Privacy policy

1.1 Policy Overview & Scope

This Privacy Policy (“Policy”) governs how jomedesign.store (hereinafter “we”, “us”, or “our”) collects, uses, stores, discloses, and protects the personal information of users (“you” or “user”) who access our website (https://jomedesign.store, “Website”), place orders, use our customer service, or interact with our digital services (e.g., email newsletters, social media links). This Policy applies to all personal information collected through our Website, mobile browsers, third-party platforms integrated with our Website (e.g., payment processors), and offline interactions (e.g., phone calls with customer service).

It does not apply to third-party websites or services linked to our Website (e.g., social media platforms, logistics providers’ sites), as those have their own privacy policies that we do not control. We encourage you to review the privacy policies of any third parties you interact with through our services.

1.2 Types of Information We Collect

We collect two categories of information: personal information (data that identifies or can be linked to an individual) and non-personal information (data that cannot be linked to a specific individual).

1.2.1 Personal Information You Voluntarily Provide

You choose to share this information when engaging with our services. Examples include:

Account & Contact Information: Full name, email address, phone number, shipping address, billing address, and password (encrypted) when creating an account or placing an order.
Payment Information: Credit/debit card details (last 4 digits only; full card numbers are encrypted and processed by our third-party payment partners, e.g., PayPal, Stripe, which comply with PCI DSS standards), bank account information (if using direct bank transfers), and billing zip code.
Order-Related Information: Product selections, order quantities, delivery preferences (e.g., signature required), and special instructions (e.g., “leave at front door”).
Communication Information: Content of emails, chat messages, or phone calls with our customer service (e.g., inquiries about orders, returns, or product details), and opt-in status for marketing communications (e.g., newsletters, promotional offers).
Demographic Information: Optional data such as date of birth (for age-verified products), gender, or preferences (e.g., “favorite product category”) when provided through surveys or account settings.

1.2.2 Information Automatically Collected

When you access or use our Website, we use technical tools to collect data about your interaction. This includes:

Device & Browser Data: Device model (e.g., iPhone 15, Dell XPS 13), operating system (e.g., iOS 17, Windows 11), browser type (e.g., Chrome 120, Safari 16), browser language, screen resolution, and mobile network provider.
Usage Data: Pages visited (e.g., “product page for wool sweaters”), time spent on each page, click paths (e.g., “homepage → new arrivals → dresses”), search queries (e.g., “black off-the-shoulder blouse”), referral source (e.g., Google search, Facebook ad), and exit pages.
Location Data: Approximate geographic location derived from your IP address (e.g., city, state) to optimize shipping options, display local currency, or comply with regional laws (we do not collect precise GPS location unless you explicitly enable it via your device settings, which is optional).
Cookies & Similar Technologies: We use cookies (small text files stored on your device), web beacons (tiny images in emails or web pages), and server logs to track usage, remember your preferences (e.g., login status, saved shipping addresses), and improve Website performance. You can manage cookie settings through your browser (e.g., block third-party cookies), but disabling essential cookies may limit access to certain features (e.g., placing orders).

1.3 How We Use Your Information

We use your information only for legitimate, transparent purposes consistent with the reason you provided it. Key uses include:

1.3.1 Fulfilling Orders & Providing Services

Process and fulfill your orders (e.g., verify payment, coordinate with logistics partners to ship products).
Send order updates (e.g., “order confirmed”, “shipped”, “out for delivery”) via email or SMS.
Respond to your inquiries, resolve issues (e.g., missing items, damaged products), and provide post-purchase support (e.g., returns, exchanges).

1.3.2 Improving Our Website & Services

Analyze user behavior (e.g., which products are viewed most, where users abandon their carts) to optimize Website layout, product offerings, and checkout 流程.
Test new features (e.g., a revised search function) and fix technical errors (e.g., broken links) to enhance user experience.
Personalize your experience (e.g., recommend products based on past purchases, display saved items in your cart).

1.3.3 Marketing & Communications

Send promotional emails or SMS (e.g., discount codes, new collection alerts) only if you have opted in to receive them. You can unsubscribe at any time by clicking the “unsubscribe” link in emails or replying “STOP” to SMS.
Tailor marketing content to your preferences (e.g., send sweater-related offers if you previously purchased sweaters).
Notify you of important updates (e.g., changes to our policies, Website maintenance) that affect your use of our services.

1.3.4 Security & Compliance

Protect against fraud, unauthorized access, or misuse of our Website (e.g., flag unusual login attempts, verify payment authenticity).
Comply with applicable laws and regulations (e.g., tax laws, consumer protection laws) and respond to legal requests (e.g., subpoenas, court orders) from government authorities.
Maintain records of transactions for accounting and auditing purposes.

