Last Updated: 2025-04-10
1. Data We Collect
- Personal Information: Name, email, shipping address, payment details (processed via PCI-DSS compliant gateways like PayPal/Stripe), phone number.
- Usage Data: IP address, device type, browsing behavior (via cookies), order history.
- Third-Party Data: Logistics partners (e.g., DHL/FedEx) may share tracking numbers; payment gateways confirm transaction status.
2. How We Use Your Data
- Order Processing: Fulfill purchases, manage customs declarations, and provide customer support.
- Marketing: Send promotional offers (opt-out available via email footer).
- Security: Fraud detection, account authentication, and compliance with legal obligations (e.g., tax reporting).
3. Data Sharing
- Service Providers: Payment processors, logistics partners, IT vendors (bound by data processing agreements).
- Legal Compliance: Disclose data if required by court orders or customs authorities.
- Business Transfers: Data may transfer during mergers, with prior user notification.
4. International Data Transfers
- Mechanisms:
- EU/UK: Standard Contractual Clauses (SCCs) for GDPR compliance.
- Japan: APEC Cross-Border Privacy Rules (CBPR).
- Others: Data encryption and anonymization where applicable.
5. Your Rights
- Access/Correction: Update details via account dashboard.
- Deletion: Request removal of non-essential data (excludes legal/tax records).
- Opt-Out: Unsubscribe from marketing emails or disable cookies via browser settings.
6. Security Measures
- Encryption: TLS/SSL for data transmission; AES-256 for storage.
- Access Control: Role-based permissions; regular penetration testing.
- Incident Response: 72-hour breach notification as per GDPR.
7. Cookies & Tracking
- Purpose: Session management, cart retention, analytics (Google Analytics).
- Control: Manage preferences via cookie banner; block third-party trackers.
Contact: [Your Data Protection Officer] at [email/address].