Privacy Policy | Protecting Your Data

Last Updated: February 11, 2026
Effective Date: February 11, 2026

Section 1: Introduction and Scope

Welcome to Unglaz ("we," "us," "our"), operated by UNGLAZ LLC, a limited liability company organized under the laws of the State of Delaware, United States. We are a provider of luxury jewelry available through our website www.unglaz.com ("Website"). We are committed to protecting your privacy and ensuring the security of your personal information.

This Privacy Policy outlines the types of personal information we collect, how we use and process your information, your rights regarding your data, and how to contact us for questions or concerns.

1.1 Scope of the Privacy Policy

This Privacy Policy applies to all Users who access, browse, or purchase from our Website, information collected during interactions with our services, including customer support and communications, and visitors from the United States, the European Union (EU), and other regions where privacy laws apply.

By using our Website or providing us with your personal data, you agree to this Privacy Policy. If you do not agree with this Privacy Policy, please do not use the Website or provide personal information.

This Privacy Policy should be read together with our Terms and Conditions and Cookie Policy, available on the Website. In the event of any conflict between this Privacy Policy and the Terms and Conditions regarding the processing of personal data, this Privacy Policy shall prevail.

1.2 Legal Compliance

We process personal information in accordance with the General Data Protection Regulation (GDPR) for individuals in the European Economic Area (EEA), the California Consumer Privacy Act (CCPA) for residents of California, United States, and other applicable privacy laws and regulations in regions where we operate.

1.3 Changes to the Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in laws and regulations, and updates to our business operations, services, or data practices.

We will notify you of material changes by posting an updated version on the Website with a revised "Last Updated" date, and where required by applicable law, sending an email notification to registered Users.

Where changes materially affect the lawful basis for processing, the categories of data collected, or the rights of Users, Unglaz will take reasonable steps to obtain renewed consent where required by applicable law.

Please review this Privacy Policy periodically. Continued use of the Website after non-material updates constitutes acceptance of the changes.

1.4 Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal information, please contact us:

Email: privacy@unglaz.com
Website: www.unglaz.com
Subject Line: Privacy Inquiry

1.5 EU Representative

For Users located in the European Union, and in accordance with GDPR Article 27, inquiries regarding data processing may be directed to: privacy@unglaz.com

Note: If UNGLAZ LLC does not have an establishment in the EU but regularly processes personal data of EU residents, GDPR Article 27 may require the designation of a representative in the EU. If a representative is appointed in the future, their contact details will be published here.

1.6 Data Protection Officer

UNGLAZ LLC has assessed its obligations under GDPR Article 37 regarding the appointment of a Data Protection Officer (DPO). Based on the current nature and scale of data processing activities, the appointment of a DPO is not required at this time. This assessment is reviewed periodically as business operations evolve.

For all data protection inquiries, please contact: privacy@unglaz.com

Section 2: Information We Collect

To provide you with high-quality products and services, Unglaz collects certain personal and non-personal information when you interact with our Website or services. This section outlines the types of data we collect, how it is obtained, and its purpose.

2.1 Personal Information You Provide

We collect personal information that you voluntarily provide when you make a purchase on our Website, create an account or register for our services, subscribe to our newsletters or marketing communications, contact our support team for inquiries, returns, or warranty claims, or participate in surveys, promotions, or events hosted by Unglaz.

Examples of personal information include:

Identity Information: Full name, title, email address, phone number, and shipping/billing address.

Payment Information: Credit/debit card details or bank account information (processed securely via third-party payment processors).

Order Details: Purchase history, order numbers, and preferences.

Communication Data: Messages, reviews, or inquiries sent to our team.

We do not collect or store sensitive payment data such as card numbers; this information is securely handled by third-party payment processors.

2.2 Information Collected Automatically

When you visit or interact with the Website, certain data is collected automatically through cookies, tracking tools, and similar technologies. This includes:

Technical Data: IP address, browser type and version, device type and operating system, date, time, and duration of your Website visits.

Usage Data: Pages visited, links clicked, and Website navigation patterns, referring URL or source (e.g., search engines, advertisements).

We use this information to monitor Website performance and improve user experience, ensure Website security and prevent fraudulent activities, and analyze trends and gather demographic insights.

For detailed information about cookies and tracking technologies used on the Website, including a complete schedule of active cookies, please refer to our Cookie Policy.

2.3 Information from Third Parties

We may collect personal information about you from the following third-party sources:

Payment Processors: To confirm transactions and process payments (including Shopify Payments and other payment methods made available through the Website).

Shipping Carriers: To deliver orders and track shipments.

Marketing Partners: To enhance our understanding of customer preferences (including Google Ads and LinkedIn Ads for advertising attribution and campaign measurement).

Social Media Platforms: If you choose to engage with Unglaz on platforms like Instagram or others.

Analytics Providers: To analyze Website traffic and user behavior (including Google Analytics).

E-commerce Platform: Shopify Inc. provides platform services including store functionality, analytics infrastructure, and fraud prevention.

Third-party data collection complies with the privacy policies and agreements applicable to those platforms.

2.4 Cookies and Tracking Technologies

Our Website uses cookies and similar tracking technologies to collect information automatically. For comprehensive information about the cookies used on this Website, including cookie names, providers, purposes, durations, legal basis per category, and your choices for managing cookies, please refer to our Cookie Policy.

2.5 Information for Marketing and Promotions

With your consent, we may collect information to send you newsletters, special offers, and updates about Unglaz Products, as well as promotions, surveys, and event invitations.

You may opt out of marketing communications at any time by clicking the "Unsubscribe" link in our emails or contacting us at privacy@unglaz.com.

