This Privacy Policy governs the data processing practices of Pristineurn (referred to herein as “we”, “us”, or “our”). We operate as the primary data controller responsible for the management, collection, and processing of personal data gathered via our official commercial domain, www.pristineurn.com.
Our data operations are structured to maintain strict compliance with applicable global data governance frameworks, including the Personal Information Protection and Electronic Documents Act (PIPEDA) of Canada, the General Data Protection Regulation (GDPR) within the European Union, and relevant federal and state privacy legislation within the United States (such as CCPA/CPRA).
1. Data Controller Identification
The legal entity responsible for processing your personal data is:
- Brand Name: Pristineurn
- Corporate Registration Number: 78493 2106 BC0001 (Registered in Canada)
- Registered Address: Suite 402, 120 Viger Ave W, Montreal, QC H2Z 1Z1, Canada
- Official Communications Email: minimalist@pristineurn.com
- Telephone Support: +1 (514) 555-0184
2. Categories of Data Collected
To facilitate commercial transactions and maintain professional, standard e-commerce operations, we collect the following categories of information:
- Identity & Contact Data: Full name, billing address, delivery address, telephone number, and email address.
- Transactional Data: Detailed records of products purchased, order values, and specific historical interactions with our customer operations team.
- Technical & Usage Data: Internet protocol (IP) addresses, browser characteristics, operating systems, and basic usage data standard across e-commerce interactions.
3. Purpose and Legal Basis for Processing
We process personal data under the following legitimate legal frameworks:
- Performance of a Contract: To manage, process, and complete transactions, including the fulfillment and delivery of your ordered home decor items.
- Legal Compliance: To satisfy mandatory accounting, taxation, and corporate governance requirements.
- Legitimate Interests: To maintain the structural stability of our digital infrastructure, minimize commercial/fraud risk, and manage standard business communications.
4. Third-Party Data Processing & Financial Transactions
To complete financial transactions securely, user data is shared only with necessary, trusted professional entities:
- Payment Processing Via Stripe: All financial transactions are managed and processed externally via our integrated third-party payment infrastructure provider, Stripe.
- Data Transmission & Security: When an order is submitted, your financial information is transmitted directly to Stripe. We do not store or retain raw payment instrument details (such as full credit card numbers or CVV security codes) on our corporate servers. Stripe processes this information in strict compliance with the Payment Card Industry Data Security Standard (PCI-DSS) and under their specific global privacy guidelines.
5. Data Retention Periods
We maintain personal data only for the period necessary to fulfill the specific operational obligations for which it was originally collected, or to satisfy legal, statutory, regulatory, and financial recording mandates:
- Transactional Records: Order details and identity data associated with standard commercial purchases are retained for a period matching Canadian, US, and EU fiscal requirements (typically up to seven [7] years following the conclusion of the relevant fiscal period) to meet auditing, corporate taxation, and statutory accounting duties.
- Communications Data: General customer inquiries and correspondence are retained for a standard operational period of up to two [2] years from the date of the last communication to ensure consistent support quality, unless legal retention mandates require a prolonged duration.
6. International Data Transfers
As our operations are located in Canada and we provide services to clients across the United States and Europe, your personal data will be transferred, stored, and processed outside your country of residence. We implement legally accepted mechanisms, such as Standard Contractual Clauses (SCCs), to verify that your data is afforded a high level of protection equivalent to international privacy standards.
7. Consumer Data Rights
Depending on your jurisdiction (such as the European Union under GDPR or specific states within the United States), you hold specific statutory rights regarding your personal information, which include:
- The right to request access to the personal data we hold.
- The right to request the rectification of inaccurate or incomplete records.
- The right to request the restriction or erasure of data under defined legal conditions (the “right to be forgotten”).
- The right to object to processing activities conducted under legitimate business interests.
To exercise any of these administrative rights, please forward a formal written request to our dedicated support address: minimalist@pristineurn.com.