Data Protection

Privacy Policy

Your privacy is a fundamental right. This policy explains exactly what data we collect, why we collect it, who we share it with, and how you can control it.

01Information We Collect

We collect only the minimum data necessary to fulfill your order and provide customer service. We do not store your payment card details — all financial transactions are processed securely by our payment providers.

NAME
Full Name
Used for order processing, shipping labels, and customer communication.
EMAIL
Email Address
Used for order confirmations, shipping updates, and customer service correspondence.
ADDR
Shipping Address
Provided to our production team to manufacture and deliver your order.
PHONE
Phone Number (Optional)
Only collected when provided. May be used by shipping carriers for delivery coordination.
PAY
Payment Information
Processed directly by PayPal or Bybit Pay. We never see, store, or have access to your full card numbers, CVV, or bank account details.

02How We Use Your Data

Your personal information is used exclusively for the following purposes:

Order Fulfillment

Processing your order, manufacturing your product, and arranging delivery to your address.

Customer Service

Responding to your inquiries, resolving issues, and processing refund or replacement requests.

Order Communications

Sending order confirmations, shipping notifications, tracking updates, and delivery confirmations.

Legal Compliance

Maintaining records as required by tax, accounting, and legal regulations.

03Third-Party Data Sharing

We share your data only with the service providers necessary to fulfill your order and operate our website. We never sell your personal data to third parties.

MFG
Manufacturing Partner (Fulfillment)
Receives your name, shipping address, and order details to manufacture and ship your product. Our manufacturing partner operates under strict data protection agreements.
PAY
PayPal (Payment Processing)
Processes all card, Apple Pay, Google Pay, Venmo, and SEPA payments. Your financial details are handled entirely within PayPal's secure environment.
CRYPTO
Bybit Pay (Crypto Payments)
Processes cryptocurrency payments. Wallet and transaction details are managed within Bybit's secure platform.
ANLT
Google Analytics (Usage Analytics)
Collects anonymous, aggregated website usage data to help us improve our site. No personally identifiable information is shared. You may opt out using browser extensions or settings.
DB
Firebase (Database & Hosting)
Stores order data and user account information securely within Google's Firebase infrastructure, protected by enterprise-grade encryption.

04Cookies & Tracking

We use a minimal set of cookies to ensure the website functions correctly:

Essential Cookies

Session cookies required for shopping cart functionality, login persistence, and checkout flow. These cannot be disabled without breaking site functionality.

Analytics Cookies

Google Analytics cookies that collect anonymous usage statistics. You can opt out by installing the Google Analytics Opt-out Browser Add-on or adjusting your browser settings.

No Advertising Cookies: We do not use third-party advertising trackers, retargeting pixels, or social media tracking cookies.

05Data Retention

Order data (name, email, shipping address, order history) is retained for 3 years after the date of purchase. This retention period is necessary for:

Tax reporting and legal compliance obligations
Processing warranty claims and customer service requests
Fraud prevention and dispute resolution

After the retention period, your data is permanently and irreversibly deleted from our systems.

06Your Rights (GDPR & CCPA)

For EU Residents (GDPR)

Right to Access: Request a copy of all personal data we hold about you.
Right to Rectification: Request correction of inaccurate personal data.
Right to Erasure: Request deletion of your personal data ("right to be forgotten").
Right to Data Portability: Receive your data in a structured, machine-readable format.
Right to Object: Object to processing of your data for specific purposes.

For California Residents (CCPA)

Right to Know: Request disclosure of what personal information we collect and how it is used.
Right to Delete: Request deletion of your personal information.
Right to Opt-Out: We do not sell personal data, so no opt-out mechanism is necessary. However, we honor all opt-out requests.
Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.

To exercise any of these rights, email miamaiart@gmail.comwith the subject line "Privacy Rights Request." We will respond within 30 days.

07Children's Privacy

Mia Mai Art does not knowingly collect personal information from children under the age of 13 without verifiable parental consent. If we discover that we have inadvertently collected data from a child under 13 without appropriate consent, we will promptly delete that information.

Parents & Guardians: If you believe your child has provided personal information to us without your consent, please contact us immediately at miamaiart@gmail.com and we will take steps to remove that data.

08We Never Sell Your Data

🛡️

Zero Data Sales — Ever

Mia Mai Art has never sold, rented, traded, or otherwise monetized customer personal data to any third party — and we never will. Your data is used exclusively for order fulfillment and customer service.

09Policy Updates

This Privacy Policy may be updated periodically to reflect changes in our practices, legal requirements, or service providers. When we make significant changes, the revised policy will be posted on this page with an updated "Last Updated" date. We encourage you to review this page periodically.

10Contact Us

For any privacy-related questions, data requests, or concerns:

BUSINESSMia Mai Art

WEBSITEmiamaiart.com

EMAILmiamaiart@gmail.com