations.

(7) Usage Data

This includes technical information automatically generated when you visit our website, such as IP address, browser type and version, device type and identifiers, pages visited, time spent on pages, click behavior, referring URLs, error logs and other data used for operation, security and performance analysis.

(8) Cookies and Tracking Data

We use cookies, pixel tags and similar technologies to record and recognize your browser or device, for purposes such as maintaining login sessions, shopping carts, remembering preferences, statistical analysis and—where you consent—personalized recommendations.

(9) Offline Store Data

When you purchase products or participate in activities at our offline stores, we may collect transaction-related information and contact details needed for invoices, after-sales support or membership programs. Stores may use CCTV video surveillance to ensure security. Recordings are used solely for theft prevention, fraud prevention and security purposes and are overwritten or deleted after a reasonable retention period, unless retention is required by law or for incident investigation.

4. Sensitive Personal Information

The following information may be regarded as “sensitive personal information” or “special categories of data” under applicable laws:

Information about your address and payment details, including shipping address, billing address, any partial credit card information retained where strictly necessary, and payment tokens used for refunds, reconciliation or fraud prevention;
Detailed information about your sexual orientation, sex life, sexual preferences or sexual health;
Sensitive inferences regarding intimate relationships, sexual roles or psychological states derived from psychological assessments or preference tests.

We apply enhanced protection to sensitive personal information:

Transparency and Necessity: We only collect such data where strictly necessary to achieve specific, lawful and clearly explained purposes, in accordance with the principle of data minimization.
Explicit Consent (where required by law): Where required, we will seek your explicit consent before collecting or using sensitive data. You have the right to refuse or withdraw your consent at any time.
Strict Purpose Limitation: We will not use sensitive information for unrelated purposes without your authorization, and in particular, we will not use such data for targeted advertising or inappropriate profiling without your consent.
Additional Security Measures: We apply stricter access controls, encryption and retention management to sensitive data and limit access to personnel who need the data to perform their duties.

5. How We Process Your Personal Information

We only process your personal information where we have a lawful basis for doing so and for the following purposes:

(1) Providing Services and Performing Our Contract

Creating and Maintaining Accounts; Identity Verification and Security Management

You may choose to register as a NARRENSCHIFF member through any channel under the NARRENSCHIFF brand, including our online store, community or offline stores. In order to track orders and reduce disputes, registration as a NARRENSCHIFF member is a necessary condition for placing orders online and participating in the community. When you register, we collect necessary information such as your email address, nickname (which may be your real name) and password.

If you choose to log in using your Google or Apple account, we will obtain necessary information from Google LLC or Apple Inc.

If you use a guest mode, you will not be able to place orders but may still browse the shopping website.

With your knowledge and consent, we may also collect identity and contact information, characteristics and identity-related information, account information and usage data.

When you shop or receive services at our offline stores, we will collect offline store data as described above.

Processing Orders and Payments; Shipping, Returns and After-Sales Services

When you purchase our products or services, we inevitably need to rely on your order and payment information, account information and identity and contact information to process your order and perform our contract.

If you use third-party payment service providers, you may be redirected to the website of the provider of your choice, including but not limited to:

These third-party payment service providers are obligated to safeguard the information you submit directly to them or that we transfer to them. You may contact your chosen payment service provider for more information.

When you track an order or use return and other after-sales services, we must disclose certain necessary information to logistics service providers so they can accurately locate your shipment.

In addition, we may process your data—for example, order and payment data—based on our legitimate interests, such as asserting, exercising or defending legal claims, handling issues with delivery or payment, conducting accounting and performing compliance investigations.

(2) Third-Party E-Commerce Platforms and Joint Channels

When you purchase products from our store on a third-party e-commerce platform, the registration and payment information you provide is first processed by the platform in accordance with its own privacy policy. We typically only receive the information necessary to fulfill your order and provide after-sales services, such as order numbers, product information, recipient name, shipping address and contact details.

We do not use information obtained from such platforms for purposes that violate platform rules (for example, separate marketing where prohibited by the platform). If you wish to exercise privacy rights related to your platform account (such as deleting your platform account), you will usually need to contact the platform directly. However, for data that we process directly, you may still submit requests to us in accordance with this Privacy Policy.

