Privacy Policy

Page 2 — Definitions

For clarity and consistency across different laws and jurisdictions, the following terms have the meanings set out below. These definitions are intentionally detailed to avoid ambiguity and to reflect standard privacy frameworks.

• Personal Information (PI): Any information relating to an identified or identifiable individual, including identifiers, online identifiers, and inferences.
• Sensitive Personal Information: Categories that may include government IDs, precise location, financial data, health data, and similar.
• Processing: Any operation performed on PI, such as collection, storage, use, disclosure, or deletion.
• Controller / Business: The entity determining the purposes and means of processing PI.
• Processor / Service Provider: An entity processing PI on behalf of the Controller.
• Cookies: Small text files placed on a device to remember preferences or recognize a browser.
• Anonymization and Pseudonymization: Techniques to de-identify data to varying degrees.

Terms not defined here have their ordinary meaning, or the meaning assigned by applicable privacy law.

Page 3 — Information We Collect

We may collect the following categories of information, depending on your interactions with our Services:

1. Account & Identity Data: Name, email, phone, password hashes, identifiers.
2. Contact & Address Data: Billing, shipping, and alternative pickup addresses; landmark details for custom sourcing.
3. Order & Transaction Data: Items purchased; order instructions (e.g., specific regional product requests); currency, totals, taxes, discounts; delivery preferences.
4. Payment Data: Tokenized payment identifiers from payment gateways; last four digits of cards; UPI VPA (where applicable). We do not store full card data on our servers.
5. Logistics Data: Tracking numbers, carrier details, customs declarations, proof of delivery.
6. Device & Usage Data: IP address, device identifiers, browser type, operating system, timestamps, pages viewed, clickstream, and performance diagnostics.
7. Location Data: Approximate location inferred from IP; precise location if you allow it.
8. Communications: Emails, chat transcripts, support calls (which may be recorded for quality and training).
9. Marketing Preferences: Subscriptions, opt-in/opt-out flags, campaign engagement.
10. User-Generated Content: Reviews, Q&A, forum posts, photos you upload.

Where permitted, we may create inferences from the above (e.g., preferences, interests, and likelihood of reorder) for service optimization and fraud prevention.

Page 4 — Sources of Data

We obtain information from the following sources:

• Directly from you via account sign-up, checkout, contact forms, and custom order requests.
• Automatically through cookies, SDKs, and similar technologies.
• Third parties such as payment gateways, identity verification services, anti-fraud vendors, marketing partners, and logistics providers.
• Public sources and open datasets for address validation, risk scoring, and compliance.

We may combine data from different sources as permitted by law.

Page 5 — How We Use Information

We process personal information for the following purposes:

• Provide, operate, and improve our marketplace and custom‑sourcing services.
• Process transactions, fulfill orders, arrange shipping, handle returns and replacements.
• Detect, prevent, and investigate fraud, abuse, security incidents, and prohibited activities.
• Personalize content, recommendations, and promotions; conduct analytics and A/B testing.
• Provide customer support and respond to inquiries; verify identity when necessary.
• Comply with legal obligations, tax and customs requirements, and requests from authorities.
• Establish, exercise, or defend legal claims.

Where required, we will obtain consent for specific processing activities (e.g., optional marketing communications, precise location, certain cookies).

Page 6 — Legal Bases / Lawful Grounds

Depending on your location, we rely on different legal bases for processing, such as consent, performance of a contract, compliance with legal obligations, protection of vital interests, public interest, and legitimate interests (e.g., to secure the Services, prevent fraud, or improve features). Where legitimate interests are used, we balance them against your rights and expectations.

Page 7 — Sharing & Disclosures

We may disclose personal information to:

1. Service Providers & Processors: hosting, analytics, payment processing, verification, customer support, and logistics vendors bound by contractual safeguards.
2. Business Partners: marketplace sellers (where applicable), promotional partners, and customs brokers as needed for fulfillment.
3. Authorities & Legal: to comply with law, enforce terms, protect rights, safety, or property.
4. Corporate Transactions: in connection with mergers, acquisitions, financings, or asset transfers, subject to appropriate protections.

We do not sell personal information for money. Where applicable law treats certain disclosures for cross‑context behavioral advertising as a “sale” or “share,” you may opt out as described in Section 10.

Page 8 — International Transfers

We operate globally. Your information may be transferred to, stored, and processed in countries other than your own. Where required, we implement appropriate safeguards such as standard contractual clauses or rely on adequacy decisions. By using the Services, you acknowledge such transfers as necessary for the performance of the contract and service delivery.

