Privacy Policy

Your Trust, Our Ethical Commitment

At Zodiac Cryst, we deeply respect both the energy of natural crystals and the privacy of your personal data. This policy outlines how we collect, use, and protect your information.

1. Information We Collect

1.1 Directly Provided Data

Order Details: Name, email, shipping/billing address, phone number.

Payment Information: All payments follow PCI-DSS Level 1 standards (highest compliance tier). Credit card numbers are never stored on our servers – exclusively tokenized via Stripe/PayPal.

Custom Requests: Crystal preferences, spiritual intentions, or engraving text.

1.2 Automatically Collected Data

Device & Usage: IP address, browser type, pages viewed (via cookies).

Geolocation: Country/state for tax compliance.

2. How We Use Your Data

Purpose Legal Basis Examples
Order Fulfillment Contractual Necessity Shipping via logistics partners
Custom spiritual intentions (e.g., crystal healing purposes, manifestation requests) are treated as sacred confidential data. This information is never used for profiling, stored separately from transactional data, and automatically encrypted.
Marketing (Opt-in Only) Consent New moon sale emails
Legal Compliance Legal Obligation Tax record retention

3. Data Sharing & Third Parties

We never sell your data. Limited sharing occurs with:
🔹 Payment Processors: Stripe, PayPal (tokenized transactions only)
🔹 Logistics Partners: For label generation & delivery tracking
🔹 Analytics Tools: Google Analytics (anonymized data)

4. Data Security

Encryption: SSL/TLS secured website (HTTPS://)

Access Control: Staff training + two-factor authentication

Retention: We adhere to global crystal e-commerce regulations: GDPR (EU), CCPA (California), and PIPEDA (Canada). Tax records retention (7 years) complies with IRS mineral business guidelines.

5. Your Rights

You may:
✅ Access/Download your data via account dashboard
✅ Correct errors in shipping addresses
✅ Opt-out of marketing (unsubscribe link in emails)
✅ Request deletion (excluding legal/tax records)
✅ Object to processing (e.g., analytics cookies)

Submit requests to: customerservice@zodiaccryst.com

6. Cookies & Tracking

Essential Cookies: Session management, cart retention

Analytical Cookies: Google Analytics (opt-out via cookie banner)

Advertising Cookies: Retargeting pixels (disabled by default)

7. Children’s Privacy

We do not knowingly collect data from users under 16. Contact us immediately if a minor has shared information.

8. Policy Updates

Changes will be notified via email/website banner. Continued use implies acceptance.

FAQ

❓ **Do you record my crystal healing intentions?**

→ Custom requests are stored only for order fulfillment, encrypted, and deleted after 2 years. Never shared or analyzed.

❓ **How secure is my credit card for crystal purchases?**

→ 256-bit SSL encryption + PCI-DSS Level 1 compliance. We never see your full card number.

❓ **Can international crystal buyers request data deletion?**

→ Yes! GDPR/CCPA rights apply globally. Submit requests to privacy@zodiaccryst.com (response within 72h).

SIGN UP TO Zodiac MAILING LIST

EMAIL ADDRESS

ABOUT

Product Category

CUSTOMER SERVICE

CONTACT US

HEY YOU, SIGN UP AND CONNECT TO zodiaccryst!