Privacy Policy
At BluePillar, we are committed to protecting your privacy and ensuring your personal data is handled securely. This Privacy Policy explains how we collect, use, share, and protect your information.
Data Controller
BluePillar Address not configured Email: support@example.com
For any privacy-related inquiries, please contact us at the email address above.
Information We Collect
Information You Provide
When you interact with our store, you may provide us with:
- Account Information: Name, email address, password (encrypted)
- Order Information: Shipping address, billing address, phone number
- Payment Information: Card details (processed securely by Stripe - we never store full card numbers)
- Communication: Messages sent through contact forms, customer support emails
- Reviews and Feedback: Product reviews, ratings, and testimonials
Information Collected Automatically
When you visit our website, we automatically collect:
- Device Information: Browser type, operating system, device type
- Usage Data: Pages visited, time spent, click patterns
- Location Data: Country and region (derived from IP address for shipping/tax calculations)
- Cookies: See our Cookie Policy section below
How We Use Your Information
We use your personal data to:
| Purpose | Legal Basis |
|---|---|
| Process and fulfill orders | Contract performance |
| Send order confirmations and shipping updates | Contract performance |
| Provide customer support | Contract performance / Legitimate interest |
| Send marketing emails (with consent) | Consent |
| Improve our website and services | Legitimate interest |
| Prevent fraud and secure our platform | Legitimate interest |
| Comply with legal obligations | Legal obligation |
Data Sharing
We share your data with trusted third parties only as necessary:
Payment Processing
- Stripe: Processes all payments securely. Stripe Privacy Policy
Order Fulfillment
- Printful: Prints and ships products on demand. Printful Privacy Policy
- Shipping Carriers: DHL, UPS, USPS, FedEx, and local carriers receive shipping addresses
Email Services
- Resend: Sends transactional emails (order confirmations, shipping updates). Resend Privacy Policy
Analytics (With Your Consent)
- Google Analytics: Helps us understand website usage
- Microsoft Clarity: Session recordings and heatmaps
We never sell your personal data to third parties.
Your Rights (GDPR)
If you are in the European Economic Area (EEA), United Kingdom, or similar jurisdictions, you have the following rights:
Right to Access
You can request a copy of all personal data we hold about you.
Right to Rectification
You can request correction of inaccurate or incomplete data.
Right to Erasure ("Right to be Forgotten")
You can request deletion of your personal data, subject to legal retention requirements.
Right to Restrict Processing
You can request that we limit how we use your data.
Right to Data Portability
You can request your data in a machine-readable format.
Right to Object
You can object to processing based on legitimate interests or for marketing purposes.
Right to Withdraw Consent
You can withdraw consent at any time for consent-based processing (e.g., marketing emails).
To exercise any of these rights, email us at support@example.com with your request. We will respond within 30 days.
Data Retention
We retain your personal data for:
| Data Type | Retention Period |
|---|---|
| Account data | Until account deletion |
| Order history | 7 years (tax/legal requirements) |
| Marketing preferences | Until unsubscribe |
| Support tickets | 3 years from resolution |
| Analytics data | 26 months |
Cookie Policy
What Are Cookies?
Cookies are small text files stored on your device that help us provide a better experience.
Types of Cookies We Use
Essential Cookies (Always Active)
Required for the website to function. Include:
- Session cookies for login
- Shopping cart contents
- Security tokens
Functional Cookies
Remember your preferences:
- Language settings
- Currency preferences
- Recently viewed products
Analytics Cookies (Require Consent)
Help us understand how visitors use our site:
- Google Analytics
- Microsoft Clarity
Marketing Cookies (Require Consent)
Used for advertising:
- Facebook Pixel
- Google Ads remarketing
Managing Cookies
You can manage your cookie preferences through:
- Our cookie consent banner (shown on first visit)
- Your browser settings
- Specific opt-out links for analytics providers
Data Security
We implement industry-standard security measures:
- Encryption: All data transmitted via HTTPS/TLS
- Payment Security: PCI-DSS compliant payment processing through Stripe
- Access Controls: Strict employee access to personal data
- Regular Audits: Security assessments and vulnerability testing
- Secure Storage: Data stored in encrypted databases
International Transfers
Your data may be transferred to and processed in countries outside your country of residence, including the United States. We ensure appropriate safeguards are in place through:
- Standard Contractual Clauses (SCCs)
- Data Processing Agreements with all third parties
- Adequacy decisions where applicable
Children's Privacy
Our services are not directed to individuals under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us immediately.
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by:
- Posting a notice on our website
- Sending an email to registered users (for significant changes)
Contact Us
For any privacy-related questions or to exercise your rights:
- Email: support@example.com
- Address: Address not configured
Supervisory Authority
If you are in the EEA and believe we have not addressed your concerns adequately, you have the right to lodge a complaint with your local Data Protection Authority.
This Privacy Policy was last updated on February 2, 2026.