Privacy policy

1. Introduction

This Privacy Policy ("Policy") describes how Section Kit ("we," "us," "our," or the "Company"), the operator of the website Section Kit available at https://sectionkit.co (the "Website"), collects, uses, stores, discloses, transfers, and protects information relating to visitors, customers, registered users, and other individuals who interact with us (collectively, "you" or "User").

We are committed to protecting your privacy and handling your personal data in a transparent, lawful, and secure manner. This Policy is intended to help you understand what information we process, why we process it, the legal grounds on which we rely, the rights available to you, and how you can exercise those rights.

By accessing or using the Website, placing an order, creating an account, subscribing to communications, or otherwise providing personal data to us, you acknowledge that you have read and understood this Policy. If you do not agree with any part of this Policy, please discontinue use of the Website immediately.

2. Who We Are

Section Kit is the data controller responsible for the personal data collected through the Website. The Website is primarily directed at customers located in the country in which we operate, but it may also be accessed from other jurisdictions.

For any questions, requests, or concerns relating to this Policy or to the processing of your personal data, you may contact us using the details set out in Section 22 ("Contact Information") below.

3. Definitions

  • Personal Data: any information that identifies or can reasonably be used to identify an individual, directly or indirectly, such as a name, email address, phone number, postal address, payment details, IP address, or device identifier.
  • Processing: any operation performed on personal data, including collection, recording, storage, use, disclosure, transfer, and deletion.
  • User / You: any individual who visits, browses, registers on, or purchases from the Website.
  • Service Providers: third parties engaged by us to perform functions on our behalf, such as hosting, payment processing, shipping, analytics, customer support, and marketing.
  • Cookies: small data files stored on your device when you access the Website, used to remember preferences, analyze usage, and improve performance.

4. Personal Data We Collect

We collect personal data both directly from you and automatically through your use of the Website. The categories of data we may process include the following.

4.1 Information You Provide Directly

  • Identity and contact details: full name, billing and shipping addresses, country, city, postal code, email address, and telephone number.
  • Order and transaction information: the products you purchase, order history, invoice details, delivery instructions, and any communications related to your orders.
  • Customer support communications: the content of messages you send us through email, contact forms, chat, social media, or telephone, including any attachments or screenshots you share.
  • Marketing and subscription data: your consent or preferences regarding newsletters, promotional offers, abandoned-cart reminders, and product updates.
  • Reviews and feedback: any reviews, ratings, comments, or testimonials you submit on the Website.

4.2 Information Collected Automatically

  • Device and browser data: device type, model, operating system, browser type and version, language preferences, and screen resolution.
  • Network data: IP address, internet service provider, approximate geographic location derived from IP, and connection type.
  • Usage data: pages visited, time spent on each page, links clicked, referring URL, search terms entered on the Website, scroll depth, and interaction events.
  • Cookies and similar technologies: data collected through cookies, local storage, pixels, web beacons, and software development kits, as further described in Section 8 below.

4.3 Information from Third Parties

We may also receive information about you from third parties, such as payment providers (confirmation of successful payments, fraud-prevention signals), shipping carriers (delivery status), analytics and advertising partners, and social media platforms when you choose to interact with us through such platforms.

5. Purposes for Which We Use Personal Data

We process your personal data for the following purposes:

  • To create and manage your account and authenticate your access to the Website.
  • To process and fulfil your orders, including arranging payment, shipment, delivery, returns, exchanges, and refunds.
  • To provide customer service, respond to inquiries, resolve complaints, and handle warranty or after-sales requests.
  • To send transactional communications such as order confirmations, shipping notifications, invoices, and refund updates.
  • To send marketing communications, promotional offers, and personalized recommendations where you have consented to receive them, and to allow you to opt out at any time.
  • To operate, maintain, secure, and improve the Website and our products and services.
  • To analyze user behavior, measure performance, conduct research, and develop new features.
  • To detect, prevent, and investigate fraud, abuse, security incidents, and violations of our Terms and Conditions.
  • To comply with applicable laws, regulations, court orders, and lawful requests from public authorities.
  • To establish, exercise, or defend legal claims and to protect our rights, property, and safety, and those of our customers and the public.

6. Legal Bases for Processing

Where applicable data-protection laws require a legal basis for processing, we rely on one or more of the following:

  • Performance of a contract: when processing is necessary to take steps at your request before entering into a contract, or to perform a contract with you (for example, fulfilling an order).
  • Consent: where you have given us specific, informed, and freely given consent (for example, to receive marketing emails or to use non-essential cookies). You may withdraw consent at any time.
  • Legitimate interests: where processing is necessary for our legitimate interests (such as securing the Website, preventing fraud, or improving our services), provided those interests are not overridden by your rights and freedoms.
  • Legal obligation: where processing is necessary to comply with applicable laws, including tax, accounting, consumer-protection, and anti-money-laundering obligations.

7. How Long We Retain Personal Data

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including any legal, accounting, tax, or reporting obligations. Specifically:

  • Order and transaction records are typically retained for the period required by applicable tax and commercial laws (commonly between five and ten years).
  • Customer support communications are retained for as long as needed to handle the matter and for a reasonable period thereafter for quality, training, and dispute resolution.
  • Marketing data is retained until you unsubscribe or withdraw consent, after which we keep a minimal record of your opt-out request to honor it.
  • Server logs and analytics data are typically retained for a limited period and are aggregated or anonymized where possible.

