At Detailory, we are committed to protecting your personal data and respecting your privacy. This Data Protection & GDPR Policy explains how we comply with applicable data protection laws, including the General Data Protection Regulation (GDPR), and how we safeguard your personal information.
This policy applies to users located in the European Economic Area (EEA), United Kingdom, and any region where data protection laws apply.
1. Legal Basis for Processing Personal Data
Under GDPR, we process personal data only when there is a lawful basis to do so, including:
-
Contractual necessity – to process and deliver your orders
-
Consent – when you opt in to marketing communications
-
Legal obligation – to comply with tax, accounting, or regulatory requirements
-
Legitimate interest – to improve services, prevent fraud, and ensure platform security
2. Types of Personal Data We Process
We may collect and process the following data:
-
Identity data (name)
-
Contact data (email address, phone number)
-
Transaction data (order history, payment status)
-
Technical data (IP address, browser type, device information)
-
Usage data (pages visited, interaction behavior)
We do not store card or banking information. Payments are handled by PCI-compliant third-party gateways.
3. How We Protect Your Data
We implement appropriate technical and organizational security measures, including:
-
Secure servers and encrypted connections (SSL)
-
Limited internal access to personal data
-
Trusted third-party vendors bound by data protection agreements
-
Regular monitoring for security vulnerabilities
Despite best efforts, no system is 100% secure. However, we take data protection seriously and act promptly in case of any breach.
4. Data Retention Policy
We retain personal data only for as long as necessary to:
-
Fulfill orders and provide customer support
-
Maintain business and accounting records
-
Meet legal and regulatory obligations
-
Resolve disputes and enforce agreements
When data is no longer required, it is securely deleted or anonymized.
5. Your GDPR Rights
If you are covered under GDPR, you have the right to:
-
Access your personal data
-
Rectify inaccurate or incomplete data
-
Erase your data (“Right to be Forgotten”)
-
Restrict processing of your data
-
Data portability
-
Object to certain types of processing
-
Withdraw consent at any time (for marketing communications)
To exercise these rights, contact us using the details below.
6. Data Sharing & International Transfers
Your personal data may be shared with:
-
Payment processors
-
Logistics and delivery partners
-
Email and communication service providers
-
Legal or regulatory authorities (if required)
If data is transferred outside the EEA, we ensure appropriate safeguards are in place, such as standard contractual clauses.
7. Cookies & Tracking Compliance
We use cookies and similar technologies in accordance with GDPR requirements. Users can manage cookie preferences through browser settings. Essential cookies required for website functionality cannot be disabled.
8. Complaints & Supervisory Authority
If you believe your data protection rights have been violated, you have the right to lodge a complaint with your local data protection authority.
We encourage you to contact us first so we can resolve your concern promptly.
9. Updates to This Policy
We may update this Data Protection & GDPR Policy periodically to reflect legal or operational changes. Updates will be posted on this page with a revised date.