2.6 Information Collected for Legal Compliance

We may collect and retain certain information to comply with legal obligations, including fraud prevention and detection, tax reporting and accounting purposes, and compliance with GDPR, CCPA, or other applicable laws.

2.7 Aggregated and Anonymized Data

We may collect aggregated or anonymized data that does not identify you directly, such as general demographics or Website usage trends, and statistical analysis of Product preferences.

This data is used for business insights, marketing analysis, and service improvements.

2.8 Failure to Provide Personal Information

Where personal information is necessary to fulfill a contract (e.g., order processing) or comply with a legal obligation, failure to provide such data may result in our inability to process your order, or denial of certain services or requests.

Unglaz will inform you when specific data is required.

2.9 Shopify Network Intelligence

The Website participates in Shopify Network Intelligence, a program operated by Shopify Inc. that uses aggregated and anonymized customer data across the Shopify platform to improve products, ad targeting, and personalization for the store. No other merchant can see your individual data.

Data processed under Shopify Network Intelligence is subject to Shopify's Additional Services Terms and Shopify's Privacy Policy. For Users in the EEA, this processing is based on legitimate interest (GDPR Article 6(1)(f)), subject to the balancing test described in Section 4.8. For Users in California and other applicable US states, you may opt out of data sharing through the Data Sharing Opt-Out page available on the Website.

Section 3: How We Use Your Information

Unglaz uses the personal information we collect for the following purposes:

3.1 To Fulfill Orders and Provide Services

We use your personal information to process, fulfill, and deliver your orders, provide order confirmations, invoices, and shipping updates, manage returns, refunds, and warranty claims in accordance with our policies, and provide customer support and respond to inquiries.

Lawful Basis: Performance of a contract (e.g., order fulfillment). Legitimate interest (e.g., ensuring customer satisfaction).

3.2 To Communicate with You

We use your contact information to respond to your inquiries, complaints, or requests for assistance, notify you of updates to your orders, accounts, or our Terms and policies, and send non-promotional service messages, such as account security alerts or shipping notifications.

Lawful Basis: Performance of a contract (e.g., communicating about purchases). Legitimate interest (e.g., ensuring customer care).

3.3 For Marketing Purposes

With your consent, we may use your personal information to send newsletters, updates, and promotional offers tailored to your preferences, inform you of special events, surveys, or Product launches, and conduct marketing campaigns and personalized advertising.

You may opt out of marketing communications at any time by clicking the "Unsubscribe" link in our emails or contacting privacy@unglaz.com.

Lawful Basis: Consent (e.g., sending promotional emails). Legitimate interest (e.g., improving user engagement).

3.4 To Improve Our Website and Services

We use automatically collected data (e.g., cookies, usage data) to analyze Website traffic and identify trends in user behavior, improve Website performance, layout, and content, customize your browsing experience based on your preferences, and ensure security and detect fraudulent or malicious activities.

Lawful Basis: Legitimate interest (e.g., enhancing Website functionality).

3.5 To Comply with Legal Obligations

We may use your information to comply with applicable legal, tax, or regulatory obligations, respond to lawful requests, subpoenas, or court orders, investigate and prevent fraud, security breaches, or violations of our policies, and enforce our Terms and Conditions.

Lawful Basis: Compliance with a legal obligation. Legitimate interest (e.g., protecting our rights and property).

3.6 For Fraud Prevention and Security

We process your information to monitor and detect fraudulent transactions or unauthorized activity, ensure the security of your personal data and prevent cyberattacks, and protect our Website, systems, and Users from threats or misuse.

Lawful Basis: Legitimate interest (e.g., ensuring security and fraud prevention).

3.7 For Analytics and Research

We use aggregated and anonymized information to perform market research and identify customer trends, analyze Product performance, customer preferences, and purchasing behavior, and develop new features, Products, or services to enhance User experience.

Lawful Basis: Legitimate interest (e.g., business growth and service improvement).

3.8 To Personalize Your Experience

We may use your information to recommend Products, content, or services based on your previous activity, display personalized advertisements or special offers, and tailor communications and experiences to your interests and preferences.

Lawful Basis: Consent (e.g., cookies and targeted advertising). Legitimate interest (e.g., improving customer experience).

3.9 For Business Operations

We process your information to manage and administer our business operations effectively, maintain internal records and perform audits, and facilitate mergers, acquisitions, or business restructuring, where applicable.

Lawful Basis: Legitimate interest (e.g., efficient operation of our business).

3.10 With Your Consent

Where required by law, we will only process your personal information with your consent. For example, sending direct marketing emails, placing non-essential cookies or other tracking technologies, and collecting personal information for specific purposes not listed above.

You have the right to withdraw consent at any time by contacting privacy@unglaz.com.

3.11 Automated Decision-Making and Profiling

Unglaz does not engage in automated decision-making that produces legal effects or similarly significant effects on you without your explicit consent.

However, certain cookies and tracking technologies used on the Website, particularly marketing and advertising cookies, may involve automated profiling of your browsing behavior and interests for the purpose of delivering targeted advertising. This profiling is conducted by third-party advertising platforms (including Google Ads and LinkedIn Ads) based on your explicit cookie consent.

Where such profiling occurs, you have the right to object at any time by adjusting your cookie preferences through the cookie consent tool on the Website, contacting us at privacy@unglaz.com, or using the opt-out mechanisms described in our Cookie Policy.

For further details on profiling through cookies, including specific cookies involved and your choices, please refer to Section 3.4 of our Cookie Policy.

3.12 Combining Data

We may combine information collected through various sources (e.g., Website, third-party partners) to improve our services and provide a seamless experience.

Lawful Basis: Legitimate interest (e.g., enhancing Products and services).

