RockMerchHub (“we,” “us,” or “our”) operatesย rockmerchhub.com. We respect your privacy and are committed to protecting your personal data. This policy explains how we collect, use, and safeguard your information when you use our store, contact our support, or interact with our digital platforms.
Information We Collect
(a) Directly Provided Data
- Identifiers: Name, email, shipping/billing address, phone number.
- Payment Details: Credit card numbers (processed securely via PCI-compliant gateways like Stripe/PayPal).
- Account Data: Usernames, passwords, order history.
- Communications: Customer support messages, survey responses.
(b) Automatically Collected Data
- Technical Data: IP address, device type, browser, location (via cookies).
- Usage Data: Pages visited, cart activity, session duration (using Google Analytics).
- Cookies: Essential (e.g., login sessions), Functional (e.g., cart retention), Marketing (e.g., Facebook Pixel).
How We Use Your Information:
|
Purpose |
Legal Basis (GDPR/CCPA) |
Examples |
|---|---|---|
|
Order Processing |
Contractual Necessity |
Shipping, payment verification |
|
Customer Support |
Legitimate Interests |
Responding to inquiries |
|
Personalization |
Consent |
Product recommendations |
|
Marketing & Newsletters |
Consent |
Promotional emails |
|
Fraud Prevention |
Legal Obligation |
Transaction monitoring |
|
Site Optimization |
Legitimate Interests |
Google Analytics data |
Data Sharing & Third Parties
We never sell your data. We share only where necessary:
- Service Providers: Payment processors (Stripe), shipping carriers (USPS, FedEx).
- Marketing Partners: Email platforms (Mailchimp), ad networks (Google Ads), with explicit consent.
- Legal Compliance: If required by law enforcement or to protect our rights.
International Data Transfers
Data may be transferred outside your country (e.g., EU โ US). We use safeguards like:
- Standard Contractual Clauses (SCCs).
- Privacy Shield-certified partnersย (where applicable).
Your Rights (CCPA/GDPR)
You have the right to:
- Access/Delete: Request copies of your data or its deletion.
- Correct: Update inaccurate information.
- Opt-Out: Unsubscribe from marketing emails (via link in emails) or disable cookies.
- Non-Discrimination: We wonโt deny service for exercising rights.
To exercise rights, contact:ย[email protected].
Data Security
We implement:
- Encryption: SSL for all data transfers.
- Access Controls: Staff training and restricted data access.
- PCI Compliance: Secure payment handling.
- Regular Audits: Vulnerability testing.
Childrenโs Privacy
We doย not target users under 16. If we inadvertently collect a minorโs data, parents may contact us for deletion per COPPA.
Cookies & Tracking Technologies
- Essential: Required for site functionality (no opt-out).
- Analytics/Marketing: Disable via ourย Cookie Bannerย or browser settings.
- Third-Party Tools: Facebook Pixel, Google Analytics โ review their policies.
Policy Updates
We update this policy annually or after significant changes (e.g., new services). Updates will be posted here with a revised “Last Updated” date.
Contact Us
For questions, data requests, or complaints:
- Email:ย
[email protected] - Mail: RockMerchHub Privacy Office.
- EU Representative: Required under GDPR โ designate via services.