(3) Reviews and Content Management

Displaying Your Username, Avatar and Published Content

We appreciate your feedback on our products and services, especially when you voluntarily share your experiences in comment sections and community spaces. To enhance user experience, we may link your identity and contact information, characteristics and identity-related information, account information, usage data and purchase history to your feedback.

Your reviews may appear on multiple platforms under our brand and may be provided to third-party service providers for managing, displaying and promoting customer reviews. Such sharing is limited to data necessary to verify that reviewers are genuine customers.

Reviewing and Handling Violating Content and Reports

If your comments or shared experiences contain unlawful or infringing content (such as child sexual abuse material and similar), we may link your identity and contact information, characteristics and identity-related information, account information, usage data and purchase records to your submissions in order to take related actions against accounts that use the same information.

(4) Assessments and Personalized Services

Using Assessment Results to Provide Feedback

If you use our assessment services (such as NBTI or NARRENSCHIFF Checklist), we will store and process your assessment and preference data so that you can review your historical records, and we will process your data as necessary to present your assessment results.

In essence, assessment services are also treated as a type of product. When you use them, we process the same types of data necessary under “Providing Services and Performing Our Contract”.

In addition, secondary processing and analysis of anonymized assessment and preference data and the results of such analysis constitute our intellectual property and do not fall within the scope of personal privacy.

Other Personalized Services

If you use personalized services such as product customization, we will securely store your customization details during the warranty period of the product in order to provide subsequent after-sales support. After the warranty period, we will anonymize or destroy such information if you request it.

Customization information may include identity and contact information, characteristics and identity-related information, account information and usage data.

(5) Customer Service and Communications

Responding to Inquiries, Complaints, After-Sales Requests and Technical Support

If you order retail products, our customer service team will not proactively contact you. We will only initiate customer service procedures (including creating service tickets) when you contact us by phone, email, inquiry forms or live chat (including AI-based and human agents).

If you order personalized products or services, our customer service team may provide “concierge-style” services, proactively contact you and seek your feedback on our products or services. We will initiate customer service procedures when you first contact us and express interest in customized products or services. If you do not wish to receive such services, you may contact us at any time to stop them.

Once a customer service process has been initiated, we may need to enter your account information, identity and contact information and user-generated content (such as inquiries and feedback) into our customer database to verify your identity and provide better services.

If we discover that a batch of products you purchased has quality issues, we may proactively contact you to initiate a customer service process and offer remedies such as replacement, repair, returns or other compensatory measures.

Retaining Communication Records for a Reasonable Period for Quality Control and Dispute Resolution

To provide better services and improve our customer service department, we record and archive the full customer service process after it starts, including account information, identity and contact information and user-generated content.

We will anonymize or destroy archived information after an appropriate period, which typically depends on the type of service.

Sharing Communication Records with Third Parties to Protect Our Legitimate Interests in Management and Dispute Resolution

If you contact us regarding potential or confirmed product defects or damage, we may process your data, including account information, identity and contact information and user-generated content, and share relevant information with manufacturers, insurers, legal counsel and other entities that can assist in resolving the issue, where necessary.

(6) Marketing and Promotions

Sending Information About Products, Activities and Offers

You are free to subscribe to or unsubscribe from personalized marketing messages, event notifications and discount alerts. You may withdraw your consent to receive promotional communications at any time. This means we will no longer proactively send such messages in the future, but communications sent before your withdrawal cannot be revoked; if necessary, you may delete them yourself.

NARRENSCHIFF offers a wide range of products and services. We may use the email addresses and phone numbers you provided for any of our products or services to send marketing communications about other categories of products or services, including those you have not yet purchased.

If we obtain your email address in connection with the sale of products or by other lawful means, we may use it for advertising. You may click the unsubscribe link at the bottom of promotional emails to opt out of receiving similar messages. We may use your account information and identity and contact information (including your name) to address you in marketing and promotional communications.

After you subscribe, we will send the above messages and notifications to the email address you provided.

We may also store your full IP address and a copy of the email reflecting your subscription change when you modify your subscription status, as proof of your authorization or withdrawal.

