Privacy statement
This Privacy Statement explains what personal information SOUCI collects when you visit our store, place an order, or interact with us, and how we handle that information. We’ve kept it free of legalese — every section says what we actually do, in plain English. If anything is unclear, write to us at [email protected] and we will rewrite it.
Privacy in 30 seconds
- We collect only what we need to ship you a parcel and run the store.
- Default packaging is unbranded — no carrier label says “adult” anywhere on it.
- Card numbers are never stored on our servers; payments are tokenised through Stripe.
- You can export, delete, or restrict your data anytime in Privacy Center.
- We do not sell your data, ever, to anyone, full stop.
Information we collect
We collect three categories of personal information: information you give us directly, information generated by your use of the store, and information our payment processor needs to charge you. The table below breaks each one down.
| Category | What’s in it | Source |
|---|---|---|
| Account | Display name, email, optional phone number, hashed password, optional avatar. | You, when you sign up or update your profile. |
| Orders | Billing & shipping address, items purchased, totals, refunds, packing notes, sender alias, discreet-packaging preference. | You, at checkout. |
| Payment | Tokenised card reference (a string like pm_xxx), card brand & last 4 digits, billing country. | Stripe — we never see the full PAN or CVV. |
| Browsing | Recently viewed products, search history, wishlist additions, sessions, referrer. | Your browser. Off if you disabled tracking in Privacy Center. |
| Device | IP (truncated), browser, operating system, screen size, language preference. | Your browser, used for fraud signals and bug triage. |
| Support | Messages you send to support, plus our reply thread. | You, when you write to us. |
How we use information
Each piece of data has a stated purpose, a legal basis under GDPR, and a fixed retention window. We do not repurpose data for anything outside this list without your fresh, opt-in consent.
| Purpose | Legal basis | Retention |
|---|---|---|
| Fulfilling your order | Contract performance | 7 years (tax record requirement) |
| Customer support & warranty | Legitimate interest | 3 years after last interaction |
| Aggregated analytics (no profile) | Legitimate interest | 26 months, then aggregated permanently |
| Personalised recommendations | Consent (opt-in only) | Until consent withdrawn |
| Newsletter / marketing | Consent (double opt-in) | Until you unsubscribe |
| Fraud & abuse prevention | Legal obligation + legitimate interest | 2 years |
When we share with third parties
We share strictly the minimum necessary, and only with vetted processors bound by data-processing agreements that mirror this statement. The full list is below — if it’s not on this list, your data isn’t going there.
| Processor | What we send | Why |
|---|---|---|
| Stripe | Order total, currency, billing country, customer ID | To charge your card |
| Carriers (FedEx, USPS, regional) | Recipient name, shipping address, parcel weight, sender alias | To deliver your parcel — no product description on label |
| Email service (Postmark) | Email address, transactional message body | To send order confirmations and shipping updates |
| Cloud hosting (Cloudflare) | Truncated IP, request metadata | To serve the site and stop attacks |
| Tax authorities | Aggregated sales totals, invoice records | Required by law |
What we never do: sell your data, share it with advertising networks, hand it to data brokers, or use it for cross-site tracking. We also don’t load any third-party advertising or social-network pixels by default.
Your privacy rights
You have eight rights under GDPR (and equivalent rights under CCPA, LGPD, PIPEDA and similar regimes). All of them are exercised the same way — visit Privacy Center while signed in, or email [email protected]. We respond within 30 days, usually inside 48 hours.
- Access — request a machine-readable export of everything we hold on you.
- Rectification — correct inaccurate or out-of-date information.
- Erasure — delete your account and all linked data, except records we must keep by law (e.g. tax invoices).
- Restriction — temporarily freeze processing while a dispute is resolved.
- Portability — receive your data in a structured, commonly used format (we export JSON).
- Objection — opt out of analytics, marketing, or any other legitimate-interest processing.
- Withdraw consent — for anything we process under consent, you can revoke it at any time, with no effect on prior lawfulness.
- Lodge a complaint — with your national data-protection authority. We’d appreciate the chance to fix it first, but it’s your call.
International data transfers
SOUCI’s servers are hosted in the United States. When data is transferred from the EEA, the United Kingdom, or Switzerland to the United States, we rely on the EU Standard Contractual Clauses (2021/914) and the UK International Data Transfer Addendum, supplemented by additional encryption-at-rest and access-control measures. A copy of these clauses is available on request.
How long we keep data
We keep personal data only for as long as it’s needed for the purpose it was collected, plus any legally required hold. Specific windows are listed in the How we use information table. After the window expires, data is irreversibly deleted from production systems and aggregated (or removed) from backups within the next backup rotation cycle.
Security measures
The full technical breakdown lives on our Security page. In short: TLS 1.3 in transit, AES-256 at rest, short-lived JWT sessions, salted bcrypt password hashes, role-based access for our team, daily encrypted backups, annual third-party penetration testing, and 24-hour internal incident response targets.
Children’s privacy
SOUCI is an 18+ store. We don’t knowingly collect data from anyone under 18 — the age gate on the homepage is not optional. If you believe a minor has created an account, please report it to [email protected] and we will delete the account and all related data within 48 hours.
Cookies & tracking
We use a small number of strictly-necessary cookies for the bag, sign-in, and theme preference. Optional analytics and personalisation are off by default and can be turned on or off in Privacy Center at any time. The full breakdown is in our Cookie Policy.
Changes to this statement
If we materially change how we handle your data, we’ll notify you by email at the address on file at least 14 days before the change takes effect, and the change will be reflected in the “Last updated” stamp at the bottom of this page. Minor wording or clarification edits don’t trigger a notification, but the stamp always reflects the most recent revision.
Contacting us
For any privacy question, request, or complaint, write to our Data Protection Officer at [email protected]. We typically reply the same day. For postal mail, write to: SOUCI / Data Protection Officer, [your office address here].