Menu
Your Cart

Join our exclusive club

20% OFF on all products Shop now
0
0

Privacy Policy

Privacy Policy (GDPR Compliance)

This Privacy Policy aims to clarify how KAELOR WORLDWIDE INC collects, processes, stores, and protects the personal data of users within the European Union, strictly complying with the EU General Data Protection Regulation (GDPR).

Latest Version: kaelorinc.com Contact: flower@kaelorinc.com

I. Data Controller Information

Data Controller Name: KAELOR WORLDWIDE INC
Contact Email: flower@kaelorinc.com
Core Business: Bag design, production, and sales-related services

II. Types and Purposes of Collected Personal Data

KAELOR strictly adheres to the principle of "data minimization," collecting only the personal data necessary to achieve specific business objectives.

1. Personally Identifiable Information: Including name, email address, contact number, and shipping address. Collected to fulfill order contracts (based on "contractual performance") and establish customer relationships (based on "legitimate interests").
2. Technical Data: Including IP address, browser type, device information, cookie data, and website browsing history. Collected to optimize kaelorinc.com performance (based on "legitimate interests"); cookie use requires explicit consent.
3. Payment-Related Information: Including anonymized payment account information and billing address (processed by partner institutions). Collected to complete transaction settlement (based on "contractual performance").
4. Marketing-Related Information: Including explicitly agreed-upon marketing preferences. Collected to push personalized product information (based on "user consent").

III. Legal Basis for Data Processing

  • User Consent (cookie use, marketing pushes)
  • Contract Performance (order processing, delivery)
  • Legitimate Interests (website optimization, security)
  • Legal Obligations (tax compliance, record retention)

IV. Data Storage and Retention Period

Storage Location: EU-based GDPR-certified servers (cross-border transfer via SCCs).

Retention Period: Order data (7 years), Marketing data (until consent withdrawal), Technical data (1 year).

V. Data Sharing and Third-Party Processing

Shared only with payment processors (Stripe), logistics providers (DHL/FedEx), analytics providers (Google Analytics EU), and legal compliance parties (all bound by DPA).

VI. Core Rights of Data Subjects

  • Right of Access
  • Right of Correction
  • Right of Erasure (Right to Be Forgotten)
  • Right to Restrict Processing
  • Right of Data Portability
  • Right to Object

Apply via email: flower@kaelorinc.com (response within 30 business days)

VII. Data Security Measures

  • AES-256 encryption for sensitive data, SSL/TLS for kaelorinc.com
  • Access control with multi-factor authentication
  • Regular security audits and breach response (72h notification)
  • Employee GDPR compliance training

VIII. Policy Updates & IX. Complaint Channels

Updates: Displayed on kaelorinc.com, notified via registered email (core changes).

Complaints: Contact flower@kaelorinc.com first; escalate to EU member state DPA if needed.

Notification Module
This is the sticky Notification module. You can use it for any sticky messages such as cookie notices or special promotions, etc.