Sending Surveys, Satisfaction Questionnaires and Reminders

When you are hesitating about a purchase, or when items on your wish list drop in price, are about to sell out or are about to be discontinued, we may send you reminders. If you leave items in your shopping cart without completing the purchase, we may send reminder emails to help you complete your order and obtain the desired products.

After you purchase our products or services, we may send satisfaction surveys to you. Once you become a registered customer, we may send product review invitations or suggestion surveys.

We may use your account information and identity and contact information (including your name) to address you in such surveys and reminders.

(7) Data Analytics and Service Improvement

We use aggregated and anonymized data to analyze visits, click behavior and conversion rates so as to optimize website structure, product assortment and experience design.

We may analyze customer browsing times, preferred products and frequency of visits in order to optimize future product lines and website layouts.

To provide better services, we filter, collect, store and process usage data and cookies and tracking data. We anonymize sensitive data where appropriate to ensure your privacy.

(8) Security and Fraud Prevention

We detect and prevent hacking, fake orders, fraud, abuse and other illegal activities, and conduct security audits and risk control. Preventing fake orders and fraud is a foundation for providing high-quality services to genuine customers. We encrypt and process necessary account information, identity and contact information, order and payment information, usage data and cookies and tracking data so that we can temporarily suspend or permanently terminate services for risky accounts and orders.

(9) Legal and Compliance Purposes

We retain necessary records to comply with tax, financial and regulatory requirements.

Filing accurate tax returns and cooperating with tax or other governmental authorities in lawful investigations and evidence collection is part of our legal obligations. We encrypt and store necessary account information, identity and contact information and order and payment information so we can prove the authenticity of orders in the event of tax audits.

We also cooperate with regulatory and law enforcement authorities to the extent required or permitted by law.

While we firmly defend our customers’ lawful privacy rights, we will comply with legitimate requests from regulatory or law enforcement agencies for information, which may cover all categories of data.

(10) Other Purposes Notified and Consented to

If we intend to use your data for any new purpose not listed in this Policy, we will inform you before such use and, where necessary, obtain your consent.

(For users in the EU/UK: relevant processing will be based on legal grounds under the GDPR, including performance of a contract, legal obligations, our legitimate interests or your consent.)

6. Cookies and Tracking Technologies

We use cookies and similar technologies for the following purposes:

Strictly Necessary Cookies: To enable core functions such as login, shopping cart, account security and privacy settings. These cookies are essential for the functioning of the website.
Analytics and Performance Cookies: To analyze traffic and usage patterns in order to improve site performance and content. For users subject to the GDPR/ePrivacy rules, we will obtain your consent before enabling these cookies.
Functional Cookies: To remember preferences such as language and region, providing a more personalized experience.
Advertising and Targeting Cookies: With your consent, to display content or advertisements that are relevant to your interests and to measure marketing effectiveness.

You can:

Choose to accept or reject non-essential cookies via the cookie banner presented when you first visit the website;
Withdraw or modify your choices at any time via the “Cookie Settings” option or your browser’s privacy settings. Where required by applicable law, we will treat Global Privacy Control (GPC) signals sent by your browser as a request to opt out of the “sale” or “sharing” of your personal information and cross-site targeted advertising.

We do not sell your personal information to third parties for profit. However, under the following circumstances, we may share necessary information under strict controls:

Service Providers: Such as payment institutions, logistics companies, email delivery platforms, content moderation tools and data analytics providers, solely to the extent required to provide their services.
Affiliates: To unify customer service, technology or compliance management, we may share data within our corporate group on a need-to-know basis and ensure equivalent protection through internal agreements.
Regulatory and Law Enforcement Authorities: Where necessary to comply with legal obligations, enforce court orders or protect the rights, safety and property of us or our users, we may provide information to competent authorities.
Business Transactions: In the event of mergers, acquisitions, asset transfers or bankruptcy reorganizations, personal information may be transferred as part of the transaction. The recipient will continue to abide by this Policy or provide a level of protection that is no less than that set out in this Policy.
Based on Your Consent: Where we need to share information for a third party’s independent purposes, we will fully explain this in advance and obtain your explicit consent.

