Privacy Policy

When you create an account or place an order, we collect what you provide directly: email address, display name, payment transaction identifiers. We do not collect or store full credit card numbers, bank account details, or cryptocurrency wallet private keys.

Our platform automatically collects technical data: IP address, browser type, operating system, pages visited, timestamps. This helps us maintain security, prevent fraud, and improve our services.

Your data is used strictly to: process and deliver your orders, manage your account, provide customer support, prevent fraud and abuse, and send transactional notifications (order confirmations, delivery updates, password resets).

We do not sell, rent, or share your personal information with third parties for marketing. We do not send promotional emails unless you explicitly opt in.

All data transmitted between your browser and our servers is encrypted with TLS 1.2/1.3. Passwords are hashed using Argon2id with industry-standard cost factors and are never stored in plaintext.

Access to customer data is restricted to authorised personnel only, using least-privilege role-based access controls. Our infrastructure runs in isolated containers with regular security updates.

We use essential cookies only — for sessions and authentication. They're strictly necessary for the platform to function and cannot be disabled.

We do not use third-party advertising trackers, social-media pixels, or cross-site tracking. We do not participate in any advertising network.

You have the right to access, correct, or delete your personal data at any time. Update your profile in your cabinet, or contact support for everything else.

You may request a complete data export or account deletion. After deletion, personal data is purged from active systems within 30 days, except where retention is required by law.

Account data is retained for as long as your account is active. Transaction records are retained for 3 years to comply with financial reporting and dispute resolution.

Once you delete your account, personal data is purged within 30 days. Anonymised, aggregated statistics (order counts, totals) may be retained indefinitely as they cannot be linked to any individual.