Section 4: Lawful Basis for Processing Data (GDPR Compliance)

Under the General Data Protection Regulation (GDPR), we must have a lawful basis to process personal data for Users located in the European Economic Area (EEA). The lawful bases upon which we rely are detailed below.

4.1 Contractual Necessity

We process your personal data to fulfill our contractual obligations to you, including processing and delivering orders placed through the Website, providing customer support and responding to inquiries, managing returns, refunds, and warranty claims, and communicating essential updates regarding your transactions or account.

4.2 Consent

We process your personal data based on your explicit consent, where required. This includes sending marketing communications, newsletters, or promotional offers, using non-essential cookies and tracking technologies to personalize your Website experience, collecting additional information for surveys, feedback, or promotional campaigns, and sharing your information with third-party partners for marketing purposes (only with consent).

You can withdraw your consent at any time by clicking the "Unsubscribe" link in our emails, adjusting your cookie preferences through the cookie consent tool on the Website, or contacting us at privacy@unglaz.com.

Withdrawal of consent does not affect the lawfulness of processing carried out prior to withdrawal.

4.3 Legitimate Interests

We process personal data where it is necessary for our legitimate business interests, provided your rights and freedoms do not override these interests. Examples include improving our Website's functionality and user experience, conducting analytics, research, and business development activities, preventing fraud, misuse, and ensuring Website security, managing internal operations, record-keeping, and audits, sending transactional updates or reminders regarding your account or orders, and participation in Shopify Network Intelligence for aggregated analytics and store optimization.

4.4 Compliance with Legal Obligations

We process personal data to comply with applicable legal, regulatory, and statutory obligations, including maintaining tax, accounting, and business records, responding to lawful requests from authorities, subpoenas, or court orders, and ensuring compliance with consumer protection laws, fraud prevention laws, and GDPR.

4.5 Protection of Vital Interests

In rare circumstances, we may process personal data where it is necessary to protect your vital interests or those of another person.

4.6 Legal Claims and Defenses

We may process personal data when necessary to establish, exercise, or defend legal claims.

4.7 Special Categories of Data

Unglaz does not intentionally collect sensitive personal data, such as racial or ethnic origin, political opinions, health or biometric data, religious beliefs, or data concerning sexual orientation.

If you voluntarily provide such data, we will process it only with your explicit consent or where required to comply with legal obligations.

4.8 Balancing Test for Legitimate Interests

When processing personal data based on legitimate interests, we conduct a balancing test to ensure the processing is necessary for our legitimate purposes and it does not unduly infringe on your privacy rights or freedoms.

Documentation of legitimate interest assessments is maintained internally and is available to Users upon request, subject to applicable confidentiality considerations. To request information about a specific legitimate interest assessment, contact us at privacy@unglaz.com.

You have the right to object to processing based on legitimate interests by contacting us at privacy@unglaz.com.

4.9 Your Right to Withdraw Consent

If we process your personal data based on consent, you have the right to withdraw that consent at any time. To withdraw consent, use the opt-out links provided in communications, adjust your cookie preferences through the cookie consent tool, or contact us at privacy@unglaz.com with your request.

4.10 Summary of Legal Bases

Processing orders and delivering Products: Contractual necessity.
Providing customer support: Contractual necessity.
Marketing communications: Consent.
Non-essential cookies and tracking: Consent.
Improving Website functionality and security: Legitimate interests.
Fraud prevention and legal compliance: Compliance with legal obligations.
Analytics and business development: Legitimate interests.
Shopify Network Intelligence: Legitimate interests.
Profiling through marketing cookies: Consent.

Section 5: Sharing and Disclosure of Information

Unglaz respects your privacy and only shares your personal information as necessary to provide services, fulfill legal obligations, or improve business operations. We do not sell your personal data to third parties.

5.1 Service Providers

We share personal information with authorized third-party service providers to perform essential business functions on our behalf. These include:

Payment Processors: To securely process transactions, including Shopify Payments and other payment methods made available through the Website.

Shipping and Logistics Partners: To deliver Products and manage returns.

IT and Website Hosting Providers: To ensure Website functionality and security, including Shopify Inc. as our e-commerce platform provider.

Analytics Providers: To analyze Website traffic, trends, and user behavior, including Google Analytics (Google LLC).

Advertising Partners: To manage advertising campaigns and conversion tracking, including Google Ads (Google LLC) and LinkedIn Ads (LinkedIn Corporation).

Marketing Partners: To manage email campaigns, personalized advertisements, and promotions.

Customer Support Platforms: To assist with inquiries and support services.

Safeguards: All third-party service providers are contractually obligated to use your personal data solely for the purpose of providing services to Unglaz, implement appropriate technical and organizational measures to protect your data, comply with applicable data protection laws, and where required under GDPR, operate under Data Processing Agreements (DPAs).

5.2 Legal Obligations

We may disclose personal information where required to comply with legal obligations, including responding to subpoenas, court orders, or other lawful requests from government authorities, investigating, preventing, or addressing fraud, illegal activities, or breaches of our Terms, and protecting the rights, safety, or property of Unglaz, its Users, or the public.

We will notify you of such disclosures where permitted by law.

5.3 Business Transfers

In the event of a business transaction, such as a merger, acquisition, reorganization, or sale of assets, your personal information may be transferred to a successor entity or third party as part of the transaction.

We will ensure the recipient agrees to protect your personal data consistent with this Privacy Policy, and you will be notified of any such transfers if required by applicable laws.

5.4 Affiliates and Business Partners

We may share your personal information with affiliates or business partners who assist us in providing Products, services, or promotional opportunities, such as joint marketing efforts or loyalty programs.

Affiliates and partners are required to comply with this Privacy Policy and relevant data protection laws.

5.5 Sharing with Your Consent

In cases where we are not otherwise authorized to share your information, we will seek your explicit consent before doing so. You may withdraw your consent at any time by contacting us at privacy@unglaz.com.

