Privacy Statement


SECTION 1 - WHAT DO WE DO WITH YOUR INFORMATION?

When you purchase something from our store, as part of the buying and selling process, we collect the personal information you provide, such as your name, address, and email address.

When you browse our store, we also automatically receive your computer’s internet protocol (IP) address to help us learn about your browser, operating system, and usage behavior.

Email Marketing (if applicable)
With your permission, we may send you emails about our store, new products, promotions, and other updates.

 

SECTION 2 - CONSENT

How do you get my consent?
When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for delivery, or return a purchase, we imply that you consent to our collecting and using it for that specific reason only.

If we ask for your personal information for a secondary reason, such as marketing, we will ask you directly for your explicit consent or provide you with an opportunity to opt-out.

How do I withdraw my consent?
If, after opting in, you change your mind, you may withdraw your consent for us to contact you or for the continued collection, use, or disclosure of your information at any time by contacting us at ipek@ipekdesign.com.

 

SECTION 3 - DISCLOSURE

We may disclose your personal information:

If required by law.
To comply with regulatory obligations.
If you violate our Terms of Service.

 

SECTION 4 - SHOPIFY

Our store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our products and services. Your data is stored securely through Shopify’s data storage, databases, and the general Shopify application.

Payment
If you choose a direct payment gateway to complete your purchase, Shopify securely stores your credit card data, which is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS).

Your purchase transaction data is retained only as long as necessary to complete your transaction. After completion, your purchase information is deleted.

All direct payment gateways adhere to PCI-DSS standards managed by the PCI Security Standards Council (brands such as Visa, Mastercard, American Express, and Discover). For more insight, you may also review Shopify’s Terms of Service and Privacy Policy.

 

SECTION 5 - THIRD-PARTY SERVICES

We use trusted third-party providers to assist in delivering our services to you. These providers will collect, use, and disclose your information to the extent necessary to perform their services.

Third-Party Payment Processors
Some payment gateways or processors may have their own privacy policies, and your information may become subject to their policies when completing purchase-related transactions.

Cross-Jurisdictional Data Use
If a third-party service provider operates in a different jurisdiction, your personal data may become subject to the laws of that jurisdiction. For example, if you are in Canada and your transaction is processed in the U.S., your data may fall under U.S. legislation.

Links to Other Websites
Our website may include links to external sites. We are not responsible for the privacy practices of these third parties and encourage you to review their privacy policies.

 

SECTION 6 - SECURITY

We take reasonable precautions and follow industry best practices to protect your personal information from loss, misuse, unauthorized access, disclosure, alteration, or destruction.

When you provide credit card information, it is encrypted using secure socket layer technology (SSL) and stored using AES-256 encryption. While no method of electronic storage or transmission over the Internet is 100% secure, we adhere to PCI-DSS requirements and employ additional, widely accepted industry standards to enhance security.

 

SECTION 7 - COOKIES

Here is a list of cookies we use. These cookies help us provide an optimized shopping experience, and you can choose to opt out.

_session_id: Unique token; session-based; stores session details like referrer or landing page.
_shopify_visit: No data held; persistent for 30 minutes from the last visit; used for internal stats tracking.
_shopify_uniq: No data held; expires at midnight (relative to the visitor); tracks the number of visits per customer.
cart: Unique token; persistent for 2 weeks; stores cart contents.
_secure_session_id: Unique token; session-based.
storefront_digest: Unique token; indefinite; determines access to password-protected stores.

 

SECTION 8 - AGE OF CONSENT

By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are of legal age and have provided consent for your minor dependents to use this site.

 

SECTION 9 - RIGHTS UNDER GDPR & CCPA

If you are located in the European Economic Area (EEA) or California, you have additional rights regarding your personal data:

Right to Access: You can request a copy of the data we hold about you.
Right to Correct: You can update or correct inaccuracies in your data.
Right to Delete: You can request deletion of your personal information, subject to legal or contractual obligations.
Right to Portability: You can receive your data in a machine-readable format for transfer.
Right to Opt-Out: You can opt out of certain uses of your data, including targeted advertising. 

To exercise your rights, please contact us at ipek@ipekdesign.com.

 

SECTION 10 - CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify this policy at any time. Changes will take effect immediately upon posting on this page. Material changes will be communicated clearly, ensuring you are informed about how we collect, use, and share your data.

If our store is acquired or merged with another company, your information may be transferred to continue providing services to you.

 

QUESTIONS AND CONTACT INFORMATION

If you would like to access, correct, amend, or delete any personal information we hold about you, register a complaint, or request more information, please contact us at: ipek@ipekdesign.com