Privacy Policy
Effective Date: March 19, 2025

1. Introduction
Welcome to Brush + Soul ("Company," "we," "our," "us"). We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and the CAN-SPAM Act.

2. Information We Collect
We may collect the following types of personal data:

  • Identifiers (e.g., name, email address, phone number)

  • Commercial Information (e.g., purchase history)

  • Internet Activity (e.g., IP address, browsing behavior, cookies)

  • Geolocation Data (if applicable)

  • User Content (e.g., feedback, reviews)

  • Payment Information (e.g., credit card details, billing address – processed securely by third-party payment providers)

3. How We Collect Your Data
We collect data in the following ways:

  • Directly from you (e.g., when you sign up, make a purchase, or contact us)

  • Automatically through cookies and tracking technologies

  • From third parties (e.g., advertising partners, analytics providers)

4. How We Use Your Data
We use your data for the following purposes:

  • To provide and improve our services

  • To process transactions and fulfill orders

  • To personalize user experience

  • To communicate with you (e.g., newsletters, customer support)

  • To comply with legal obligations

  • To support our affiliate marketing efforts

5. Selling Products & E-Commerce Transactions
When you purchase a product from our online store, we collect necessary information to process the transaction, including:

  • Name, shipping and billing address, email, and payment details

  • Order history and preferences

We use third-party payment processors (e.g., Stripe, PayPal) to handle payments securely. We do not store your credit card details, but our payment partners may retain this information according to their privacy policies. Please refer to their respective policies for more details.

6. Shipping and Fulfillment
We work with third-party shipping carriers to deliver your orders. Your shipping address and contact details may be shared with these providers solely for fulfillment purposes. Tracking information may also be shared with you via email or customer account access.

7. Refunds and Returns
If you purchase a product from us, our refund and return policy governs your rights. Please refer to our [Refund & Return Policy] for more information on how we handle returns, exchanges, and refunds.

8. Sharing Your Data
We do not sell your personal data. However, we may share it with:

  • Service providers (e.g., payment processors, shipping partners, hosting providers)

  • Legal authorities (if required by law)

  • Business partners (with your consent)

  • Affiliate partners for marketing and commission-based sales tracking

9. Your Rights
Under GDPR and CCPA, you have the right to:

  • Access, correct, or delete your personal data

  • Opt-out of data collection or sale (if applicable)

  • Request data portability

  • Lodge a complaint with a data protection authority

To exercise these rights, contact us at northuphollyr@gmail.com.

10. Data Security
We implement security measures to protect your data but cannot guarantee absolute security.

11. Retention of Data
We retain your data only as long as necessary for legal, business, or operational purposes.

12. Cookies and Tracking
We use cookies to enhance user experience. You can control cookie preferences in your browser settings.

13. Affiliate Marketing Disclosure
We participate in affiliate marketing programs, which means we may earn commissions when you purchase products or services through links on our website. These affiliate links do not affect the price you pay. We only promote products and services we trust, but we encourage you to review the terms and privacy policies of third-party websites before making any purchases.

14. CAN-SPAM Act Compliance
In compliance with the CAN-SPAM Act, we:

  • Do not use false or misleading email headers or subject lines

  • Identify marketing emails as advertisements where required

  • Provide a clear way to opt-out of future emails

  • Honor opt-out/unsubscribe requests promptly

If you wish to unsubscribe from our emails, follow the instructions in the email or contact us at northuphollyr@gmail.com.

15. Children's Privacy
Our website and services are not intended for children under the age of 13. We do not knowingly collect personal data from children. If we become aware that a child has provided us with personal data, we will take steps to remove such information from our records.

16. Changes to This Policy
We may update this policy periodically. Please review it regularly for any changes.

17. Contact Us
If you have any questions about this policy, contact us at northuphollyr@gmail.com.