PRIVACY POLICY
Policy Preface & Core Definition
Effective Date: MM/DD/YYYY
Policy Overview: This binding privacy governance document governs all personal data processing behaviors operated by this cross-border retail platform, rooted in fairness, transparency and minimization privacy principle. We regard user digital privacy as core brand asset, standardize full-link data processing flow from user access to order closing, respect regional differentiated privacy laws worldwide, and balance platform operational demands and user privacy autonomy comprehensively.
Category 1: Two Major Data Classification
1. Identifiable Personal Data
• Basic identity info: full name, account avatar, login mailbox, bound mobile number
• Transaction logistics info: billing address, overseas delivery address, customs declaration info, payment settlement record
• Interactive info: after-sales dialogue content, review published content, activity participation record
2. Non-Identifiable Anonymous Data
• Desensitized page access volume, popular product browsing label, regional consumption preference statistics
• Aggregated fault access data for website server maintenance optimization
Category 2: Legitimate Collection Basis
We collect user data only based on three legal premises: user explicit voluntary consent, performance of cross-border order service contract, legitimate platform interest risk prevention. No forced data authorization, no hidden pop-up forced consent, no service limitation for users refusing non-essential data authorization.
Category 3: Forbidden Data Processing Behavior
❌ Forbid collecting sensitive biometric data, religious preference, health private info without explicit written approval
❌ Forbid bundling privacy consent with order checkout permission compulsorily
❌ Forbid copying, backing up and diverting user private data beyond service purpose
❌ Forbid providing user data to overseas third-party marketing institutions without authorization
Full Clause Execution Rule & User Rights
Part 1: Data Usage Boundary & Overseas Transfer
All collected data is limited to order fulfillment, customer service response, platform risk control, commodity iteration, legal compliance filing scope.
Part 2: Third-Party Processor Supervision
We conduct quarterly privacy audit for all external vendors, terminate cooperation immediately once privacy violation behavior occurs.
Part 3: Cookie Hierarchical Management Rule
Strictly divide necessary cookies, functional cookies, marketing cookies. Necessary cookies run automatically to guarantee website basic operation; functional cookies need one-time user consent; marketing cookies support single-click permanent opt-out. Users can clear local cookie cache via browser setting anytime to erase browsing track independently.