Privacy Policy

 

CRU.io PTY LTD (“we”, “us”, or “our”) is committed to protecting your privacy and ensuring the security of your personal and business data. This Privacy Policy outlines how we collect, use, disclose, and protect information obtained through our website, our services, and from our clients.


1. Who We Are

CRU is a specialist eCommerce agency focused on helping direct-to-consumer (DTC) brands grow through subscription strategies, website development, loyalty programs, email flows, analytics, and other services. Our work often involves access to client business data, including sensitive eCommerce information.


2. Information We Collect

From Our Clients:

We may collect the following types of information when you engage with us:

  • Contact details (name, email, phone number, business address)

  • Business information (company name, website, industry)

  • eCommerce platform details (e.g. WooCommerce, Shopify, etc.)

  • Third-party tools and integrations (e.g. Klaviyo, Recharge, etc.)

  • Access to store analytics, customer data, order data, subscription data, and related database information (as needed for service delivery)

From Website Visitors:

When you visit our website, we may automatically collect:

  • IP address

  • Browser type and version

  • Pages visited and time spent

  • Referring website

  • Cookies and usage data (see Section 6)

You may also voluntarily provide your name and contact details via our contact form or newsletter signup.


3. How We Use the Information

We use collected data to:

  • Deliver our consulting, strategy, development, and support services

  • Analyse performance, optimise store data, and improve client outcomes

  • Communicate with clients regarding projects or potential services

  • Refer clients to third-party consultants and service providers (only with permission)

  • Improve our own website and service offerings

  • Comply with legal or contractual obligations


4. Sharing and Disclosure

We do not sell or share any data with advertisers, marketing platforms, or other third-party companies.

We only share limited client data under the following conditions:

  • With approved partner consultants or service providers for referred services (e.g. for email strategy, SEO, retention marketing), and only with relevant business information necessary for the scope of services.

  • When required to comply with legal obligations or in response to valid requests by public authorities (e.g. a court or government agency).

  • With your express consent for any other form of sharing.


5. Data Security

We implement appropriate technical and organisational measures to protect your data, including:

  • Secure password management and account access controls

  • Encrypted storage for sensitive data, where applicable

  • Access restrictions to only authorised personnel

  • Regular reviews of our systems and tools

However, no data transmission or storage method is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.


6. Cookies and Tracking Technologies

Our website uses cookies and similar tracking tools to:

  • Understand user behaviour and website performance

  • Improve content and user experience

  • Track marketing campaign effectiveness

You can control or disable cookies in your browser settings. Note that disabling cookies may affect your experience on our site.


7. Your Rights

Depending on your location and applicable laws (such as GDPR or CCPA), you may have the right to:

  • Access the personal data we hold about you

  • Correct or update inaccurate data

  • Request deletion of your data

  • Object to or restrict certain types of data processing

  • Request data portability

To exercise any of these rights, please contact us at: [Insert Contact Email]


8. Third-Party Services

Our site and services may include links or integrations with third-party platforms (e.g. Shopify, WooCommerce, Klaviyo). Their use of your data is governed by their respective privacy policies. We encourage you to review those policies when interacting with external services.


9. Data Retention

We retain client data only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required or permitted by law. Data shared with third-party partners is limited, and we instruct partners to delete it when no longer necessary.


10. Children’s Privacy

Our services are intended for businesses and are not directed at children under 16. We do not knowingly collect personal information from children. If we discover that we have inadvertently collected such data, we will take steps to delete it.


11. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. We encourage you to review this policy periodically to stay informed about how we protect your information.


12. Contact Us

For any questions, concerns, or requests related to this Privacy Policy or your personal data, please contact:

CRU
info@cru.io

At CRU we focus on subscriptions, platforms, website development, hosting & support and all the parts of puzzle that an online brand requires but doesn't have the in-house skill set. CRU brings the skills and the network of skills without having to shop around for the right fit.

NewsLetter

Keep up to date with tech strategies and wins from CRU and our partner network

Copyright 2025. Designed and Built by CRU