5.6 Aggregated and Anonymized Information

We may share aggregated or anonymized data that does not identify you personally with third parties for business, research, or statistical purposes.

5.7 Third-Party Advertisers

We may use third-party advertising services to deliver targeted ads. These third parties may use cookies or tracking technologies to collect technical data and usage data as described in our Cookie Policy.

You can manage targeted advertising preferences via your browser settings, through the cookie consent tool on the Website, or through industry-standard opt-out mechanisms described in our Cookie Policy.

5.8 Data Transfers Outside the EEA

If you are located in the European Economic Area (EEA), your personal data may be transferred to third parties or service providers outside of the EEA.

Based on the current service providers and cookies active on the Website, data may be transferred to:

Google LLC (United States) — analytics and advertising services.
LinkedIn Corporation (United States) — advertising attribution services.
Shopify Inc. (Canada / United States) — e-commerce platform, payment processing, analytics infrastructure, and Shopify Network Intelligence.

The primary data storage location for this Website is the United States.

Transfers will only occur where appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission, Binding Corporate Rules, adequacy decisions for specific countries, or other lawful transfer mechanisms recognized under GDPR.

You may request further information about these safeguards by contacting us at privacy@unglaz.com.

5.9 Protecting Unglaz's Rights

We may disclose personal information to protect and defend the legal rights, property, or safety of Unglaz, its Users, or others, enforce our Terms and Conditions, including investigation of potential violations, and respond to claims that content or behavior violates third-party rights.

5.10 Compliance with CCPA (California Residents)

In compliance with the California Consumer Privacy Act (CCPA), we confirm that we do not sell personal data to third parties, and California residents have the right to opt out of any future sale should that practice change.

The Website provides a Data Sharing Opt-Out page accessible through the CLIENT SERVICES navigation menu for Users in California, Colorado, and other applicable US states.

If you are a California resident and wish to exercise your rights, contact us at privacy@unglaz.com.

5.11 Record of Processing Activities

In accordance with GDPR Article 30, Unglaz maintains a Record of Processing Activities (ROPA) documenting the categories of personal data processed, the purposes of processing, the categories of recipients, and the safeguards applied to international transfers. This record is available to supervisory authorities upon request.

5.12 Your Right to Object to Sharing

If you do not want us to share your personal information for certain purposes, you may opt out of targeted advertising through the cookie consent tool or your browser settings, withdraw consent for marketing communications, use the Data Sharing Opt-Out page on the Website for applicable US state privacy rights, or contact us directly at privacy@unglaz.com to request limited data sharing.

Please note that certain data sharing is required to fulfill your orders, comply with legal obligations, or operate our business.

Section 6: Your Privacy Rights

Unglaz is committed to ensuring that you have control over your personal information. Depending on your location, you may have specific rights under privacy laws, including the General Data Protection Regulation (GDPR) for EU Users and the California Consumer Privacy Act (CCPA) for California residents.

6.1 GDPR Rights for EU Residents

If you reside in the European Economic Area (EEA), you have the following rights under GDPR:

Right of Access: You have the right to request a copy of the personal data we hold about you and details of how it is processed.

Right to Rectification: You can request that inaccurate or incomplete personal data be corrected or updated.

Right to Erasure (Right to Be Forgotten): You have the right to request that your personal data be deleted under certain circumstances, such as when it is no longer needed for its original purpose or you withdraw consent.

Right to Restrict Processing: You can request that we limit the processing of your personal data where you contest the accuracy of the data, processing is unlawful but you oppose erasure, or you require the data for legal claims.

Right to Data Portability: You may request a copy of your personal data in a structured, commonly used, and machine-readable format (such as CSV or JSON) to transfer to another data controller.

Right to Object: You may object to processing of your personal data where we rely on legitimate interests as the lawful basis, including for marketing purposes and participation in Shopify Network Intelligence.

Right to Object to Profiling: Where marketing cookies or advertising technologies are used to profile your browsing behavior for targeted advertising, you have the right to object at any time as described in Section 3.11 and in our Cookie Policy.

Right to Withdraw Consent: If we process your personal data based on your consent, you can withdraw it at any time without affecting the lawfulness of prior processing.

Right to Lodge a Complaint: You have the right to file a complaint with your local data protection authority if you believe we have infringed on your privacy rights. A list of EEA data protection authorities is available at: https://edpb.europa.eu/about-edpb/about-edpb/members_en

To Exercise GDPR Rights: Contact us at privacy@unglaz.com with the subject line "GDPR Request." We will respond to your request within 30 days. If your request is complex or we receive a high volume of requests, the response period may be extended by an additional 60 days. We will notify you of any such extension and the reasons for it within the initial 30-day period.

6.2 CCPA Rights for California Residents

If you are a resident of California, you have the following rights under the California Consumer Privacy Act (CCPA):

Right to Know: You can request disclosure of the categories and specific pieces of personal data we have collected, including categories of data collected, categories of sources, business purposes for processing, and categories of third parties with whom data is shared.

Right to Delete: You may request deletion of the personal data we have collected about you, subject to exceptions (e.g., legal compliance, fraud prevention).

Right to Opt Out of Sale: Unglaz does not sell your personal data. However, you have the right to opt out of any future sale should that practice change. A Data Sharing Opt-Out page is available on the Website.

Right to Non-Discrimination: You have the right not to be discriminated against for exercising your CCPA rights, such as denial of services or price increases.

To Exercise CCPA Rights: Contact us at privacy@unglaz.com with the subject line "CCPA Request." We will verify your identity and respond within 45 days, as required by law. An additional 45-day extension may be required in certain cases, and we will notify you of any such extension.

