Green Floral Sign Eco Cosmetics Sustainable Beauty Logo (1)

Privacy Policy for khordadian.com

khordadian.com (“we”, “us”, or “our”) is committed to safeguarding your privacy and ensuring the highest level of protection for the personal data we collect, process, and store. We recognize the importance of maintaining your trust, and we uphold strict compliance with applicable privacy laws including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

This Privacy Policy outlines our practices regarding the collection, use, and disclosure of personal data when you interact with khordadian.com, and how we uphold your rights under relevant data protection legislation.

1. Commitment to Privacy and Data Protection

We are dedicated to handling personal information responsibly and transparently. This policy details what data we collect, how we use it, your rights as a data subject, and how you can control your information. Our goal is to ensure that your personal data is processed lawfully, fairly, and in a manner that upholds your rights and freedoms.

2. Scope of This Policy and Data Controller Role

This Privacy Policy applies to all individuals who visit, interact with, or transact on khordadian.com. We act as the data controller for the purposes of the GDPR and the CCPA. As the data controller, we determine the purposes and means of processing your personal data. Should you have any questions or concerns relating to your data, please contact us at [email protected].

3. Categories of Data Processed

We process several categories of personal data depending on your engagement with our services, including:

a. Usage Data
Includes information about your interaction with the website such as IP address, browser type, pages visited, session duration, and referring URLs. This data helps us understand how users interact with khordadian.com and improve functionality.

b. Account Data
When you create an account or provide information voluntarily, we may collect your name, billing and delivery address, email address, phone number, and login details.

c. Profile Data
Includes your preferences, purchase history, behavioral insights related to how you use our site, and your responses to surveys or promotional initiatives.

d. Communication Data
Comprises any messages sent to us, including support queries, feedback, and correspondence history.

e. Technical Data
Includes device-specific data such as operating system, device identifiers, regional and language settings, and internet service provider details.

f. Transaction Data
Relates to purchases made through khordadian.com, such as payment details (processed through secure third-party providers), order history, and shipping/delivery information.

g. Preference Data
Includes your consent for marketing communications, subscription preferences, event participation responses, and indicated areas of interest in our products or services.

4. Legal Bases for Processing

We rely on the following legal bases under the GDPR for processing your personal data:

– Performance of Contract: When data processing is necessary for the fulfillment of a contract you enter into (e.g. product orders).
– Legitimate Interest: To enhance our website, understand user behavior, prevent fraud, and safeguard our services.
– Consent: For sending marketing communications, and placing non-essential cookies (where required).
– Legal Obligations: When processing is necessary to comply with applicable laws or regulatory requirements.

5. Your Data Protection Rights

Under the GDPR, and where applicable the CCPA, you have the following rights:

– Right of Access – to request a copy of your personal data we hold;
– Right to Rectification – to amend inaccurate or incomplete information;
– Right to Erasure – to request deletion of your personal data in certain circumstances;
– Right to Restrict Processing – to limit certain types of data processing;
– Right to Data Portability – to request transmission of your data to another controller;
– Right to Object – to object to data processing where we rely on our legitimate interests;
– Right not to be subject to automated decision-making – where applicable under law.

Residents of California may also exercise the right to “Do Not Sell My Personal Information”.

To exercise your rights, you may contact us at [email protected].

6. Security Measures

We implement appropriate technical and organizational measures to protect your data, including:

– Encryption of data at rest and in transit;
– Role-based access control and authentication protocols;
– Regular system backups and disaster recovery procedures;
– Ongoing security awareness and data protection training for staff.

While no system can be guaranteed 100% secure, we take data security seriously and strive to protect our users’ personal data to the highest standard.

7. International Data Transfers

Where we transfer personal data outside the European Economic Area (EEA) or other jurisdictions with strong data protections, such transfers are covered by appropriate legal safeguards, including:

– Standard Contractual Clauses approved by the European Commission;
– Binding Corporate Rules of our service providers;
– Adequacy decisions issued under the GDPR for certain jurisdictions.

8. Data Retention

We retain personal data only for as long as it is needed for the purpose it was collected, including compliance with legal, tax, and accounting obligations. Retention periods are as follows:

– Usage and Technical Data: up to 24 months for analytics and system performance;
– Account and Profile Data: retained while the account remains active and up to 6 years thereafter for legal purposes;
– Transaction Data: retained for 7 years to comply with tax regulations;
– Communication Data: retained for up to 3 years for customer service and support;
– Marketing and Preference Data: retained until consent is withdrawn or for up to 24 months without interaction.

9. Cookie Policy

khordadian.com uses cookies and similar technologies to enhance user experience. Cookies fall into the following categories:

– Essential Cookies: Required for proper website operation (e.g., login, navigation).
– Functional Cookies: Remember your preferences and user settings.
– Performance Cookies: Collect anonymized data for site analytics.
– Analytical Cookies: Help us understand user behavior to improve content and offerings.

10. Cookie Management and Compliance

On your first visit to khordadian.com, a cookie banner will appear, requesting your preferences. You may accept all cookies, reject non-essential cookies, or manage settings. You can also change or withdraw your consent at any time by accessing your browser settings or using the cookie management tool on our site.

For California residents, identifiable cookie data may be considered “personal information” under the CCPA. We honor “Do Not Sell My Personal Information” requests by embedding opt-out tools where legally required.

11. Children’s Data

khordadian.com does not knowingly collect personal data from children under the age of 13. If we discover that such data has been collected, we will take immediate steps to delete it. If you believe that a child under 13 has provided personal data to us, please contact us at [email protected].

12. Policy Updates and Notifications

We may update this Privacy Policy to reflect changes in data practices, legal requirements, or website features. Where material changes are made, we will provide clear notice, such as a notification on the homepage or via email, where applicable. Continued use of khordadian.com following an update constitutes your acceptance of the revised policy.

13. Contact Us

If you have questions or concerns regarding this Privacy Policy, our data practices, or your personal information, please contact:

Email: [email protected]
Website: https://khordadian.com

We are committed to maintaining compliance with all applicable data protection laws. Your trust is important to us, and we encourage you to reach out with any privacy-related concerns, questions, or requests.

© 2025 Khordadian, All rights reserved.