8. Data Retention

We retain your personal information for the shortest period necessary to achieve the purposes described in this Policy, taking into account legal requirements, dispute resolution and security needs:

Account Information: Retained until your account is closed or we no longer provide services to you, often with an additional “cooling-off” period, the specific length of which depends on local law.
Order and Transaction Records: Retained for a number of years in order to fulfill contracts and comply with tax, audit and other legal obligations.
Forum Content and Comments: Generally retained until you delete them, we remove them for operational or compliance reasons, or until the legally required period expires.
Logs and Cookie Data: Retained according to preset lifetimes and deleted or anonymized upon expiry.
Information Related to Disputes, Fraud or Security Incidents: Retained during the applicable statute of limitations or for the period required by law.

After the relevant retention period expires, we will securely delete or irreversibly anonymize your data.

9. Protection of Minors and Age Restrictions

Adults Only: Our products, services and content are intended only for individuals who are at least 18 years old (or the higher age of legal majority in their jurisdiction). We do not knowingly collect personal information from minors. If we discover that a minor is using our services or has provided us with personal information, we will take reasonable measures, including deleting such information and closing the relevant account.
Age Verification: Where required by law or business needs, we may verify users’ age by requesting date of birth, identity documents or using third-party age-verification tools. If we discover or reasonably suspect that a user is a minor, we reserve the right to suspend or terminate the provision of services.
Strict Prohibition of Child Sexual Exploitation Material (CSAM): We maintain a zero-tolerance policy toward any form of child sexual abuse material or sexualized content involving minors. Upon discovery or receipt of a report, we will immediately remove such content, block the relevant accounts and, where required or appropriate, report to law enforcement authorities.

10. User-Generated Content and Intellectual Property

Public Nature of User-Generated Content: Any content (text, images, videos, etc.) you publish in public areas such as product reviews may be viewed, forwarded or screenshot by other users. Please carefully consider which personal information you wish to disclose.
Your Rights and License Over Content: You retain the copyright and other lawful rights over your own creations. However, when you submit or publish content through our services, you grant us a global, non-exclusive, royalty-free, sublicensable license to store, display, reproduce and distribute your content as necessary to operate the services, and to use it within a reasonable scope for promotion and improvement of the services.
Your Warranties and Responsibilities: You represent and warrant that you have lawful rights to the content you publish; that such content does not infringe any third party’s intellectual property, privacy, reputation or other rights; and that it complies with applicable laws and our community guidelines. You may be held responsible for any disputes or infringements arising from the content you post.
Content Review and Removal: We reserve the right to review, delete, block or restrict access to any content that violates laws, infringes the rights of others or breaches our policies. For accounts that repeatedly violate rules, we may freeze or permanently ban them.
Company Intellectual Property: Apart from user content, this website—including brand names, logos, product images, copywriting, page design, source code and other elements—is protected by copyright, trademark and other laws and is owned by us or our licensors. Unless otherwise permitted by law, you may not copy, modify, distribute or use such content for commercial purposes without our prior written consent.

11. Your Rights

We are committed to providing you with clear and practical ways to exercise your data protection rights. Depending on your jurisdiction, you may have some or all of the following rights (subject to applicable law):

Right to Be Informed: To know how we collect, use and share your information (the primary purpose of this Policy).
Right of Access: To request confirmation as to whether we process your personal information and to obtain a copy of such information.
Right to Rectification: To request that we correct or complete your personal information if it is inaccurate or incomplete.
Right to Erasure (“Right to Be Forgotten”): To request deletion of your personal information under certain conditions (e.g., when it is no longer necessary for the purposes for which it was collected, when you withdraw consent, or when processing is unlawful). We will act according to legal requirements and explain if we must retain certain data for legitimate reasons.
Right to Restrict Processing: To request that we restrict processing of your personal information in specific situations (for example, while we verify the accuracy of data that you contest).
Right to Object:
- To object to processing based on our “legitimate interests”;
- To object at any time to the use of your personal information for direct marketing. Once you object, we will stop processing your personal information for such purposes.
Right to Data Portability: Within the limits of applicable law, to request that we provide or transfer your personal information in a structured, commonly used and machine-readable format when processing is based on your consent or on a contract.
Right to Withdraw Consent: Where processing is based on your consent (such as for marketing subscriptions, special categories of data or non-essential cookies), you may withdraw your consent at any time. Withdrawal does not affect the lawfulness of processing carried out prior to withdrawal.
Rights Related to Automated Decision-Making: If in the future we implement fully automated decision-making that has legal or similarly significant effects on you, you will have the right to request human intervention, express your point of view or contest the decision. At present, we do not make such decisions solely by automated means.