6.3 Rights for Other Jurisdictions

If you reside outside the EU or California, you may still have similar rights under local data protection laws. These rights may include the right to access or correct your personal data, the right to request deletion of your personal information, the right to object to or restrict processing, and the right to file complaints with local authorities.

Please contact us at privacy@unglaz.com to exercise your rights, and we will assess your request in compliance with applicable laws.

6.4 Exercising Your Rights (Data Subject Access Requests)

To exercise any of the rights described in this section, you may submit a request by email to privacy@unglaz.com with the subject line corresponding to your request (e.g., "GDPR Request" or "CCPA Request").

Verification: To protect your data, we may request additional information to verify your identity before fulfilling your request.

Response Format: For Right to Data Portability requests, data will be provided in a structured, commonly used, and machine-readable format (such as CSV or JSON). For other requests, responses will be provided in writing by email unless you request an alternative format.

Response Time: For GDPR requests, within 30 days. If the request is complex or numerous requests are received, the period may be extended by an additional 60 days with prior notification. For CCPA requests, within 45 days. An additional 45-day extension may apply with prior notification.

If we are unable to comply with your request due to legal or regulatory reasons, we will explain the reason for denial in writing.

6.5 Opting Out of Marketing Communications

You can opt out of marketing communications at any time by clicking the "Unsubscribe" link included in our emails, updating your preferences in your account settings, or contacting us at privacy@unglaz.com.

Please note that you will continue to receive transactional or service-related communications necessary for order fulfillment or account management.

6.6 Cookies and Tracking Technologies

To manage cookies and other tracking technologies, please refer to our Cookie Policy, which includes detailed information on active cookies, your choices for managing preferences, and opt-out mechanisms.

6.7 Authorized Agents (California Residents)

If you are a California resident, you may authorize another person ("Authorized Agent") to submit a request on your behalf. To verify the Authorized Agent's authority, we may require a signed written authorization and confirmation of your identity directly from you.

6.8 No Fees for Requests

You will not be charged a fee for exercising your privacy rights. However, if your request is excessive, repetitive, or manifestly unfounded, Unglaz reserves the right to charge a reasonable fee or refuse to comply, and will explain the reason for doing so.

Section 7: Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to comply with legal, accounting, or regulatory obligations, resolve disputes, and enforce our agreements.

7.1 Retention Periods for Different Categories of Data

We determine the retention period for personal data based on the following criteria:

Order and Transactional Data: Retained for 7 years to comply with tax, accounting, and legal obligations.

Customer Account Data: Retained for as long as your account remains active. If you request account deletion, we will remove your data unless legal obligations require continued retention.

Marketing Data: Retained until you opt out or withdraw your consent. If you unsubscribe from communications, we may retain minimal information to ensure compliance with your request.

Customer Support Communications: Retained for 3 years to assist with future inquiries or disputes.

Technical Data and Website Analytics: Retained for a period of up to 2 years to analyze trends, improve our services, and ensure Website functionality.

Cookie Data: Retained for the periods specified in the Cookie Schedule in our Cookie Policy. Retention periods range from session-only to 20 years depending on the cookie type and provider. Certain cookie durations, including the secure_customer_sig cookie (20 years), are determined by the e-commerce platform provider (Shopify Inc.) and are not directly configurable by Unglaz. Unglaz reviews platform cookie durations periodically and advocates for minimized retention where technically feasible.

Legal Compliance and Fraud Prevention: Retained for as long as required to meet regulatory requirements, defend against legal claims, or prevent fraudulent activities.

7.2 Retention for Legal Obligations

Certain information must be retained to comply with legal obligations, such as:

Tax and Accounting Laws: Transaction records are retained for 7 years to meet statutory tax requirements.

Legal Claims: Personal data may be retained to establish, exercise, or defend legal claims.

Regulatory Compliance: We retain data as required by applicable consumer protection, privacy, or security laws.

7.3 Data Deletion

When the retention period expires or personal data is no longer required, we securely delete, destroy, or anonymize the data. Data deletion is carried out using industry-standard methods to ensure complete removal.

If you request deletion of your personal data under GDPR, CCPA, or other applicable laws, we will comply unless continued retention is legally required.

7.4 Account Deactivation or Termination

If you choose to deactivate or terminate your account, we will delete or anonymize your personal data, except where retention is required for legal or regulatory reasons. Retained data will be securely archived and accessed only when necessary to meet legal requirements or resolve disputes.

7.5 Aggregated and Anonymized Data

We may retain aggregated or anonymized data that cannot identify you personally for business, analytical, or research purposes. Such data is not subject to deletion requests since it does not constitute personal information.

7.6 User Requests for Data Retention Information

You may contact us at privacy@unglaz.com to request details regarding the categories of personal data we retain, the retention periods applicable to specific data, and how data deletion is handled after retention periods expire.

7.7 Exceptions to Retention Periods

We may retain personal data beyond the specified periods where retention is necessary to comply with legal obligations, where retention is required to resolve disputes, enforce our agreements, or protect our legal rights, or in cases of fraud detection, prevention, or security incidents.

7.8 Backup and Archival Data

Personal data may remain in backup or archival systems for a limited period following deletion. Such data will be securely stored and protected, and deleted or overwritten in accordance with backup retention schedules. Backup copies are not accessible for operational use and will not be processed further.

7.9 User Responsibility for Data

If you download or store any personal data obtained through the Website (e.g., receipts, order confirmations), you are responsible for managing, securing, and deleting such data on your devices. Unglaz is not liable for misuse or unauthorized access to data stored on your devices.

