At Dilara Fashion, safeguarding your privacy and protecting your personal data is our top priority. This Privacy Policy explains how we collect, use, and protect your data when interacting with our website and services. We comply with all applicable data protection laws and aim to ensure the highest level of transparency and security for our users and partners, including financial institutions we collaborate with.
1. Information We Collect
We collect both personal and non-personal information to enhance your shopping experience:
Personal Information: Includes your name, email address, phone number, shipping and billing addresses, and payment details. This data is collected when you create an account, place an order, or contact customer service.
Payment Information: Securely processed through trusted third-party payment gateways, ensuring your payment details are never stored on our servers. We comply with the Payment Card Industry Data Security Standard (PCI DSS) to ensure secure transactions.
Non-Personal Information: Includes browser type, operating system, IP address, and website usage data collected through cookies and analytics tools to improve our website’s functionality.
2. How We Use Your Data
We use your data to:
Process Orders: Ensure your purchases are fulfilled correctly and shipped to the right address.
Improve Customer Experience: Provide tailored recommendations, respond to inquiries, and send updates about your order status.
Marketing Communications: With your consent, we send promotions, offers, and product updates. You can opt-out of these communications at any time.
Fraud Prevention & Security: Monitor transactions to prevent fraud and protect both you and our platform. We work with certified payment processors and banks to maintain a high standard of security.
3. Data Security
We take stringent measures to protect your personal data from unauthorized access or misuse:
SSL Encryption: All sensitive data transferred between your device and our servers is encrypted using Secure Socket Layer (SSL) technology.
Payment Security: We work with secure payment gateways (e.g., Stripe, PayPal) that comply with PCI DSS requirements. Your payment details are never stored or accessible by unauthorized parties.
Data Access Control: Only authorized personnel can access personal data for legitimate purposes, and all employees are trained on data protection practices.
Two-Factor Authentication (2FA): We offer an additional layer of security for account access by enabling 2FA on your user profile.
4. Sharing Your Information
We value your trust and do not sell or rent your data. We only share it with third-party services essential for order fulfillment, including:
Payment Processors: For secure transactions (e.g., banks, credit card networks).
Shipping Providers: To deliver your purchases to you.
Fraud Detection Services: To monitor for fraudulent activities.
All third parties are vetted to ensure they meet high data protection standards and are contractually obligated to keep your information confidential.
5. Cookies & Tracking Technologies
We use cookies to:
Improve Website Performance: Enhance site navigation and personalize content.
Analyze Traffic: Understand how visitors interact with our website to optimize user experience.
Marketing: Track the effectiveness of our marketing campaigns.
You can manage your cookie preferences in your browser settings.
6. Your Data Rights
You have the right to:
Access & Portability: Request a copy of your personal data.
Rectification: Correct any inaccuracies in your data.
Erasure (Right to be Forgotten): Request the deletion of your personal data from our records.
Restrict Processing: Limit the use of your personal data under certain conditions.
Withdraw Consent: Opt-out of marketing communications at any time.
To exercise these rights, please contact us at [email address].
7. Financial Partner Compliance
We adhere to the strictest data protection measures to ensure compliance with our financial partners, including banks and payment processors. This includes:
GDPR Compliance: We ensure all data practices align with the General Data Protection Regulation (GDPR) for users within the European Union.
PCI DSS Certification: We follow Payment Card Industry Data Security Standards to maintain the integrity and security of payment transactions.
Bank-Level Security Standards: We comply with banking industry regulations to build trust with financial institutions and ensure safe handling of sensitive data during transactions.
8. Data Retention
We retain personal data only as long as necessary to fulfill the purposes outlined in this policy or to comply with legal obligations. Once data is no longer needed, it is securely deleted.
9. Policy Changes
We may update this Privacy Policy to reflect changes in our practices or legal obligations. Any updates will be posted on this page, and significant changes will be communicated via email or a website notification.
10. Contact Us
If you have any questions or concerns about our privacy practices, please contact us at:
