Privacy Policy

Effective Date: 2025-01-01

Quanta Vine is committed to protecting your privacy and data security under the principle of "Just-Right Balance" (Lagom). We treat your information as a personal boundary, handling it with silent balance and transparent restraint. This policy aims to clearly explain how we collect, use, store, share, and protect your personal information.

🤝 I. Scope and Information Collection Boundaries

Scope of Application This policy applies to personal information provided by you or generated through your interaction with the Quanta Vine website (the independent store based on the Shopify platform, including mobile and desktop), customer service channels, order processes, and other digital services. If you interact with us through third-party channels (e.g., social media), data processing will be subject to this policy and potentially the third party's policies.

What Information We Collect (Limited to Necessity) We only collect information necessary to provide services, enhance experience, and ensure compliance, categorized as follows:

• Account and Identity Information: Name, email address, phone number, shipping and billing addresses, account password (encrypted), user preference settings.
• Transaction and Payment Information: Order items, quantity, price, invoicing details, shipping information, payment method, and payment confirmation. (Note: Sensitive payment card information is processed by payment service providers; we do not store full card numbers in an identifiable format).
• Device and Behavioral Data: Device type, browser, IP address, access time, page view history, clicks and interaction behavior, shopping cart activity, conversion path, source channel (UTM parameters), and data generated by Cookies and similar technologies.
• Customer Service and After-Sales Information: Refund/return records, customer service chat logs, problem descriptions, uploaded images or proof, and incident reports (e.g., related to safety events).
• Compliance and Risk Control Information: Transaction verification data, fraud detection data, legally required records, dispute resolution records, and compliance audit data.
• Other Information You Actively Provide: Product reviews, survey responses, subscription preferences, and user-generated content (UGC).

💡 II. Information Usage and Legal Basis: Silent Support

We process your information with just-right restraint, primarily for the purposes listed below, supported by the following legal bases (applicable to users in the EU/UK and other regions influenced by GDPR/local laws):

🍪 III. Cookies and Tracking Technology: Transparent Interaction

Cookie Purposes and Types We use Cookies and similar technologies to enhance the experience, enable functionality, and analyze performance. Main types include:

• Strictly Necessary Cookies: Essential for core site functions (e.g., shopping cart, security) and cannot be disabled (unless you disable all Cookies in your browser).
• Performance/Analytical Cookies: Used for aggregated traffic analysis and performance optimization (e.g., Google Analytics).
• Functional Cookies: Used to save user preferences, language settings, and interface preferences.
• Targeting/Advertising Cookies: Used to display relevant advertising and measure ad effectiveness (may be used by third-party ad services).

Your Choices You can manage or reject Cookies by changing your browser settings. In the EU/UK, we provide a prominent Cookie Consent Management Tool on first visit, allowing you to selectively consent to or reject non-essential Cookies.

🔗 IV. Data Sharing and Cross-Border Transfer

Data Sharing and Third-Party Services We only share data with third parties to the extent necessary to provide our services seamlessly. Main categories of sharing partners (examples) include:

• Payment Service Providers (for processing payments and fraud prevention)
• Logistics and Shipping Partners (for fulfilling delivery)
• Customer Service Platforms, Email, and Marketing Platforms (for sending notices, handling inquiries)
• Analytics Platforms (for website traffic and conversion tracking)
• Legal or Regulatory Bodies (based on legal obligations or enforcement requests)

Cross-Border Data Transfer As a global brand, Quanta Vine may need to transfer data to affiliated companies, service providers, or partners located in other jurisdictions for processing. Cross-border transfers will employ protective measures in accordance with applicable laws (such as Standard Contractual Clauses, appropriate safeguards, or recognized compliance frameworks).

🛡️ V. Data Security and Retention Period

Data Security Measures (Silent Protection) We adopt technical and administrative measures commensurate with the risk to protect personal information, including but not limited to: data encryption (in transit and at rest), access control, minimum privilege principles, periodic security audits, and disaster recovery procedures.

Data Retention Period We retain data based on business needs and compliance requirements. Principles include:

• Order and Financial Records: Retained according to tax and accounting regulations (typically 3–7 years, depending on the region)
• Customer Service and Dispute Records: Retained until the issue is resolved plus an appropriate extension (typically 1–3 years)
• Marketing Preferences and Subscriptions: Retained until the user unsubscribes or requests deletion
  

⚖️ VI. Your Rights and Legal Requirements

Your Rights (Just-Right Control) Depending on your jurisdiction, you may have the following rights (as exemplified by GDPR and other applicable laws):

• Right of Access
• Right to Rectification
• Right to Erasure (Right to be Forgotten)
• Right to Object (e.g., to direct marketing)
• Right to Withdraw Consent (where applicable)

Other Important Legal and Protection

• Minors Protection: We do not knowingly collect identifiable information from minors under 16 years old (refer to local law for age limits in other regions).
• Legal Requirements and Disclosure: We may disclose necessary information if legally, regulatory, or judicially compelled, or to protect the safety, rights, and property of Quanta Vine, our customers, or the public.
• Third-Party Links: Our site may link to third-party websites. These third parties have their own independent privacy policies, and Quanta Vine is not responsible for their data handling practices.
  

📞 VII. Policy Changes and Contact Us

Policy Updates We may update this Privacy Policy periodically based on business needs, regulatory changes, or improvements. If changes are substantial, we will notify registered users via an announcement on the website or by email, where applicable. The Effective Date at the top of this page indicates the current version's start date.

Contact Us (Service with Silence and Efficiency) If you have questions about our privacy practices, wish to exercise your rights, or need to report a data security incident, please contact us via the following methods:

• Email: support@quantavine.com
• Customer Service: Submit a request through the chat window in the bottom right corner of the website or the "Contact Us" form on the order page
• Complaints or Regulatory Contact: If you are unsatisfied with our handling, you may lodge a complaint with the regulatory authority in your jurisdiction (e.g., the Data Protection Authority in EU member states or the UK ICO)

Appendix — Summary of Common Rights Request Procedures

Thank you for reading the Quanta Vine Privacy Policy. We treat every piece of data and trust with "just-right precision," aspiring to foster sustainable beauty in the everyday, between nature and precision.