Section 8: Cookies and Tracking Technologies

Unglaz uses cookies and similar tracking technologies on the Website. For comprehensive and detailed information about the cookies used on this Website, please refer to our Cookie Policy, which includes a complete description of all cookie categories and their purposes, a Cookie Schedule listing every active cookie by name, provider, purpose, type, and duration, the legal basis for each category of cookie, instructions for managing your cookie preferences including the cookie consent tool, browser settings, and third-party opt-out mechanisms, information about cross-border data transfers via cookies, information about Shopify Network Intelligence, and details about third-party tracking services.

The Cookie Policy is available on the Website and is incorporated into this Privacy Policy by reference.

Section 9: Data Transfers (Cross-Border Processing)

As a global e-commerce business, Unglaz may process and transfer your personal data across international borders, including to countries outside your jurisdiction. This section explains how we safeguard your data when it is transferred internationally.

9.1 Cross-Border Transfers

Your personal data may be processed or stored in countries where we or our service providers operate. Based on the current service providers and technologies active on the Website, data may be transferred to the following recipients:

Google LLC (United States): Google Analytics for website analytics and performance measurement, and Google Ads for advertising conversion tracking and campaign optimization.

LinkedIn Corporation (United States): LinkedIn Ads for advertising attribution and conversion tracking.

Shopify Inc. (Canada / United States): E-commerce platform services including store functionality, payment processing, analytics infrastructure, Shopify Network Intelligence, and A/B testing.

The primary data storage location for this Website is the United States.

Transfers of personal data may occur for purposes such as fulfilling orders and delivering Products, processing payments via secure gateways, managing customer support inquiries, Website hosting, analytics, and marketing services, and advertising attribution and campaign measurement.

9.2 Safeguards for International Transfers

For Users located in the EEA or regions with strict data transfer laws, we ensure that appropriate safeguards are in place to protect your personal data during international transfers. These safeguards include:

Adequacy Decisions: Transfers to countries that have been deemed to provide an adequate level of data protection by the European Commission.

Standard Contractual Clauses (SCCs): For transfers to countries not covered by adequacy decisions, we use Standard Contractual Clauses approved by the European Commission. These legally binding clauses ensure that data transferred outside the EEA receives the same level of protection as within the EEA.

Binding Corporate Rules (BCRs): In certain cases, where our service providers or partners have adopted Binding Corporate Rules, we ensure compliance with the GDPR requirements for cross-border transfers.

Additional Safeguards: Encryption of data during transit and at rest, access controls to limit who can access personal data, and regular audits of third-party compliance.

9.3 Transfers to the United States

For Users in the EEA or other regions with strict data protection laws, your data may be transferred to the United States where Unglaz operates. The United States may not have the same level of data protection as your home jurisdiction; however, Unglaz ensures appropriate safeguards through SCCs or other lawful mechanisms.

9.4 Third-Party Service Providers

We work with authorized third-party providers located globally, including payment processors, logistics companies, analytics providers, and advertising platforms. Each third-party provider is contractually obligated to process personal data only as instructed by Unglaz, implement security measures to protect the data, and comply with applicable data protection laws, including GDPR, and where required, operate under Data Processing Agreements.

9.5 Transfers Based on Consent

In specific situations where no other lawful transfer mechanism applies, we will only transfer your personal data to another country with your explicit consent. You have the right to withdraw this consent at any time by contacting us at privacy@unglaz.com.

9.6 Data Transfers for Legal Compliance

We may transfer personal data internationally if required to comply with legal obligations, such as responding to subpoenas or court orders, or law enforcement requests or investigations in any jurisdiction.

Where possible, we will notify you before such transfers occur unless prohibited by law.

9.7 User Rights Regarding Transfers

You have the right to request information about how your data is transferred outside your jurisdiction, obtain copies of the safeguards (e.g., SCCs) we use for cross-border transfers, and object to transfers that do not comply with applicable laws.

To exercise these rights, contact us at privacy@unglaz.com.

9.8 Transparency for EEA Users

For Users in the EEA, Unglaz will only transfer personal data outside the EEA where transfers are made to countries with an adequacy decision, Standard Contractual Clauses (SCCs) are in place, or you have provided explicit consent for the transfer.

9.9 Data Residency

While we may process personal data in multiple locations, Unglaz aims to minimize unnecessary transfers and ensure your data is processed in accordance with applicable laws. The primary data storage location for this Website is the United States.

9.10 Updates to Safeguards

We review our data transfer mechanisms regularly to ensure compliance with evolving legal standards, including changes to SCCs or other regulatory developments.

9.11 Contact for Further Information

If you have any questions about cross-border transfers or would like further details on the safeguards in place, please contact us at:

Email: privacy@unglaz.com
Subject Line: Cross-Border Transfer Inquiry

Section 10: Security of Your Information

At Unglaz, we take the security of your personal information seriously. We implement industry-standard security measures to protect your data from unauthorized access, loss, misuse, or alteration.

10.1 Security Measures

To ensure the confidentiality, integrity, and availability of your personal data, we use the following security measures:

Encryption: All sensitive data, including payment information, is encrypted using Secure Sockets Layer (SSL) technology during transmission. Stored data is encrypted at rest using advanced encryption standards.

Access Controls: Access to personal data is restricted to authorized employees, contractors, and service providers who require it to perform their duties. Role-based access controls (RBAC) are implemented to ensure data is accessible only on a need-to-know basis.

Secure Payment Processing: Payment information is processed securely through third-party payment providers compliant with PCI-DSS (Payment Card Industry Data Security Standards). Unglaz does not store sensitive payment details such as full credit card numbers.

Firewalls and Monitoring: Our systems are protected by firewalls to block unauthorized access. We monitor our systems regularly for suspicious activity and vulnerabilities.

Regular Security Audits: Periodic security assessments, penetration tests, and system audits are conducted to identify and resolve vulnerabilities.

