Privacy Policy

PRIVACY POLICY

Effective Date: April 1, 2026 Last Updated: May 26, 2026 Company Name: Nerfeuo

At Nerfeuo, your privacy is our priority. This Privacy Policy explains how we collect, use, and protect your personal information when you interact with our website.

1. Information We Collect

We may collect the following types of information:

  • Contact Information: Name, email address, phone number, shipping and billing address
  • Payment Details: Processed securely via third-party providers including Shopify Payments (powered by Stripe), PayPal, Shop Pay, Apple Pay, Google Pay, Klarna, and other Shopify-supported payment methods
  • Usage Data: Including IP address, browser type, device information, time zone, and pages visited
  • Marketing Data: Through tracking pixels including Facebook Pixel and TikTok Pixel
  • Voluntary Information: Data you share via forms, surveys, support requests, or email contact

2. How We Use Your Information

We use your data exclusively to:

  • Process, fulfill, and ship your orders
  • Communicate with you about your purchases, shipping updates, or customer service inquiries
  • Handle returns, refunds, and warranty claims
  • Prevent fraud and enhance security
  • Comply with legal and tax obligations
  • Improve our website functionality and user experience

We do NOT use your personal information for:

  • Creating detailed customer profiles for marketing purposes
  • Selling or renting your data to third parties
  • Unsolicited marketing communications (unless you explicitly opt-in)

3. Sharing of Personal Data

We never sell or rent your personal data. We only share your information when absolutely necessary with:

  • Payment Providers: Shopify Payments, Stripe, PayPal, Shop Pay, Apple Pay, Google Pay, Klarna, and other Shopify-supported checkout methods – solely for secure payment processing
  • Service Providers: Including Shopify (hosting/platform), shipping carriers, and customer support tools – solely for order fulfillment
  • Marketing Measurement: Facebook Pixel and TikTok Pixel for website performance measurement only
  • Legal Authorities: Only when legally required (fraud prevention, tax compliance, court orders)

4. International Data Transfers & Regional Compliance

European Union (GDPR Compliance)

For EU customers, we comply with the General Data Protection Regulation (GDPR). You have the right to:

  • Access, correct, or delete your personal data
  • Object to or restrict processing
  • Data portability
  • Withdraw consent at any time
  • File complaints with your local Data Protection Authority (DPA)

United States

We comply with applicable U.S. federal and state privacy laws including CCPA/CPRA, VCDPA, and CPA. Your data may be processed on servers located in the United States.

Canada (PIPEDA Compliance)

For Canadian customers, we ensure compliance with PIPEDA. You have the right to:

  • Access your personal information
  • Request corrections to inaccurate data
  • Withdraw consent for non-essential processing
  • File complaints with the Privacy Commissioner of Canada

Australia (Privacy Act 1988 Compliance)

For Australian customers, we comply with the Australian Privacy Principles (APPs). You have the right to:

  • Access and correct your personal information
  • Request deletion where legally permissible
  • File complaints with the Office of the Australian Information Commissioner (OAIC)

United Kingdom (UK GDPR Compliance)

For UK customers, we comply with UK GDPR. You have the right to:

  • Access, correct, or delete your data
  • Object to or restrict processing
  • Data portability
  • Withdraw consent at any time
  • File complaints with the Information Commissioner's Office (ICO)

5. Cookies & Tracking Technologies

We use a cookie consent banner that allows you to choose your preferences before any non-essential cookies are set.

Essential Cookies (Always Active)

  • Shopping cart functionality
  • Secure checkout process including dynamic checkout
  • Basic website security

Marketing Cookies (Optional)

  • Facebook Pixel for website performance measurement
  • TikTok Pixel for website performance measurement

You can manage your cookie preferences through:

  • Our cookie banner (appears on first visit)
  • Your browser settings
  • The "Cookie Preferences" link in our website footer

For full details please refer to our Cookie Policy.

6. Data Security

We protect your information using:

  • SSL/TLS encryption for all data transmission
  • Secure servers hosted by Shopify with enterprise-level security
  • Access controls – only authorized personnel can access customer data
  • Regular security updates and monitoring
  • PCI DSS compliance for all payment processing

7. Data Retention

We retain your personal information only as long as necessary:

Data Type Retention Period
Order Information 7 years (tax and legal compliance)
Marketing Data Until you unsubscribe or request deletion
Support Communications 2 years after resolution

You may request earlier deletion of your data at any time, subject to legal retention requirements.

8. Your Rights by Region

All Customers

  • Access: Request a copy of your personal data
  • Correction: Update inaccurate information
  • Deletion: Request removal of your data (where legally permitted)

Additional Rights for EU Customers

  • Data portability
  • Object to processing
  • Right to withdraw consent at any time
  • Lodge complaints with your local DPA

Additional Rights for UK Customers

  • Data portability in a structured format
  • Object to certain types of processing
  • We do not use automated decision-making or profiling

Additional Rights for Canadian Customers

  • Withdraw consent for any consent-based processing
  • Direct access to Privacy Commissioner

Additional Rights for Australian Customers

  • Anonymity option where practicable
  • Notification if your data is sent overseas

9. Third-Party Services

We work with the following trusted service providers:

Provider Location Purpose
Shopify Canada/US E-commerce platform and hosting
Stripe US Payment processing
PayPal US Payment processing
Meta/Facebook US Website performance measurement
TikTok Singapore/US Website performance measurement

All third-party providers are contractually bound to protect your data and use it only for the specified services.

10. Age Restriction

Our services are strictly intended for individuals 18 years of age or older. We do not knowingly collect personal information from anyone under 18. If we become aware that a person under 18 has provided us with personal data, we will delete it immediately. If you believe a minor has submitted data to us, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or applicable laws. We will:

  • Post the updated policy on this page
  • Update the "Last Updated" date
  • For material changes, provide additional notice via email or website banner

12. Contact Us

For privacy-related questions, concerns, or to exercise your rights:

  • Contact Method: Use the contact form on our Contact Us page
  • Response Time: We will respond to all privacy requests within 30 days

Thank you for trusting Nerfeuo. Your privacy and trust are fundamental to our business.

This Privacy Policy should be read alongside our Cookie Policy, Security & Fraud Policy, and Terms of Service.