Privacy policy

MANDATE STORE - PRIVACY POLICY

Effective Date: July 23, 2025
Last Updated: July 23, 2025

1. INFORMATION WE COLLECT

Personal Information

We collect information you provide directly to us, including:

  • Account Information: Name, email address, password

  • Order Information: Billing and shipping addresses, phone number

  • Payment Information: Credit card details, billing address (processed securely by third-party payment processors)

  • Communication: Messages sent to customer support, product reviews

Automatically Collected Information

When you visit our website, we automatically collect:

  • Device Information: IP address, browser type, operating system

  • Usage Data: Pages visited, time spent on site, click patterns

  • Cookies: Small data files stored on your device for site functionality

  • Location Data: General geographic location based on IP address

Information from Third Parties

  • Payment Processors: Transaction confirmation and fraud prevention data

  • Shipping Partners: Delivery status and tracking information

  • Marketing Partners: Analytics and advertising performance data

2. HOW WE USE YOUR INFORMATION

Order Processing & Fulfillment

  • Process and fulfill your orders

  • Send order confirmations and shipping notifications

  • Handle returns, exchanges, and warranty claims

  • Provide customer support

Account Management

  • Create and maintain your account

  • Authenticate your identity

  • Provide access to order history and account features

  • Send account-related notifications

Marketing & Communications

  • Send promotional emails and offers (with your consent)

  • Notify you about new products and sales

  • Provide personalized product recommendations

  • Send abandoned cart reminders

Business Operations

  • Analyze website usage and improve our services

  • Prevent fraud and enhance security

  • Comply with legal obligations

  • Resolve disputes and enforce our terms

3. INFORMATION SHARING

We Share Information With:

Service Providers:

  • Payment Processors: Stripe, PayPal for secure payment processing

  • Shipping Companies: FedEx, DHL for order delivery

  • Email Services: For marketing and transactional emails

  • Analytics Providers: Google Analytics for website performance

Legal Requirements:

  • When required by law or legal process

  • To protect our rights and property

  • To prevent fraud or security threats

  • In connection with business transfers or acquisitions

We Do NOT:

  • Sell your personal information to third parties

  • Share your information for others' marketing purposes

  • Rent or lease customer lists

  • Share sensitive payment information (handled by secure processors only)

4. COOKIES & TRACKING

Types of Cookies We Use:

  • Essential Cookies: Required for website functionality and checkout

  • Analytics Cookies: Help us understand how visitors use our site

  • Marketing Cookies: Enable personalized advertising and promotions

  • Preference Cookies: Remember your settings and preferences

Managing Cookies:

  • You can control cookies through your browser settings

  • Disabling essential cookies may affect site functionality

  • You can opt out of marketing cookies while maintaining site access

5. DATA SECURITY

Security Measures:

  • Encryption: All sensitive data transmitted using SSL/TLS encryption

  • Secure Storage: Customer data stored on secure, protected servers

  • Access Controls: Limited employee access on need-to-know basis

  • Payment Security: PCI DSS compliant payment processing

  • Regular Updates: Security systems regularly updated and monitored

Your Responsibility:

  • Keep your account password secure and confidential

  • Log out of your account when using shared devices

  • Report any suspicious account activity immediately

  • Use secure internet connections for online purchases

6. YOUR RIGHTS & CHOICES

Account Management:

  • Access: View and update your personal information

  • Correction: Correct inaccurate or incomplete data

  • Deletion: Request deletion of your account and data

  • Data Portability: Request a copy of your personal information

Marketing Communications:

  • Unsubscribe: Opt out of marketing emails at any time

  • Preferences: Choose which types of communications you receive

  • Frequency: Adjust how often you hear from us

Cookie Preferences:

  • Browser Settings: Control cookie acceptance through your browser

  • Opt-Out Tools: Use industry opt-out tools for advertising cookies

  • Do Not Track: We respect Do Not Track signals where technically feasible

7. DATA RETENTION

How Long We Keep Your Information:

  • Account Data: Retained while your account is active

  • Order Information: Kept for 7 years for tax and legal purposes

  • Marketing Data: Retained until you unsubscribe or request deletion

  • Website Analytics: Aggregated data retained for business analysis

  • Support Communications: Kept for 3 years for quality assurance

Deletion Process:

  • Account deletion requests processed within 30 days

  • Some information may be retained for legal compliance

  • Anonymized data may be retained for analytics purposes

8. INTERNATIONAL TRANSFERS

Data Processing:

  • Your information may be processed in countries outside South Africa

  • We ensure adequate protection through appropriate safeguards

  • Third-party processors are contractually bound to protect your data

  • Transfers comply with applicable data protection laws

9. CHILDREN'S PRIVACY

Age Restrictions:

  • Our services are not intended for children under 18

  • We do not knowingly collect information from children under 18

  • If we discover we have collected a child's information, we will delete it

  • Parents can contact us to request deletion of their child's information

10. CALIFORNIA PRIVACY RIGHTS

CCPA Rights (California Residents):

  • Right to Know: What personal information we collect and how it's used

  • Right to Delete: Request deletion of your personal information

  • Right to Opt-Out: Opt out of the sale of personal information (we don't sell data)

  • Right to Non-Discrimination: Equal service regardless of privacy choices

Exercising Your Rights:

  • Contact us at privacy@mandate.store

  • We will verify your identity before processing requests

  • Response provided within 45 days of verified requests

11. GDPR RIGHTS (EU RESIDENTS)

Your Rights Under GDPR:

  • Right of Access: Request access to your personal data

  • Right to Rectification: Correct inaccurate personal data

  • Right to Erasure: Request deletion of your personal data

  • Right to Restrict Processing: Limit how we use your data

  • Right to Data Portability: Receive your data in a structured format

  • Right to Object: Object to processing based on legitimate interests