What Personal Data We Collect and Why We Collect It

This Privacy Policy explains how encbuy.com (“we,” “us,” or “our”) collects, uses, discloses, and protects personal information when you visit or make a purchase on encbuy.com (the “Site”). By accessing or using the Site, you agree to the practices described herein.

1. Information We Collect

1.1 Information You Provide Directly

  • Account Registration: Name, email address, password, shipping address, phone number, and any other details you submit when creating an account.

  • Order Information: Billing and shipping addresses, payment details (processed via secure third-party gateways), order history, and any customization or personalization requests.

  • Customer Service: Information you provide when contacting customer support (e.g., email correspondence, chat transcripts).

  • Marketing Communications: If you opt in, we collect your email address or phone number for newsletters, promotions, and updates.

1.2 Information Collected Automatically

  • Usage Data: Pages visited, time spent on pages, links clicked, search terms, and other browsing behavior on the Site.

  • Device & Technical Data: IP address, browser type and version, operating system, device identifiers, screen resolution, and referral URLs.

  • Cookies & Tracking Technologies: Cookies, web beacons, pixel tags, and similar technologies to recognize your device, remember preferences, and analyze Site performance.

1.3 Information from Third Parties

  • Payment Processors: We receive confirmation of payment authorization and limited billing information from payment gateways (e.g., PayPal, credit card processors). We do not store full payment card details on our servers.

  • Analytics & Advertising Partners: Aggregated or pseudonymized data from services like Google Analytics or advertising networks, if you have consented or according to their privacy practices.

  • Social Login/Integration: If you choose to register or log in via a social account (e.g., Facebook, Google), we may receive basic profile information (name, email) as permitted by that service and your settings.

2. How We Use Your Information

We use personal information for the following purposes:

  • Order Fulfillment & Service: Process and ship orders, manage returns or exchanges, and respond to inquiries or disputes.

  • Account Management: Create and maintain your user account, authenticate login, and manage profile preferences.

  • Personalization: Tailor product recommendations, display relevant content, and remember preferences (e.g., language, currency).

  • Marketing & Promotions: With your consent, send newsletters, promotional offers, and updates about new products or events. You can opt out at any time.

  • Analytics & Improvement: Analyze Site usage to improve functionality, layout, and user experience; troubleshoot technical issues; and develop new features.

  • Security & Fraud Prevention: Detect and prevent fraudulent or unauthorized activities; protect against malicious actors; and comply with legal obligations.

  • Legal Compliance: Comply with applicable laws, respond to lawful requests by public authorities, and enforce our Terms of Service.

3. Cookies and Tracking Technologies

  • Purpose: We use cookies and similar technologies to remember your preferences, keep you logged in, enable shopping cart functionality, and collect analytics about Site usage.

  • Types of Cookies:

    • Essential Cookies: Necessary for core Site functions (e.g., login sessions, shopping cart).

    • Performance/Analytics Cookies: Collect aggregated data about visits and interactions to optimize the Site.

    • Functional Cookies: Remember choices (e.g., language, region).

    • Advertising/Targeting Cookies: Deliver relevant ads on or off our Site, subject to your consent where required.

  • Managing Cookies: Most browsers allow you to block or delete cookies via settings. Note that disabling essential cookies may impair Site functionality. For detailed instructions, refer to your browser’s help documentation.

4. Sharing and Disclosure

We may share personal information as follows:

  • Service Providers: Third parties who perform services on our behalf (e.g., payment processors, shipping carriers, customer support platforms, analytics providers). They have access only to the data needed to perform their functions and are bound by confidentiality obligations.

  • Business Transfers: In connection with a merger, acquisition, financing, or sale of all or a portion of our assets, personal information may be transferred as part of business assets. We will notify affected users before a transfer.

  • Legal Requirements: When required by law or to respond to lawful requests (e.g., court order, subpoena), to protect rights or property, or to prevent fraud or imminent harm.

  • Aggregated/Anonymized Data: We may share aggregated or de-identified information for research, analytics, or marketing purposes; such data cannot reasonably identify you.

5. Data Security

We implement industry-standard security measures to protect personal information, including encryption in transit (e.g., HTTPS/TLS) and secure access controls. However, no method of transmission or storage is completely secure. While we strive to protect your data, we cannot guarantee absolute security. Promptly notify us if you suspect any breach or unauthorized access.

6. Data Retention

We retain personal information only as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, resolve disputes, and enforce agreements. When data is no longer needed, we securely delete or anonymize it in accordance with applicable laws and internal retention policies.

7. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access & Correction: Request a copy of personal data we hold about you and correct inaccuracies.

  • Deletion (“Right to be Forgotten”): Request deletion of your personal data, subject to legal exceptions (e.g., data needed for order history, legal compliance).

  • Opt-Out of Marketing: Unsubscribe from marketing emails or SMS at any time via provided links or by contacting support.

  • Data Portability: Receive certain data in a structured, commonly used format, where applicable.

  • Restriction of Processing: In certain cases, request that we limit processing of your personal data.

  • Object to Processing: Object to processing based on legitimate interests or direct marketing.

  • Withdraw Consent: If processing is based on consent, you may withdraw it at any time (without affecting processing prior to withdrawal).

  • Do Not Track Signals: We may not respond to browser “Do Not Track” signals, but you can control cookies and tracking as described above.

  • European GDPR Rights: If you are in the European Economic Area (EEA), you have the rights listed above under GDPR. To exercise these, contact us at the details below.

  • California CCPA/CPRA Rights: If you are a California resident, you may request disclosure of categories of personal data collected, the purpose, and third parties with whom it’s shared; request deletion; and opt out of sale/sharing of personal data, as permitted by law.

To exercise any rights, please contact us using the contact details in Section 11. We will verify your identity before processing requests and respond within applicable timeframes.

8. Children’s Privacy

The Site is not intended for children under 16. We do not knowingly collect personal information from children under this age. If we learn that we have collected data from a child under 16 without parental consent, we will take steps to delete the information. If you believe we might have any information from a child under 16, contact us.

9. Third-Party Links and Services

  • External Links: Our Site may contain links to third-party websites (e.g., social media, partner sites). We are not responsible for their privacy practices. We encourage you to review their privacy policies.

  • Embedded Content: Content or widgets from third parties may collect information about your visits (e.g., YouTube embeds, social plugins). Their collection and use are governed by their own policies.

10. International Data Transfers

encbuy.com may operate globally. When we transfer personal data across borders (e.g., from EEA to the US), we employ appropriate safeguards (e.g., Standard Contractual Clauses, adequacy decisions) to ensure your data remains protected as required by applicable law.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically. When we do, we will revise the “Effective Date” at the top. Significant changes (e.g., new data uses) will be highlighted on the Site or via email/notification. Continued use of the Site after changes constitutes acceptance of the updated policy.