CCPA/CPRA Rights of California Residents (Where Applicable)

If you are a California resident, and to the extent required by the CCPA/CPRA, you may have the following rights:

The right to know, for the past 12 months, the categories of personal information collected, the sources of that information, the purposes of use and the categories of third parties to whom the information was disclosed;
The right to request deletion of personal information (subject to statutory exceptions);
The right to opt out of the “sale” or “sharing” of your personal information (if applicable). We currently do not sell personal information for monetary gain, and if this changes in the future, we will notify you separately and provide an opt-out mechanism;
The right to limit the use of sensitive personal information (where applicable by law);
The right not to be discriminated against for exercising your rights.

You may submit requests via the contact methods listed in the “Contact Us” section on the NARRENSCHIFF website. Please state your identity and the type of request (for example, “access request” or “deletion request”). We may ask you for additional information to verify your identity. We will respond within the timeframe required by law and inform you of the reasons if we cannot fully satisfy your request.

If you are located in the EU/UK and are dissatisfied with our response, you have the right to lodge a complaint with your local data protection authority. California residents may likewise contact the relevant regulators. Before doing so, we encourage you to reach out to us directly and we will do our best to resolve your concerns.

12. International Data Transfers

We are committed to protecting your privacy and, among other measures, we seek to minimize international data transfers where reasonably possible. Our website servers and network infrastructure are deployed in the United Kingdom. However, as a company operating in China and serving users in the UK, EU, US and other regions, some international data transfers are unavoidable. Your personal information may be stored and processed in multiple countries or regions, including China, the United States or other countries that may not be recognized as providing “adequate” data protection.

For personal information originating from the EU/UK/Switzerland, we adopt appropriate safeguards for cross-border data transfers, such as:

Using the EU Standard Contractual Clauses (SCCs) and any necessary supplementary measures;
Relying, in specific situations, on the performance of a contract or your explicit consent;
Working only with service providers that commit to providing an adequate level of protection.

Regardless of where data is stored, we will protect your information in accordance with this Privacy Policy and applicable laws.

13. Data Security Measures

We implement multi-layered security measures to protect your personal information, including but not limited to:

Using HTTPS/TLS and similar protocols to encrypt data in transit;
Encrypting sensitive fields in storage;
Enforcing strict access controls and role-based permissions to ensure only personnel with a business need can access the data;
Implementing physical security measures and server protection;
Using firewalls, intrusion detection and security monitoring;
Providing privacy and security training to employees;
Conducting regular vulnerability scans and security testing;
Applying data minimization and anonymization/pseudonymization where appropriate;
Maintaining an incident response mechanism for data breaches.

Although we use reasonable technical and organizational measures, transmission and storage over the internet inherently involve risks, and we cannot guarantee absolute security. Please keep your account credentials secure and contact us immediately if you suspect unauthorized access to your account or data.

If a data breach that may pose a high risk to your rights and interests occurs, we will notify you and the competent supervisory authority within the period required by law and provide necessary assistance.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements or security practices. In the event of material changes, we will provide prior notice through our website or other appropriate means and will indicate the effective date in the “Last Updated” line above.

If you continue to use our services after the updated Policy takes effect, you are deemed to have accepted the updated Policy. If you do not agree with the changes, you may stop using our services and request deletion or export of your data in accordance with this Policy.

15. Contact Us

If you have any questions, comments or requests regarding this Privacy Policy or our data processing practices, please contact us via the methods provided below:

Email: [email protected]

Where required by law, we may appoint a Data Protection Officer (DPO) or designate an EU/UK representative. Their contact details will be made available upon request or published on our website.