Data Backup and Recovery: We perform regular data backups to ensure data recovery in the event of a system failure or security breach.

10.2 User Responsibilities

While we take every reasonable step to protect your personal data, you also play a critical role in safeguarding your information. You agree to use strong, unique passwords for your Unglaz account, keep your login credentials confidential and not share them with others, and notify us immediately if you suspect unauthorized access to your account or a security breach.

Contact for Security Concerns: privacy@unglaz.com (Subject Line: Security Concern)

10.3 Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to the rights and freedoms of affected individuals:

Unglaz will notify the relevant supervisory authority without undue delay and, where feasible, within 72 hours of becoming aware of the breach, where required under GDPR or other applicable data protection law.

Unglaz will notify affected Users without undue delay where the breach is likely to result in a high risk to their rights and freedoms, providing information regarding the nature of the breach, the categories of data affected, and recommended protective measures.

Unglaz will document all personal data breaches, including the facts, effects, and remedial actions taken, in accordance with applicable record-keeping requirements.

For Users located in the United States, breach notification will be provided in accordance with applicable state data breach notification laws.

10.4 Third-Party Security Measures

When sharing your data with third-party service providers (e.g., payment processors, shipping companies), we ensure they implement security measures that align with industry standards for data protection and comply with applicable data protection laws, such as GDPR and CCPA.

10.5 Data Retention Security

We apply the same security measures to data we retain in accordance with Section 7 (Data Retention), ensuring it remains protected for the duration of its storage.

10.6 Protection Against Fraud and Malicious Activity

We use advanced tools and technologies to detect and prevent fraudulent activities, including monitoring for suspicious transactions or unauthorized account access, implementing CAPTCHA or similar technologies to prevent bots or automated abuse, and employing fraud detection systems during payment processing.

10.7 Security Limitations

While we strive to protect your personal information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your personal data.

By using our Website, you acknowledge and accept this inherent risk. If you believe your personal information has been compromised, contact us immediately at privacy@unglaz.com.

10.8 Protection of Minors

We do not knowingly collect or store personal data of individuals under the age of 18. If we become aware that a minor's data has been collected without parental consent, we will take immediate steps to delete the data and notify the relevant parent or guardian, if possible.

To report unauthorized collection of a minor's data, contact us at privacy@unglaz.com.

10.9 Secure Communications

To ensure secure communications between you and Unglaz, emails and Website communications are encrypted using secure protocols. We recommend avoiding the transmission of sensitive data via unencrypted email.

10.10 Updates to Security Measures

We continuously evaluate and update our security policies, procedures, and technologies to protect your data from emerging threats or vulnerabilities.

10.11 Reporting Security Concerns

If you have questions about our security measures or wish to report a vulnerability or security concern, please contact:

Email: privacy@unglaz.com
Subject Line: Security Concern

We encourage responsible disclosure of potential vulnerabilities to ensure the safety and security of your data.

Section 11: Children's Privacy

11.1 No Collection of Personal Data from Children

Unglaz does not knowingly collect, process, or store personal data from individuals under the age of 18 (or the age of majority in their jurisdiction). Our Website, Products, and services are not intended for or directed toward minors.

11.2 Parental Responsibility

If you are a parent or legal guardian and believe that your child has provided personal information to us without your consent, please contact us immediately at:

Email: privacy@unglaz.com
Subject Line: Children's Privacy Concern

We will take steps to verify your identity and remove the child's data promptly from our records.

11.3 Age Verification

To ensure compliance with applicable laws, Users must confirm that they are 18 years or older before using our Website or purchasing Products. Where necessary, Unglaz may implement age verification measures for certain services or features.

If a minor attempts to create an account or place an order, the request will be declined, and no data will be retained.

11.4 Limited Use of Data Collected Inadvertently

If we inadvertently collect personal data from a minor, the data will be deleted immediately upon discovery, and we will take appropriate measures to ensure that such data is not processed, shared, or retained.

11.5 Compliance with COPPA (U.S.)

In accordance with the Children's Online Privacy Protection Act (COPPA), we do not knowingly solicit, collect, or process personal information from children under 13 years of age in the United States.

If we discover that we have inadvertently collected such data, we will delete it immediately and notify the relevant parent or legal guardian if possible.

11.6 Compliance with GDPR (EU)

For Users in the European Union, GDPR prohibits the processing of personal data from children under 16 years of age without verifiable parental consent.

Unglaz does not offer services to individuals under 16 in the EU. Where we become aware of such data collection, it will be deleted promptly.

11.7 Third-Party Platforms and Children

If you access our Website through a third-party platform (e.g., social media), the privacy practices of that platform also apply. Unglaz is not responsible for the data collection practices of third-party platforms. Parents should review the privacy policies of such platforms to ensure compliance with children's privacy regulations.

11.8 Reporting Children's Data

If you become aware that personal information from a minor has been provided to Unglaz, please notify us immediately at privacy@unglaz.com. We will investigate and take corrective actions promptly.

Section 12: Third-Party Links

Our Website may contain links to third-party websites, applications, or services that are not owned or controlled by Unglaz.

12.1 Links to External Websites

Unglaz may provide links to third-party websites for purposes such as payment processing, social media platforms, shipping or logistics providers for order tracking, and third-party advertisements, tools, or services relevant to your experience.

These third-party websites operate independently of Unglaz and are governed by their own privacy policies, terms of use, and data practices.

12.2 No Responsibility for Third-Party Practices

Unglaz does not control or assume responsibility for the content, accuracy, or functionality of third-party websites, the privacy practices or security measures of third-party platforms, or any damages or losses resulting from your use of third-party websites or services.

By accessing or using third-party links, you acknowledge that you do so at your own risk.

