NUTRICARTEL PRIVACY POLICY
Last Updated: 1 Jan 2025
Welcome to NutriCartel. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you visit, use, or make a purchase from our website (the “Services”).
Our store is hosted on Shopify, which provides the ecommerce platform that allows us to sell our products and process your transactions. If any conflict exists between this Privacy Policy and our Terms & Conditions, this Privacy Policy governs with respect to personal information.
By accessing or using the Services, you acknowledge you have read and understand this Privacy Policy.
1. INFORMATION WE COLLECT
We collect information that identifies, relates to, describes, or could reasonably be linked with you (“personal information”). We may collect:
A. Contact Information
- Name
- Email address
- Billing & shipping address
- Phone number
B. Financial & Transaction Information
- Partial payment card information (processed securely)
- Order history
- Refunds, returns, exchanges
- Payment confirmations
We do NOT store full credit card numbers.
C. Account Information
- Username and password
- Account preferences and settings
D. Device & Technical Information
- IP address
- Browser type/version
- Device identifiers
- Operating system
- Network information
E. Usage Information
- Pages you visit
- Products viewed/added to cart
- Referral URLs
- Interaction with our emails and ads
F. Communications
- Customer service messages
- Reviews or user-submitted content
G. Inference Data
- Shopping preferences
- Likely interests
- Purchase patterns
2. HOW WE USE YOUR INFORMATION
We may use your information for:
A. Providing & Improving the Services
- Process transactions
- Fulfill and deliver orders
- Authenticate your account
- Customize your shopping experience
- Recommend products
- Process returns & exchanges
B. Marketing & Advertising
- Send promotional emails or SMS
- Show personalized ads on and off our website
- Retargeting and remarketing campaigns
You may unsubscribe at any time.
C. Security, Compliance & Fraud Prevention
We use personal information to:
- Detect and prevent fraud
- Secure our storefront and transactions
- Use third-party fraud detection, identity verification, chargeback prevention, and risk-scoring platforms
- Authenticate account access
- Protect our rights and our customers
D. Legal Compliance
- Respond to subpoenas, government requests
- Comply with tax or audit obligations
- Enforce our Terms & Conditions
3. HOW WE SHARE YOUR INFORMATION
We do not sell personal information.
We may share personal information with:
A. Trusted Service Providers
- Shopify (hosting platform)
- Payment processors
- Shipping & fulfillment partners
- Email/SMS platforms
- Customer service & CRM tools
- Data storage & cloud providers
- Analytics services
- Advertising partners
- Fraud detection & verification suites
These providers use the information only to perform services for NutriCartel.
B. Business Partners for Advertising
We may share limited data with advertising partners for targeted ads as allowed by law.
C. At Your Direction
For example:
- Social media login integrations
- When requesting specific shipping actions
D. Corporate Affiliates or Transfers
-
During mergers, acquisitions, restructuring, or bankruptcy
E. Legal Requirements
We may disclose information to:
- Comply with law
- Respond to official requests
- Protect NutriCartel’s rights, property, or customers
F. Non-Personal / Aggregated Data
We may share anonymous or aggregated data freely.
4. SHOPIFY’S ROLE IN DATA PROCESSING
Our store is hosted and powered by Shopify, which processes certain data as an independent controller.
Shopify may:
- Store your information
- Use cookies & analytics
- Combine your interactions across other Shopify-hosted stores
- Process privacy requests independently under applicable law
To learn more, visit:
https://www.shopify.com/legal/privacy
Shopify’s privacy portal:
https://privacy.shopify.com/en
5. COOKIES & TRACKING TECHNOLOGIES
We use cookies, pixels, device identifiers, and similar technologies to:
- Remember your cart
- Improve site performance
- Recognize returning customers
- Analyze traffic
- Deliver personalized advertisements
You may disable cookies via your browser, although certain features may not function.
6. DATA RETENTION
We retain personal information only as long as necessary for:
- Fulfilling orders
- Account management
- Legal compliance
- Fraud/chargeback prevention
- Business analytics
- Enforcing agreements
Afterward, we delete or anonymize information securely.
7. SECURITY
We use industry-standard measures including:
- SSL encryption
- Secure payment gateways
- Restricted internal access
However, no system is 100% secure.
Please avoid sending sensitive information through unencrypted channels and protect your account credentials.
8. CHILDREN’S PRIVACY
The Services are not intended for individuals under 18 years (or the age of majority in your jurisdiction).
We do not knowingly sell or share personal information of individuals under 16.
If you believe a child has provided information, contact us to remove it.
9. YOUR PRIVACY RIGHTS
Your rights depend on your location (see State/International Addendums below), and may include the right to:
- Access your personal information
- Request deletion
- Correct inaccuracies
- Opt out of targeted advertising
- Object or restrict processing (GDPR)
- Withdraw consent (GDPR)
- Receive a portable copy of your data
- Appeal decisions (Colorado/Virginia)
- Use authorized agents (California)
Submit requests via:
team@nutricartel.com
10. INTERNATIONAL TRANSFERS
We may transfer and store personal data outside your country. When required, we rely on:
- Standard Contractual Clauses
- UK SCC Addendum
- Adequacy decisions
- Shopify’s transfer mechanisms
11. THIRD-PARTY LINKS
Our website may contain links to third-party sites. We are not responsible for:
- Their privacy practices
- Security
- Accuracy of content
Review their policies before submitting personal information.
12. CHANGES TO THIS PRIVACY POLICY
We may update this Policy periodically.
Changes will be posted on this page with an updated “Last Updated” date.
13. CONTACT US
If you have any questions or wish to exercise privacy rights:
Email: team@nutricartel.com
NutriCartel is the data controller for all information collected through the Services.
— — — — — — — — — — — — — —
ADDENDUM A — GDPR & UK GDPR
This section applies to residents of the EU, EEA, or UK.
Legal Bases for Processing
We process personal data on the basis of:
- Contract performance
- Legitimate interests
- Legal obligations
- Consent (marketing, cookies)
- Vital interests (rare)
GDPR Rights
- Access
- Rectification
- Erasure
- Restriction
- Objection
- Data portability
- Withdrawal of consent
- Not to be subject to automated decisions
- File a complaint
EU authorities list: https://edpb.europa.eu/about-edpb/board/members_en
UK ICO: https://ico.org.uk/
International Transfers
We rely on SCCs, UK addendum, or adequacy decisions where applicable.
— — — — — — — — — — — — — —
ADDENDUM B — CALIFORNIA PRIVACY RIGHTS (CPRA)
Applies to California residents.
Your CPRA Rights
- Right to Know
- Right to Delete
- Right to Correct
- Right to Opt Out of Sale or Sharing
- Right to Limit Use of Sensitive Information
- Right to Data Portability
- Right to Non-Discrimination
We do not sell personal information.
We may share information with advertising partners for cross-context ads.
We honor Global Privacy Control (GPC) signals.
Authorized agents may act on your behalf with proper verification.
— — — — — — — — — — — — — —
ADDENDUM C — COLORADO & VIRGINIA PRIVACY RIGHTS
Applies to Colorado (CPA) and Virginia (VCDPA).
Your Rights
- Access
- Correction
- Deletion
- Data portability
- Opt out of:
- Targeted advertising
- Sale of data
- Profiling with legal/significant effects
Appeals
If we deny your request, you may appeal.
If denied again, you may contact your state Attorney General.
We will authenticate requests before fulfilling them.