Page 9 — Data Retention & Deletion

We retain personal information for as long as necessary to fulfill the purposes for which it was collected, including satisfying legal, accounting, tax, and reporting obligations, resolving disputes, and enforcing agreements. Retention periods vary by category (e.g., order and invoice records are typically retained longer than marketing preferences). When no longer needed, we will delete, anonymize, or aggregate the data according to our schedules and legal requirements.

Page 10 — Your Rights & Choices

Subject to applicable law, you may have rights to access, correct, update, delete, or port your data; to object or restrict certain processing; to opt out of targeted advertising or profiling; and to withdraw consent at any time (without affecting the lawfulness of prior processing). You may exercise your rights by contacting us as described in Section 20. We may need to verify your identity before acting on a request.

• Marketing Communications: Opt out via unsubscribe links or account settings.
• Cookies: Manage through browser settings and our cookie banner/preferences.
• Appeals: Where required, you may appeal a denied request; instructions will be provided in our response.

Page 11 — Security Measures

We implement administrative, technical, and physical safeguards intended to protect personal information, including encryption in transit, restricted access, role-based permissions, secure development practices, and vendor due diligence. No system is completely secure; you are responsible for maintaining the confidentiality of your credentials and promptly notifying us of any suspected compromise.

Page 12 — Children’s Privacy

Our Services are not directed to children under the age where parental consent is required by law in their jurisdiction. We do not knowingly collect personal information from such children. If you believe a child has provided personal information to us without proper consent, please contact us and we will take appropriate steps to delete such information.

Page 13 — Cookies & Similar Technologies

We use cookies, SDKs, pixels, and local storage to operate and improve the Services, measure engagement, remember preferences, analyze traffic, and deliver relevant content. Categories include strictly necessary, performance/analytics, functionality, and advertising cookies. You may adjust your preferences via our cookie banner and your browser settings, though disabling certain cookies may affect functionality.

Page 14 — Payments, Orders & Logistics

Payments are processed by third‑party gateways, which may collect and process your payment information under their own policies. We receive limited payment metadata necessary to reconcile and fulfill orders. To fulfill international and custom orders, we share necessary details with shipping carriers, fulfillment centers, customs authorities, and brokers. This may include commodity descriptions, declared values, HS codes, and recipient contact details.

Page 15 — User‑Generated Content

When you post reviews, ratings, photos, or other content, that information may become public and may be indexed by search engines. Please do not post information you do not wish to make public. We may moderate UGC for compliance with our terms and applicable law and may remove content at our discretion.

Page 16 — Automated Decision‑Making & Profiling

We may use automated systems to assist with fraud detection, risk scoring, order prioritization, and recommendations. These systems analyze signals (e.g., device attributes, behavioral patterns) to help us make quicker, more consistent decisions. Where required by law, you may request information about the logic involved, the significance, and the envisaged consequences of such processing, as well as the right to obtain human review.

Page 17 — Third‑Party Links & Services

The Services may link to or integrate with third‑party websites, plug‑ins, SDKs, or services. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies before providing them with information.

Page 18 — Regional Notices

Depending on your location, additional notices may apply, including but not limited to: the EU/EEA/UK GDPR, India’s DPDP Act, U.S. state privacy laws (e.g., CCPA/CPRA, VCDPA, CPA), Canada’s PIPEDA, Australia’s Privacy Act, and others. Where specific provisions are mandated (e.g., data protection officer contact, representative information, appeal rights, or metrics reporting), we will provide such details in this section or via a linked regional annex.

• EU/EEA/UK: You may have the right to lodge a complaint with your supervisory authority.
• India: You may have rights under the DPDP Act including the right to grievance redressal via our designated grievance officer.
• US Residents: You may have rights to opt‑out of targeted advertising, request disclosures, corrections, and deletions.

Page 19 — Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. The “Effective Date” at the top indicates when this Policy was last revised. Material changes will be communicated via the Services or by other reasonable means. Your continued use of the Services after an update constitutes acceptance of the revised Policy.

Page 20 — How to Contact Us

If you have questions, requests, or complaints regarding this Privacy Policy or our data practices, you may contact us at:

We will respond within the timeframes required by applicable law. If you are unsatisfied with our response, you may have the right to escalate to a regulator or supervisory authority in your region.