Privacy Policy

Clarion Peptides is the data controller responsible for your personal information. We determine the purposes and means by which your personal data is processed.

If you have any questions about this policy or your data, you can contact our privacy team at privacy@clarionpeptides.com. We aim to respond to all legitimate requests within 30 days of receipt.

We collect the following categories of personal information:

We process personal data only where we have a lawful legal basis to do so. Depending on the context, we rely on one or more of the following:

• Contractual necessity: Processing your order, arranging delivery, and responding to order-related enquiries.
• Legitimate interests: Fraud prevention, website security, server log analysis, and improving our services — provided these interests do not override your fundamental rights.
• Legal obligation: Retaining financial and tax records as required by applicable law.
• Consent: Sending non-transactional communications (e.g. newsletters) — only if you have explicitly opted in. You may withdraw consent at any time.

Your personal data is used exclusively for the following purposes:

• To process, fulfil, and confirm your orders
• To dispatch and track your shipment and communicate delivery updates
• To respond to customer service enquiries, complaints, or support requests
• To investigate and prevent fraudulent transactions or unauthorised access
• To comply with our legal and regulatory obligations, including financial record-keeping
• To send transactional communications such as order confirmations and shipping notifications
• To maintain the security and operational performance of our website and infrastructure
• To enforce our Terms of Service and other agreements

We will never use your information for unrelated marketing without your explicit consent, and we will never sell, rent, or otherwise commercially exploit your personal data to third parties.

Our website uses a minimal number of cookies strictly necessary for its operation. We do not use advertising, retargeting, or cross-site tracking cookies.

You can disable cookies in your browser settings. Disabling session cookies may impair cart functionality but will not prevent you from browsing the site.

We share personal data only with the following categories of third parties, and only to the extent necessary to fulfil our services:

We do not sell, rent, lease, or otherwise commercially share your personal data with any third party for their own marketing or commercial purposes.

Our infrastructure providers may process data in jurisdictions outside your country of residence. Where personal data is transferred internationally, we ensure that appropriate safeguards are in place — such as Standard Contractual Clauses approved by relevant data protection authorities — to maintain the same level of protection required under applicable privacy law.

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland and have concerns about international transfers of your data, please contact us at privacy@clarionpeptides.com.

Clarion Peptides operates exclusively on a guest checkout model. We do not create, maintain, or require persistent customer accounts. You are not required to register with us to browse products or place an order.

Order records are stored in our secure database for fulfilment and legal record-keeping only. There is no publicly accessible profile, login portal, or user dashboard for customers. This design decision minimises the amount of personal data we hold and reduces the risk surface associated with account-based systems.

We retain personal data for the minimum period necessary for the purpose for which it was collected, subject to the following:

• Order records: Retained for 7 years to comply with tax, accounting, and financial regulation requirements.
• Customer service correspondence: Retained for 3 years or until the matter is resolved, whichever is shorter.
• Server and access logs: Retained for 90 days for security and diagnostic purposes, then deleted.
• Testimonial submissions: Retained indefinitely while displayed on the site; removed upon written request.

When data is no longer required, it is securely deleted or anonymised in accordance with our data retention schedule.

Subject to applicable data protection law, you have the following rights regarding your personal data:

To exercise any of these rights, contact us at privacy@clarionpeptides.com. We will respond within 30 days. We may need to verify your identity before processing a request.

We implement a range of technical and organisational measures to protect your personal data against unauthorised access, loss, destruction, or alteration:

• All data transmitted between your browser and our servers is encrypted using TLS 1.2 or higher (HTTPS).
• Our database enforces row-level security (RLS) policies ensuring that only authorised processes can access customer records.
• Administrative access to the backend is protected by a secure session cookie and password authentication, with no public-facing registration.
• Database credentials and service keys are stored as environment variables and are never committed to source code.
• We conduct periodic reviews of our security practices and update our infrastructure in response to known vulnerabilities.
• Payment data is never stored on our servers — it is transmitted directly to our PCI-DSS-compliant payment processor.

No method of electronic transmission or storage is 100% secure. While we use commercially reasonable precautions, we cannot guarantee absolute security. In the event of a data breach that is likely to result in a risk to your rights, we will notify you as required by applicable law.

Our products are research compounds intended solely for use by qualified scientific professionals. Our website and services are not directed at, and we do not knowingly collect personal data from, individuals under the age of 18. If we become aware that we have inadvertently collected personal data from a minor, we will delete it promptly.

Our website may contain links to third-party websites, including laboratory report portals, research databases, or partner organisations. This Privacy Policy does not apply to those external sites. We are not responsible for the privacy practices of third-party websites and encourage you to review their privacy policies before providing any personal information.

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or service offerings. When we do, we will revise the “Last updated” date at the top of this page. For material changes, we will take reasonable steps to notify affected users — for example, by placing a notice on our website.

Your continued use of our website after any changes constitutes your acceptance of the updated policy. We encourage you to review this page periodically.

For any privacy-related questions, requests, or concerns, please contact us:

If you are based in the UK or EEA and are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority — for example, the Information Commissioner's Office (ICO) in the UK at ico.org.uk.