Privacy Policy


Effective Date: October 3, 2025
Last Updated: October 3, 2025

This Privacy Policy explains how we collect, use, and protect your personal information when you use our e-commerce platform to purchase a range of Japanese-made products such as beauty devices, household goods, personal care items, lifestyle accessories, and other related consumer products.

We are committed to protecting your privacy in compliance with the Data Privacy Act of 2012 (Republic Act No. 10173 of the Republic of the Philippines) and other applicable Philippine laws.

Controller / Processor Roles

We act as the Personal Information Controller (PIC) for your personal data. We engage trusted Personal Information Processors (PIPs) to support our services, including:

  • Shopify (store hosting and order management)
  • Payment processors (e.g., PayMongo, PayPal)
  • Courier services
  • Marketing/email service providers
  • Fraud-prevention tools

Each PIP is bound by a written data processing agreement that:

  • Limits processing to our documented instructions
  • Ensures confidentiality
  • Applies appropriate security measures
  • Prohibits onward disclosure without our authorization

Information We Collect

Personal Information We may collect the following personal information:

  • Contact Information: Name, email address, phone number, shipping and billing addresses
  • Account Information: Username, password, account settings
  • Payment Information: Credit card details, PayPal, PayMongo
  • Order Information: Purchase history, product preferences, delivery details
  • Communication Data: Customer service inquiries, reviews, feedback

Automatically Collected Information

  • Technical Data: IP address, browser type, device info, OS
  • Usage Data: Pages visited, time spent, click patterns, search queries
  • Cookies and Tracking: Website cookies, analytics data, marketing pixels

Lawful Bases for Processing

We rely on the following legal bases under the Data Privacy Act:

  • Order Processing / Account Management: Performance of a contract or steps prior to entering into a contract
  • Legal Compliance: Compliance with legal obligations (e.g., tax, e-commerce, consumer protection under Philippine laws)
  • Fraud Prevention / Website Security / Service Improvement: Legitimate interests, balanced against your rights
  • Marketing Communications / Non-essential Cookies: Your consent, which can be withdrawn at any time

How We Use Information

We use your personal data for:

  • Order Processing: Via PayPal and PayMongo, arranging delivery
  • Customer Service: Responding to inquiries, support, complaints
  • Account Management: Creating/managing user accounts on Shopify
  • Marketing Communications: Promotional emails (based on your consent)
  • Legal Compliance: As required by Philippine law
  • Fraud Prevention: Using internal and partner systems
  • Website Improvement: Analyzing traffic and user behavior

Information Sharing and Disclosure

Service Providers We may share information with:

  • Shopify: Hosting, store management
  • PayPal / PayMongo: Secure payment processing
  • Couriers: Delivery and logistics
  • Email Services: Marketing communications

Fraud Prevention Information may be shared with:

  • PayPal and PayMongo fraud detection
  • Shopify-integrated tools
  • Risk monitoring and verification services

Legal Requirements We may disclose information to:

  • Philippine courts, government agencies (e.g., BIR, DTI, NPC)
  • Law enforcement authorities
  • To protect our legal rights or comply with legal obligations

Data Security

We implement reasonable and appropriate technical and organizational measures, including:

  • Encryption: SSL/TLS for secure data transmission
  • Hosting: On Shopify's secure platform
  • Payment Security: PCI DSS-compliant partners (PayPal, PayMongo)
  • Access Control: Restricted access to sensitive data
  • Software Updates: Timely patching
  • Employee Training: On data protection and privacy practices

Cookies Policy

We use cookies to enhance user experience.

Types of Cookies:

  • Essential Cookies: Required for core functionality
  • Analytics Cookies: Understand site usage
  • Marketing Cookies: Show relevant ads
  • Preference Cookies: Remember settings

Managing Cookies: You can adjust settings in your browser. Disabling cookies may affect site features.

Your Rights Under the Data Privacy Act

You have the following rights:

  • Right to Information – Know what we collect and why
  • Right to Access – Request a copy of your data
  • Right to Rectification – Correct inaccurate/incomplete data
  • Right to Erasure – Request deletion (subject to legal limits)
  • Right to Restrict Processing – Limit how we use your data
  • Right to Data Portability – Get a copy in usable format
  • Right to Object – Opt-out of certain processing (e.g., marketing)

Exercising Your Rights

To protect your data, we may need to verify your identity before acting on requests.

We will respond within 30 days. If requests are complex or numerous, we may extend this period and will notify you of the reason and new timeline.

Requests are generally free of charge, unless they are manifestly unfounded or excessive.

International Data Transfers

Your data may be processed or stored in:

  • United States: Shopify, PayPal servers
  • Singapore: Cloud/data center operations
  • Japan: Supplier coordination

We ensure appropriate contractual safeguards, such as data processing agreements and protective clauses, in line with Philippine legal standards.

Data Sharing Controls

All processors are bound by:

  • Purpose limitation: Only process data for agreed purposes
  • Confidentiality obligations
  • Security standards
  • No selling or independent marketing without your explicit consent

Data Breach Response

In case of a data breach likely to affect your rights:

  • We will promptly assess the incident
  • Notify the National Privacy Commission (NPC) and affected individuals
  • Typically within 72 hours if required under applicable rules

Data Retention

We retain data based on business and legal requirements:

  • Account Data: Until deletion or 3 years of inactivity
  • Order Records: 5 years (for tax/warranty purposes)
  • Marketing Data: Until unsubscribed or after 2 years of inactivity
  • Legal Compliance: 5–10 years, depending on applicable law

Policy Updates

We may update this policy due to:

  • Operational or legal changes
  • Regulatory updates

When updated, we will notify you via:

  • Email
  • Website banner or pop-up
  • Updated "Effective Date" at the top

Continued use of the site means you accept the new policy.

Complaints

If you have any privacy-related concerns, we encourage you to first contact our Data Protection Officer (DPO).

You also have the right to file a complaint with the National Privacy Commission (NPC) at privacy.gov.ph.

Privacy Office / DPO Contact

Gift &.
Privacy Office / Data Protection Officer (DPO)
Email: info@giftand.compass.style