Privacy Policy

Account Information:

• Name (first and last)
• Email address
• Password (encrypted)
• Account preferences

Order Information:

• Shipping address
• Billing address
• Phone number
• Order history
• Product preferences

Payment Information:

• Payment method details (processed securely through PayPal)
• Transaction history
• Note: We do not store credit card numbers on our servers

Communication Information:

• Customer service inquiries and responses
• Product reviews and ratings
• Email correspondence
• Survey responses

Order Processing and Fulfillment:

• Process and complete your orders
• Arrange shipping and delivery
• Send order confirmations and updates
• Handle returns, exchanges, and refunds
• Provide customer support

Communication:

• Send transactional emails (order confirmations, shipping notifications)
• Respond to your inquiries and requests
• Send promotional emails (with your consent)
• Notify you of product updates or new offerings

Improvement and Personalization:

• Analyze website usage and shopping patterns
• Improve our products and services
• Personalize your shopping experience
• Recommend products based on your preferences
• Optimize website performance and functionality

Legal and Security:

• Comply with legal obligations
• Prevent fraud and unauthorized transactions
• Protect our rights and property
• Enforce our terms and conditions
• Resolve disputes

Service Providers:

We share information with third-party service providers who perform services on our behalf:

• Payment Processors: PayPal and other payment gateways to process transactions
• Shipping Partners: USPS, UPS, FedEx for order delivery
• Email Service Providers: For sending order confirmations and marketing emails
• Web Hosting: Microsoft Azure for hosting our website and database
• Analytics Providers: To analyze website traffic and user behavior

Legal Requirements:

• When required by law, subpoena, or court order
• To protect our rights, property, or safety
• To enforce our terms and conditions
• To prevent fraud or illegal activities

Business Transfers:

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity. We will notify you of any such change in ownership.

With Your Consent:

We may share information with third parties when you give us explicit consent to do so.

Access and Portability:

• Request a copy of your personal information
• Download your data in a portable format

Correction and Updates:

• Update or correct inaccurate information
• Complete incomplete information

Deletion:

• Request deletion of your personal information
• Close your account
• Note: Some information may be retained for legal or legitimate business purposes

Marketing Communications:

• Opt-out of marketing emails by clicking "unsubscribe" in any promotional email
• Manage communication preferences in your account settings
• Note: You will still receive transactional emails (order confirmations, shipping updates)

Do Not Track:

We currently do not respond to "Do Not Track" signals from browsers. You can manage tracking preferences through cookie settings.

Right to Know:

• What personal information we collect
• How we use your information
• Whether we sell or share your information
• Third parties with whom we share information

Right to Delete:

Request deletion of your personal information (subject to certain exceptions)

Right to Opt-Out:

We do not sell your personal information. If our practices change, we will update this policy and provide you with the right to opt-out.

Right to Non-Discrimination:

We will not discriminate against you for exercising your CCPA rights, including by:

• Denying goods or services
• Charging different prices
• Providing a different level of service

Legal Basis for Processing:

We process your personal information based on:

• Contract: To fulfill our contract with you (e.g., process orders)
• Consent: When you provide consent (e.g., marketing emails)
• Legitimate Interests: For fraud prevention, website improvement
• Legal Obligation: To comply with laws and regulations

Your GDPR Rights:

• Right of Access: Request a copy of your data
• Right to Rectification: Correct inaccurate data
• Right to Erasure: Request deletion ("right to be forgotten")
• Right to Restriction: Limit how we use your data
• Right to Data Portability: Receive your data in a portable format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time
• Right to Lodge a Complaint: File a complaint with your data protection authority

Technical Safeguards:

• Encryption: SSL/TLS encryption for data transmission
• Secure Storage: Encrypted database storage
• Access Controls: Limited employee access to personal information
• Password Protection: Strong password requirements and hashing
• Regular Updates: Security patches and software updates

Payment Security:

• All payments processed through PCI-DSS compliant payment processors
• We do not store credit card information on our servers
• PayPal provides additional security layers

Organizational Measures:

• Employee training on data protection
• Data breach response procedures
• Regular security audits and assessments
• Confidentiality agreements with service providers