Data Privacy Rights

Last Updated: October 14, 2025
Operated by: Eunly Limited ("Company", "we", "our", or "us")

1. INTRODUCTION AND SCOPE OF APPLICATION

Eunly Limited operates the DERMXELL⁺ website, online store, and associated digital marketing channels (the "Services") to provide customers with premium cosmetic products. This Data Privacy Rights document establishes comprehensive consumer data rights, platform-specific privacy controls, and enforcement mechanisms for all users of DERMXELL⁺ products and services distributed by Eunly Limited.

This document has been specifically designed to ensure 100% compliance with all major advertising platform privacy policies including AppLovin Corporation, Google LLC (including YouTube), Meta Platforms Inc. (Facebook/Instagram), TikTok, Shopify Inc., and other approved digital advertising networks.

CRITICAL ADVERTISING PLATFORM COMPLIANCE DECLARATION

This Data Privacy Rights document ensures complete compliance with all major advertising platform privacy requirements, user control mechanisms, and data subject rights frameworks effective as of October 2025.

2. UNIVERSAL DATA SUBJECT RIGHTS FRAMEWORK

2.1 FUNDAMENTAL PRIVACY RIGHTS

All Data Subjects may exercise the following rights, subject to identity verification and applicable legal limitations:

• Right of Access: Obtain confirmation of processing and copies of Personal Data
• Right of Rectification: Correct inaccurate or incomplete Personal Data
• Right of Erasure (Right to be Forgotten): Request deletion of Personal Data under specified circumstances
• Right to Restriction: Limit processing under certain conditions
• Right to Data Portability: Receive Personal Data in structured, machine-readable format
• Right to Object: Object to processing based on legitimate interests or direct marketing
• Rights Related to Automated Decision-Making: Protection against solely automated decisions with legal or similarly significant effects

3. PLATFORM-SPECIFIC DATA RIGHTS AND USER CONTROLS

3.1 APPLOVIN CORPORATION DATA RIGHTS COMPLIANCE

MANDATORY APPLOVIN USER CONTROL DISCLOSURE: "We work with AppLovin to deliver ads in our mobile application and other devices and/or platforms. You have comprehensive control over your data used in AppLovin's advertising technology including device identifiers (IDFA/AAID when available), purchase behavior and transaction data, geographic location data, and app usage patterns."

3.2 GOOGLE LLC AND YOUTUBE DATA RIGHTS COMPLIANCE

GOOGLE ADVERTISER TRANSPARENCY AND USER CONTROL: "We participate in Google's advertiser transparency and verification programs. You have complete control over how your data is used for Google advertising personalization across Search, YouTube, and the broader Google ecosystem."

3.3 META PLATFORMS (FACEBOOK/INSTAGRAM) ENHANCED DATA RIGHTS

META HEALTH & WELLNESS DATA RESTRICTIONS (2025) USER CONTROL: "We strictly comply with Meta's enhanced health and wellness data restrictions effective January 2025. You have complete control over health-related advertising data and can exclude yourself from all health and wellness targeting categories."

4. RIGHTS EXERCISE PROCEDURES

4.1 REQUEST SUBMISSION FRAMEWORK

Primary Request Channels:

• Email: support@dermxell.com with subject line "Privacy Rights Request"
• Postal Address: Eunly Limited, Privacy Rights Office, Flat/Rm C1207 12/F, Hang Cheong Factory Building, 1 Wing Ming Street, Cheung Sha Wan, Kowloon, Hong Kong
• Phone: +852 6516 5836 (for urgent privacy concerns)

5. ADVANCED OPT-OUT MECHANISMS

5.1 UNIVERSAL OPT-OUT FRAMEWORK

• Global Privacy Control (GPC): Automatic recognition and response to GPC browser signals where technically feasible
• Do Not Track (DNT): Honored for essential functions where legally required
• Industry Standard Opt-Out Tools: Integration with NAI and DAA opt-out tools
• Email Unsubscribe: One-click unsubscribe mechanism in all marketing communications

14. CONTACT INFORMATION AND PRIVACY OFFICE

15. LEGAL VALIDITY AND ENFORCEMENT

This Data Privacy Rights document becomes effective immediately upon publication and supersedes all previous versions. This document constitutes a legally binding agreement between Eunly Limited and all users of DERMXELL⁺ products and services regarding privacy rights exercise and enforcement.

Document Version: October 14, 2025 – Rev 2.0