Privacy policy

Our Commitment to Your Privacy

At FrostPaper, we are dedicated to protecting your personal data and your right to privacy. This Privacy Policy outlines how we collect, use, store, and safeguard your information when you visit our website www.frostpaper.com and purchase our products, including notebooks, writing instruments, and organization tools.

By using our site, you agree to the collection and use of information in accordance with this policy.

Information We Collect

We collect information that you provide directly to us and information collected automatically.

Information You Provide:

  • Contact and Identity Data: Such as your name, shipping and billing address, and email address, which is necessary to process and fulfill your orders.
  • Transaction and Payment Data: Details about purchases you make. Please note that all payment transactions are processed by our secure third-party payment processors. We do not store your full credit card details on our servers.
  • Communication Data: If you contact us for customer support via email, we collect your email address and the content of our correspondence.

Information Collected Automatically:

  • Technical Data: This includes your Internet Protocol (IP) address, browser type and version, time zone setting, browser plug-in types, operating system, and other technology on the devices you use to access our site.
  • Usage Data: Information about how you use our website, products, and services, including pages viewed, products browsed, and the referring website address.
  • Cookies and Similar Technologies: We use cookies and similar tracking technologies to track activity on our site and hold certain information to enhance your browsing experience. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent.

How We Use Your Information

We use the collected data for various purposes:

  • To process and complete your purchases, including payment, shipping, and providing invoices/order confirmations.
  • To communicate with you, primarily regarding your order status, and to respond to your inquiries sent to [email protected].
  • To improve, test, and monitor the effectiveness of our website and services.
  • To prevent, detect, and address technical issues, fraud, or potentially prohibited/illegal activities.
  • To comply with applicable laws and regulations.

Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), our legal basis for collecting and using your personal information depends on the context in which we collect it. We typically rely on the following bases:

  • Performance of a Contract: Processing your data is necessary to fulfill the order contract between you and FrostPaper.
  • Legitimate Interests: Our use of your data for website security, analytics, and improvement constitutes our legitimate interest, provided it does not override your fundamental rights.
  • Legal Compliance: Processing may be necessary for compliance with a legal obligation we are subject to.
  • Consent: In specific cases, we may ask for your explicit consent, which you can withdraw at any time.

Data Sharing and Disclosure

We do not sell, trade, or rent your personal identification information to others. We may share your data with trusted third-party service providers under strict confidentiality agreements to perform functions on our behalf, such as:

  • Payment processing companies (e.g., Stripe, PayPal).
  • Shipping and logistics partners (e.g., postal services, couriers) to deliver your order.
  • Analytics providers (e.g., Google Analytics) to understand website traffic and usage trends.

We may also disclose your information where required by law, to protect our rights, or to prevent fraud or imminent harm.

International Data Transfers

Your information, including personal data, may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ. We ensure that appropriate safeguards, such as Standard Contractual Clauses approved by the European Commission, are in place when transferring data outside the EEA or UK.

Data Security and Retention

Security:

We implement commercially reasonable technical and organizational security measures designed to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These include encryption (SSL/TLS) for data transmission and secure storage practices.

Retention:

We retain your personal data only for as long as is necessary for the purposes set out in this policy, including to fulfill your order, comply with legal obligations (such as tax and accounting laws), resolve disputes, and enforce our agreements. Transaction data is typically retained for a period of 7 years for legal and accounting purposes.

Your Data Protection Rights

Depending on your location, you may have certain rights regarding your personal data:

  • Access & Portability: The right to request copies of your personal data.
  • Rectification: The right to request correction of inaccurate or incomplete information.
  • Erasure ("Right to be Forgotten"): The right to request deletion of your personal data under certain conditions.
  • Restriction & Objection: The right to request restriction of processing or to object to our processing of your personal data.
  • Withdraw Consent: Where we rely on consent, you have the right to withdraw it at any time.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request in accordance with applicable data protection laws. You also have the right to lodge a complaint with your local data protection authority.

Third-Party Links

Our website may contain links to other sites that are not operated by us. If you click on a third-party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and you are aware that your child has provided us with personal data, please contact us. If we become aware that we have collected personal data from a child under 16 without verification of parental consent, we take steps to remove that information from our servers.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the effective date at the top. We encourage you to review this Privacy Policy periodically for any changes.

Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please do not hesitate to contact us at:

Email: [email protected]