1.3.5 Aggregate Data Use

We may anonymize and aggregate your information (e.g., “60% of users prefer size M” or “average order value is $85”) to generate industry reports, improve inventory management, or share with business partners (e.g., suppliers). Aggregate data cannot be linked to any individual user.

1.4 How We Share Your Information

We never sell your personal information to third parties for marketing purposes. We only share your information in the following limited circumstances:

1.4.1 Third-Party Service Providers

We engage trusted third parties to assist with core business functions. These providers are contractually required to use your information only to perform the services we request and to maintain strict confidentiality:

Payment Processors: (e.g., PayPal, Stripe) Process payments and store encrypted payment details (we do not access or store full card numbers).
Logistics Partners: (e.g., USPS, UPS, DHL) Deliver orders and provide shipping updates (we share your shipping address and contact number to facilitate delivery).
Technical Service Providers: (e.g., web hosting companies, analytics tools like Google Analytics) Maintain our Website, track usage data, and help improve performance.
Customer Service Tools: (e.g., Zendesk) Manage customer inquiries and store communication history to provide consistent support.

1.4.2 Legal & Regulatory Disclosures

We may disclose your information if:

Required by law (e.g., to comply with a subpoena, tax audit, or anti-fraud regulations).
Necessary to protect our rights, property, or safety, or the rights, property, or safety of other users (e.g., investigating fraudulent orders, responding to a data breach).

1.4.3 Business Transfers

If we undergo a merger, acquisition, asset sale, or bankruptcy, your personal information may be transferred as part of the business assets. We will notify you via email or a prominent notice on our Website at least 30 days before the transfer, and the new owner will be required to comply with this Privacy Policy.

1.5 How We Protect Your Information

We implement technical, administrative, and physical safeguards to protect your personal information from unauthorized access, use, or disclosure:

Encryption: All data transmitted between your device and our Website (e.g., order details, payment information) is encrypted using SSL/TLS technology.
Access Controls: Only authorized employees (e.g., customer service representatives, order processors) who need access to your information to perform their jobs can view it. We conduct regular security training for employees to prevent data misuse.
Data Storage: Personal information is stored on secure servers with firewalls and intrusion detection systems. We limit storage time to the minimum necessary (e.g., we retain order history for 7 years for tax purposes, then anonymize it).
Third-Party Oversight: We regularly review the security practices of our service providers to ensure they meet industry standards (e.g., PCI DSS for payment processors).

While we take all reasonable steps to protect your information, no online service is 100% secure. If a data breach occurs, we will notify you and relevant authorities (as required by law) within 72 hours of discovering the breach, and provide guidance on steps you can take to protect yourself (e.g., changing your password).

1.6 Your Rights Regarding Personal Information

Under applicable laws (e.g., GDPR in the EU, CCPA in California), you have the following rights regarding your personal information:

1.6.1 Access & Correction

Access: Request a copy of the personal information we hold about you (e.g., account details, order history).
Correction: Update or correct inaccurate or incomplete information (e.g., a changed shipping address).

To exercise these rights, log in to your account on our Website (under “Account Settings”) or contact us at support@jomedesign.store with your request. We will respond within 10 business days.

1.6.2 Deletion (“Right to Be Forgotten”)

Request that we delete your personal information, except in cases where we are required to retain it by law (e.g., tax records) or to fulfill a contractual obligation (e.g., processing a pending refund). We will confirm deletion within 15 business days.

1.6.3 Withdrawal of Consent

If you provided consent for a specific use (e.g., marketing emails), you can withdraw it at any time:

Unsubscribe from marketing emails by clicking the “unsubscribe” link in the email.
Disable cookies through your browser settings (see Section 1.2.2).

Withdrawing consent will not affect the lawfulness of our use of your information before consent was withdrawn.

1.6.4 Data Portability

Request that we transfer your personal information to another service provider in a structured, machine-readable format (e.g., CSV file) if technically feasible. This applies to information you provided to us voluntarily (e.g., account details, order history).

1.7 Policy Updates

We may update this Privacy Policy periodically to reflect changes in laws, technology, or our business practices. When we make material changes (e.g., new ways of collecting information, changes to data sharing practices), we will:

Post the revised Policy on our Website with a “Last Updated” date at the top.
Notify you via email (if you have an account) or a prominent banner on our Website at least 14 days before the changes take effect.

We encourage you to review this Policy regularly to stay informed about how we protect your information. Your continued use of our Website after the effective date of the revised Policy constitutes acceptance of the changes.

1.8 Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or the handling of your personal information, please contact us:

Email: support@jomedesign.store