Data Protection & Privacy Policy

1. Data Collection & How We Use It

At Bazaarica (operated under Bazaarica Kozmetik, referred to as the "Site", "We", "Our", or "Us"), we process your personal data strictly for legitimate business functionalities:

• Fulfillment & Delivery: We collect your name, delivery address, phone number, and email strictly to fulfill purchases, print accurate shipping labels for our logistics partners (DHL, Aramex, SMSA, NAQEL), and provide customer care.
• Secure Payment Processing: Bazaarica does not collect or view your full credit/debit card numbers. All sensitive banking data is processed exclusively through certified payment gateways adhering to PCI-DSS Level 1 Security Standards. Our system only retains a secure, masked identifier (such as the card type and the first 6 / last 4 digits) for transaction verification.
• Fraud Prevention & Security: To protect our platform and customers, orders are scanned for security risks. We reserve the right to temporarily suspend or cancel processing if an analysis flags signs of unauthorized card usage.
• Third-Party Handshake: We share your contact info strictly with our delivery carriers to ensure doorstep fulfillment, and anonymous browsing data with tools like Google Analytics to monitor checkout stability.

2. Data Retention Limits

We enforce strict storage limits to protect your data footprint:

• Marketing & Browsing Data: Automatically deleted or anonymized after 12 months of user inactivity.
• Transaction & Invoice Data: Stored securely only for the duration required by applicable international trade and corporate tax accounting laws, after which it is permanently purged.

3. Regional Regulatory Compliance (GCC & Europe)

We dynamically adjust our processing standards to guarantee absolute conformity with your regional consumer rights:

• Gulf Cooperation Council (GCC) Compliance: For users across Saudi Arabia and the United Arab Emirates, our systems fully comply with the UAE Personal Data Protection Law (Federal Decree-Law No. 45 of 2021) and the Saudi Arabian Personal Data Protection Law (PDPL).
• European Union & United Kingdom Compliance (GDPR): If you are accessing our store from Europe or the UK, you hold the legal right to Access the records we hold about you, Rectify inaccurate information, or request complete Erasure ("The Right to be Forgotten") from our marketing databases.

4. Cookies Policy

Our website deploys small data files known as Cookies to ensure smooth site navigation and a functional checkout experience.

• Strictly Necessary Cookies: Essential for fundamental store mechanics, such as remembering cart items and maintaining secure logins.
• Analytical & Performance Cookies: Anonymously track page speeds, errors, and system performance to help us improve the platform.
• Targeted Advertising Cookies: Used by trusted networks (like Google or Meta) to display relevant updates and offers tailored to your interests on external websites.

5. Security Architecture & Age of Consent

• Data Security: Bazaarica utilizes advanced Secure Socket Layer (SSL/TLS) encryption technology across our entire digital infrastructure to prevent unauthorized access, alteration, or accidental loss of your records.
• Age of Consent: By navigating this platform, you certify that you are at least the legal age of majority in your country of residence.