Once retention periods expire, we will securely delete or irreversibly anonymize the data.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to operate the Website, remember your preferences, analyze traffic, and (where applicable) deliver personalized content and advertising.

  • Strictly necessary cookies: required for core functionality such as logging in, maintaining your shopping cart, and processing payments. These cannot be disabled.
  • Functional cookies: remember your preferences (such as language or region) to enhance your experience.
  • Analytics cookies: help us understand how visitors use the Website, which pages are most popular, and where improvements are needed. We may use providers such as Google Analytics or similar services.

You can control or disable cookies through your browser settings or, where available, through our cookie-consent banner. Disabling certain cookies may affect the functionality of the Website.

9. Sharing of Personal Data with Third Parties

We do not sell your personal data. We share your data only with carefully selected recipients, and only to the extent necessary for the purposes described in this Policy.

9.1 Service Providers

We share personal data with service providers that process data on our behalf under appropriate contractual safeguards, including:

  • Payment providers: Stripe and PayPal, who process payments on our behalf. Full card details are handled directly by the payment provider and are not stored on our servers.
  • Hosting and infrastructure providers: companies that host the Website, store backups, and deliver content.
  • Analytics providers: services that help us measure usage and improve performance.
  • Communication tools: providers used to send transactional and marketing emails, SMS, or push notifications.
  • Customer support tools: helpdesk and live-chat platforms used to assist you.

9.2 Legal Disclosures

We may disclose personal data when we believe in good faith that disclosure is necessary to (i) comply with applicable law, regulation, court order, or governmental request; (ii) enforce our Terms and Conditions; (iii) detect, prevent, or address fraud, security, or technical issues; or (iv) protect the rights, property, or safety of the Company, our users, or the public.

9.3 Business Transfers

If we are involved in a merger, acquisition, restructuring, financing, or sale of assets, personal data may be transferred to the relevant third party as part of the transaction, subject to confidentiality obligations and applicable law.

10. International Data Transfers

Some of our service providers may be located in countries other than your own. When we transfer personal data internationally, we take reasonable steps to ensure that the data receives an adequate level of protection, including by entering into data-transfer agreements, relying on the recipient's certifications, or applying other safeguards permitted by applicable law.

11. Data Security

We implement appropriate technical and organizational measures designed to protect personal data against unauthorized access, alteration, disclosure, loss, or destruction. These measures include, where appropriate, encryption in transit (TLS/HTTPS), restricted access controls, secure password storage, regular security reviews, monitoring of suspicious activity, and staff training.

However, no method of transmission over the Internet or method of electronic storage is completely secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee absolute security. You are responsible for keeping your account credentials confidential and for notifying us promptly of any suspected unauthorized use.

12. Your Rights

Subject to the laws applicable in your jurisdiction, you may have some or all of the following rights with respect to your personal data:

  • Right of access: to obtain confirmation of whether we process your data and to receive a copy of it.
  • Right to rectification: to request correction of inaccurate or incomplete data.
  • Right to erasure: to request deletion of your data in certain circumstances.
  • Right to restriction: to request that we limit the processing of your data in certain circumstances.
  • Right to object: to object to processing based on our legitimate interests or for direct marketing purposes.
  • Right to data portability: to receive your data in a structured, commonly used, machine-readable format and to transmit it to another controller.
  • Right to withdraw consent: at any time, where processing is based on consent, without affecting the lawfulness of processing carried out before withdrawal.
  • Right to lodge a complaint: with the competent data-protection authority in your jurisdiction.

To exercise any of these rights, please contact us at sectionskit@gmail.com. We may need to verify your identity before responding to your request. We will respond within the time period required by applicable law.

13. Marketing Communications

If you have consented to receive marketing communications, you may opt out at any time by clicking the "unsubscribe" link in any email we send, by adjusting the preferences in your account, or by contacting us directly. Even if you opt out of marketing, we will continue to send you transactional communications related to your account, orders, and legal notices.

14. Children's Privacy

The Website is not directed to children under the age of majority in their jurisdiction (or, where applicable, under the minimum age set by local law for digital services). We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child without verified parental consent, we will take steps to delete that information.

15. Third-Party Links and Services

The Website may contain links to third-party websites, applications, or services that are not operated by us. This Policy does not apply to those third parties, and we are not responsible for their privacy practices. We encourage you to read the privacy policies of any third-party services you use.

16. Automated Decision-Making

We do not use your personal data to make automated decisions that produce legal effects concerning you or similarly significantly affect you. Where we use automated tools (for example, fraud-detection systems), human review remains available upon request.

17. Updates to This Policy

We may update this Policy from time to time to reflect changes in our practices, technologies, legal obligations, or other factors. The most current version will always be posted on the Website with the "Last updated" date shown at the top. If the changes are material, we will provide additional notice (such as by email or a prominent banner on the Website). Your continued use of the Website after the changes take effect constitutes acceptance of the updated Policy.

18. Complaints and Privacy Concerns

If you have any concerns about how we handle your personal data, we encourage you to contact us first so that we can address your concerns. If you are not satisfied with our response, you may have the right to lodge a complaint with the competent data-protection authority in your jurisdiction.

19. Jurisdiction

This Policy is governed by the laws of the country in which we operate, without prejudice to any mandatory data-protection rights you may have under the laws of your country of residence.

20. Contact Information

If you have questions, requests, or complaints concerning this Policy or our processing of your personal data, please contact us: