Plain‑English summary: We only collect what we need to run the store (e.g., your shipping info and order details). We do not use advertising trackers, we do not sell your personal information, and we do not share it for cross‑context behavioral advertising. Payments are processed securely by our payment partners; we never see your full card number.
Quick Navigation
1) Who we are & how to contact us
Business name: [Your 3D Print Shop Name] (the “Company,” “we,” “our”).
Contact (privacy requests, questions, or appeals): [your-privacy-email]
If you’d like us to use a different contact method for sensitive requests, tell us in your email.
2) Scope
This policy explains how we handle personal information when you visit our website, create an account, place an order, or otherwise interact with us online. It also covers offline information you provide (e.g., by phone) that we enter into our systems to fulfill your order.
3) What we collect
| Category | Examples | Why we collect it |
|---|---|---|
| Identifiers | Name, email, phone number; order ID; device/IP address. | Create/manage your account; fulfill orders; prevent fraud; provide support and security. |
| Customer records | Shipping/billing addresses; order history; communication preferences. | Fulfill and deliver purchases; handle returns/warranties; provide receipts and order updates. |
| Commercial information | Products viewed/added; quantity; customizations; pricing and taxes. | Operate the cart and checkout; provide accurate quotes; inventory planning. |
| Payment info (tokenized) | Last 4 digits, brand, and payment token from our payment processor. | Process payments, refunds, and chargebacks. We do not store full card numbers. |
| Support communications | Emails, messages, attachments you send us. | Customer service; troubleshooting; quality assurance and training. |
| Device/usage (basic) | Browser type, pages visited, and timestamps (server logs). | Security (DDOS/fraud), uptime, debugging. We do not use ad beacons. |
Sensitive personal information (e.g., precise geolocation, government ID, or health data) is not required to use this store. Please do not share it with us.
4) Sources of data
- You (forms, checkout, email, phone).
- Automatically via our servers for security and reliability (basic logs).
- Service providers that enable our store (e.g., payment, shipping, and hosting providers).
5) How we use data (purposes)
- Provide, operate, and secure our website and services.
- Process and fulfill orders; deliver products; handle returns/warranties where offered.
- Communicate with you about orders, account issues, and policy updates.
- Prevent, detect, and investigate fraud, abuse, and security incidents.
- Comply with legal obligations (e.g., tax, accounting, consumer protection).
Legal bases (GDPR/UK GDPR): performance of a contract; legitimate interests (running a safe, functional store); legal obligations; and your consent where required.
8) Security
We use industry‑standard safeguards appropriate to the nature of the data and our size, including HTTPS/TLS, access controls, and least‑privilege practices. No online service can be 100% secure; if we learn of a breach affecting you, we will notify you and regulators as required by law.
9) Data retention
We keep personal information only as long as needed for the purposes above and to comply with legal, tax, and accounting obligations. Typical retention examples:
- Order records: up to 7 years (tax/audit requirements in many jurisdictions).
- Support emails: up to 3 years after last interaction, unless you request deletion sooner where permitted.
- Server logs: up to 12 months for security and abuse prevention.
10) Your privacy rights
Depending on your location (e.g., EU/EEA/UK under GDPR, California under CCPA/CPRA, Virginia/Colorado/Connecticut/Utah, etc.), you may have rights such as:
- Access/know: request a copy of the personal information we hold about you.
- Correction: request that we correct inaccurate data.
- Deletion: request deletion of your data (subject to legal obligations).
- Portability: receive your data in a portable format.
- Restriction/objection: restrict or object to certain processing.
- Opt‑out: opt out of sales or sharing for cross‑context behavioral advertising (we do neither).
- Appeal: if we deny a request, you may appeal our decision.
How to submit a request
- Email [your-privacy-email] with the subject line: Privacy Request.
- Tell us which right you want to exercise and provide enough information to verify your identity (e.g., the email and recent order number).
- If you use an authorized agent, we may require proof of authorization and additional verification.
We will not discriminate against you for exercising your privacy rights.
11) Payments
Payments are processed by independent PCI‑DSS compliant processors (e.g., Stripe and/or PayPal). Your full card number is handled by them and never stored on our servers. We receive payment confirmations and limited card metadata (such as last 4 digits) needed for receipts, refunds, and fraud prevention.
12) Children
Our store is not directed to children under 13 (or the relevant age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us data, contact us and we will delete it as required by law.
13) International transfers
We are based in the United States. If you access our services from outside the U.S., your information may be processed in the U.S. and other countries that may have different data‑protection laws. Where required, we use appropriate safeguards for such transfers (e.g., Standard Contractual Clauses).
14) Changes to this policy
We may update this Privacy Policy to reflect operational or legal changes. We will post the updated version with a new effective date. If updates materially affect your rights, we will provide additional notice (for example, by email or a site banner).
Contact
Questions, concerns, or requests? Email [your-privacy-email].