Privacy Policy – Jiaxin Sport Shop

Privacy Policy

1. Introduction

Jiaxin Sport Shop(“we”, “us”) www.jiaxinsport.com. This policy explains how we collect, use, and protect your personal data in compliance with:

  • General Data Protection Regulation (GDPR) – EU
  • California Consumer Privacy Act (CCPA)
  • Children’s Online Privacy Protection Act (COPPA)

2. Data We Collect

Data Category Examples Legal Basis
Identity Data Full name, billing/shipping address Contract fulfillment (GDPR Art.6(1)(b))
Transaction Data Order history, payment method (last 4 digits of cards) Legal obligation (tax compliance)
Technical Data IP address, device type, browser fingerprint Legitimate interests (fraud prevention)

3. How We Use Data

  • Order Processing: Verify payments via 3D Secure, generate shipping labels
  • Fraud Prevention: Analyze IP/device patterns using Sift Science
  • Product Improvement: Analyze returns data to enhance shoe designs
  • Marketing: Send abandoned cart reminders (opt-out available)
Legal Basis: GDPR Art.6(1)(f) – Legitimate business interests

4. Data Sharing & Disclosure

Recipient Purpose Safeguards
DHL/FedEx Package delivery Data Processing Agreement (DPA)
Stripe/PayPal Payment processing PCI DSS Level 1 encryption
Google Analytics Traffic analysis IP anonymization enabled

5. International Data Transfers

When transferring data outside EU/UK:

  • EU-US transfers: Standard Contractual Clauses (SCCs)
  • Asia-Pacific transfers: ASEAN Data Management Framework
GDPR Art.44-49 – Adequacy decisions

6. Data Retention

  • Active accounts: 7 years (IRS requirement)
  • Abandoned carts: 90 days
  • Marketing consent: 2 years from last interaction

7. Data Security

  • Encryption: AES-256 for databases, TLS 1.3 for transmissions
  • Access Controls: Biometric authentication for server access
  • Testing: Annual penetration tests by Cure53

8. Your Rights

Right Scope How to Exercise
Access/Portability EU/Global Download via account dashboard
Deletion CCPA/GDPR Submit erasure request form
Opt-Out Marketing emails Unsubscribe link in emails

9. Cookies & Tracking

  • Essential: Session cookies – Cannot disable
  • Analytical: Google Tag Manager – Manage via preference center
  • Advertising: Facebook Pixel – Opt-out through DAA portal

10. Children’s Privacy

  • No services targeted to under 13
  • Youth sizes require adult verification
  • COPPA-compliant parental consent process

11. Contact Us

Data Protection Officer: [email protected]