12.3 Payment Processors and Financial Data

When completing a transaction on our Website, your payment is processed by third-party payment processors, including Shopify Payments and other payment methods made available through the Website. These providers are responsible for processing your payment details securely.

Unglaz does not store your full credit card numbers or sensitive payment information. Such data is handled in accordance with the payment processor's privacy policies and PCI-DSS standards.

12.4 Links to Social Media Platforms

Our Website may include links to social media platforms. By interacting with these platforms through our Website (e.g., "Share" or "Like" buttons), you acknowledge that these platforms may collect personal data based on their own privacy policies, and Unglaz does not control the data collection or tracking practices of social media platforms.

12.5 Affiliate and Advertising Links

Unglaz may participate in affiliate marketing or display advertisements that link to third-party services or products. Clicking on an affiliate or advertisement link may allow the third-party to collect data about you, including through cookies or tracking technologies. Unglaz is not responsible for third-party advertising practices or their use of collected data.

12.6 Third-Party Integrations

We may integrate third-party tools or services into our Website to enhance functionality. These tools may collect usage data or personal information as described in their respective privacy policies. Unglaz ensures that such integrations comply with applicable laws and security standards.

12.7 User Responsibility

When accessing third-party links or services, you are responsible for reviewing the privacy policies, terms of use, and security measures of third-party websites, ensuring that you are comfortable with how your personal information will be used by those websites, and exercising caution when sharing personal or financial information with third-party platforms.

12.8 No Endorsement

The inclusion of links to third-party websites does not imply an endorsement, sponsorship, or affiliation with those websites, or any guarantee of the accuracy, quality, or safety of third-party content or services.

12.9 Opt-Out of Third-Party Advertising

To manage or opt out of personalized advertisements linked to third-party platforms, please refer to the opt-out mechanisms described in our Cookie Policy, including the cookie consent tool, browser settings, and industry-standard opt-out tools.

12.10 Reporting Suspicious Links

If you encounter any third-party link on our Website that appears unsafe, malicious, or inappropriate, please notify us immediately:

Email: privacy@unglaz.com
Subject Line: Suspicious Link Report

12.11 Updates to Third-Party Links

Unglaz reserves the right to add, modify, or remove third-party links from our Website at any time without prior notice.

Section 13: Changes to This Privacy Policy

Unglaz reserves the right to update, modify, or replace this Privacy Policy at any time to reflect changes in our business operations, legal obligations, or best practices.

13.1 Notification of Changes

We will notify Users of material changes to this Privacy Policy through posting the updated Privacy Policy on our Website with the revised "Last Updated" date, and where required by applicable law, sending an email notification to registered Users or displaying a prominent notice on the Website.

13.2 What Constitutes a Material Change?

Material changes include, but are not limited to, changes in the types of personal data we collect, changes in how we process or share personal data, updates to Users' rights or our legal obligations, changes to third-party service providers or international data transfers, new lawful bases for processing, and new legal or regulatory requirements affecting this Privacy Policy.

13.3 User Responsibility to Review

It is your responsibility to regularly review this Privacy Policy to stay informed of updates. By continuing to use the Website or our services after non-material changes have been posted, you acknowledge and accept the updated Privacy Policy.

Where changes materially affect the lawful basis for processing or the categories of data collected, Unglaz will take reasonable steps to obtain renewed consent where required by applicable law.

13.4 Opt-Out in Case of Disagreement

If you do not agree to the updated Privacy Policy, you may discontinue using our Website and services, and you may contact us at privacy@unglaz.com to request the deletion of your account or personal information, where applicable.

13.5 Historical Versions

Previous versions of this Privacy Policy may be available for your review upon request. Please contact us at privacy@unglaz.com to obtain a copy of prior versions.

13.6 Legal Compliance

Updates to this Privacy Policy will comply with applicable privacy laws, including GDPR, CCPA, and other regional regulations.

13.7 Effective Date of Changes

Any changes to this Privacy Policy will take effect on the "Last Updated" date specified at the top of the document unless otherwise stated.

Section 14: Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy, your personal data, or your privacy rights, please contact us through the following channels:

14.1 General Inquiries

For general inquiries or questions about this Privacy Policy:

Email: privacy@unglaz.com
Subject Line: Privacy Policy Inquiry

14.2 Exercising Privacy Rights

To submit requests under GDPR, CCPA, or other applicable data protection laws (e.g., access, deletion, rectification, or objections):

Email: privacy@unglaz.com
Subject Line: Privacy Rights Request

Please include the following information to verify your identity: your full name, your email address (associated with your account, if applicable), and details of your request (e.g., access, correction, or deletion).

We may request additional information to confirm your identity and ensure the security of your data.

14.3 Reporting Security Concerns

To report a suspected data breach, unauthorized access, or security concern:

Email: privacy@unglaz.com
Subject Line: Security Concern

We take all reports seriously and will investigate any issues promptly.

14.4 Supervisory Authority Contact

If you believe that we have not addressed your privacy-related concerns adequately, you have the right to lodge a complaint with your local Data Protection Authority.

For Users in the European Economic Area (EEA), you may contact your country's supervisory authority. A list of EEA data protection authorities is available at: https://edpb.europa.eu/about-edpb/about-edpb/members_en

For Users in California, complaints can be filed with the California Attorney General's Office: https://oag.ca.gov/privacy/ccpa

14.5 EU Representative

For Users located in the European Union, inquiries regarding data processing may be directed to privacy@unglaz.com, as described in Section 1.5.

14.6 Additional Assistance

If you have any questions regarding how to exercise your rights, submit a request, or interpret this Privacy Policy, please reach out to our Privacy Team at:

Email: privacy@unglaz.com

We aim to respond to all inquiries within 30 days, or as required under applicable data protection laws.

Cart

Select options