PLANET POSITIVE LIFE OFFICIAL PLATFORM POLICIES
PLANET POSITIVE LIFE OFFICIAL PLATFORM POLICIES
PLANET POSITIVE LIFE OFFICIAL PLATFORM POLICIES
2. PRIVACY AND DATA PROTECTION POLICY
2. PRIVACY AND DATA PROTECTION POLICY
2. PRIVACY AND DATA PROTECTION POLICY
2.1 Commitment to Data Responsibility
2.1 Commitment to Data Responsibility
2.1 Commitment to Data Responsibility
planetpositivelife.store treats data protection as a legal duty and a trust commitment.
Core principles:
- collect minimum required data
- use data only for legitimate purposes
- protect data through security safeguards
- do not sell personal data
- maintain transparency about how data is used
2.2 Data Collected
2.2 Data Collected
2.2 Data Collected
We may collect:
- Personal Information: name, phone, email, shipping address.
- Order and Transaction Data: order items, billing details, refunds, invoices.
- Payment Metadata: payment status, transaction reference numbers (not full card data).
- Technical Data: IP address, device identifiers, browser type, cookies.
- Usage Data: pages visited, clicks, time spent, search terms (aggregated analytics).
- Sustainability Preference Data (optional): category interests, preferences used for recommendations.
- We do not intentionally collect sensitive personal data unless legally required for compliance.
2.3 Purpose of Data Processing
2.3 Purpose of Data Processing
2.3 Purpose of Data Processing
Data is processed to:
- create and manage accounts
- process orders, payments, refunds
- coordinate shipping and delivery
- provide customer support and grievance resolution
- prevent fraud and ensure platform security
- comply with tax, invoicing, and legal obligations
- measure and improve platform performance
- build sustainability analytics and impact reporting in aggregated form
2.4 Data Sharing and Third Parties
2.4 Data Sharing and Third Parties
2.4 Data Sharing and Third Parties
Data may be shared with:
- payment gateways and banking partners (for payment processing)
- logistics partners (for delivery, tracking, returns pickup)
- technology providers (hosting, monitoring, analytics) under contractual safeguards
- regulatory authorities where legally required
No selling or renting of user personal data.
2.5 Data Storage, Security, and Retention
2.5 Data Storage, Security, and Retention
2.5 Data Storage, Security, and Retention
Security controls include:
- encryption in transit and at rest where applicable
- role-based access control
- logging and monitoring
- periodic security reviews
- incident response protocols
- Retention is limited to the period required for:
- delivering services
- legal compliance and recordkeeping
- fraud prevention and dispute resolution
2.6 User Rights and Requests
2.6 User Rights and Requests
2.6 User Rights and Requests
Users may request:
- access to their personal data
- correction of inaccuracies
- deletion of data subject to legal obligations
- withdrawal of consent for optional preferences
Requests are handled through official support channels. Certain data may be retained to comply with statutory obligations.