Privacy Policy

Your privacy matters. This policy explains what data we collect on prada-eye-glasses.com, how we use it, your choices, and your rights.

Effective date: • Last updated:

Your Rights (GDPR/UK GDPR/CCPA) Do Not Sell or Share My Personal Information

1) Who we are

prada-eye-glasses.com is an independent retailer of eyewear. References to “we,” “us,” or “our” in this policy refer to prada-eye-glasses.com. This website is not affiliated with nor endorsed by Prada S.p.A.

Data controller: prada-eye-glasses.com • Contact: [email protected]

Registered address available upon request via email.

2) Data we collect

We collect information to operate our store, fulfill your orders, support you, and improve our services. The categories of data we may collect include:

  • Identifiers: name, email, phone, shipping/billing addresses, order ID, account ID.
  • Commercial information: products viewed or added to cart, order history, preferences (size, color, lens type).
  • Payment information: last four digits of card, payment method, transaction status (processed by PCI‑compliant providers—we do not store full card numbers).
  • Internet/technical data: IP address, device and browser type, pages visited, time on page, referring URL, approximate location (city/region), cookie IDs.
  • Customer support content: messages, ratings, and communication metadata.
  • User‑generated content: reviews, Q&A, photo uploads (if provided).
  • Inferences: segments or preferences derived from interactions (e.g., interest in Linea Rossa frames).

Sources of data include: directly from you (checkout, forms, email), automatically via cookies and similar technologies, and from service providers (payment, analytics, shipping).

3) How we use your data

  • Order processing and delivery; returns and exchanges; customer support.
  • Account creation, authentication, and saving preferences.
  • Fraud prevention, security monitoring, and debugging.
  • Website performance, personalization, and analytics to improve our catalog and UX.
  • Marketing communications (with your consent where required) and on‑site recommendations.
  • Compliance with legal obligations and enforcing our Terms.

Legal bases (EU/UK): contract performance, legitimate interests (e.g., site security, service improvement), consent (e.g., non‑essential cookies, marketing), and legal obligations (e.g., tax records).

4) How we share information

We share personal data with trusted partners for the purposes described above:

  • Payment processors and fraud prevention providers.
  • Fulfillment and shipping carriers.
  • Customer service tools and email/SMS providers.
  • Analytics and performance measurement providers.
  • Advertising and social media partners for interest‑based ads (subject to your consent/choices).
  • Professional advisors, and authorities when required by law or to protect rights and safety.

We do not sell your personal information for money. Some activities (e.g., cross‑context behavioral advertising) may constitute “selling” or “sharing” under certain privacy laws. See Section 10 for your choices.

5) Cookies and similar technologies

We use cookies, local storage, and tags to enable site functionality, analyze performance, and personalize content. You can manage preferences any time via “Cookie Settings.”

  • Strictly necessary: site navigation, cart, checkout, security. Always active.
  • Performance/analytics: aggregated statistics on usage (e.g., popular pages).
  • Functional: remembering preferences like currency or recently viewed items.
  • Advertising: showing more relevant offers and measuring campaign effectiveness.

Your controls:

  • Cookie Settings: adjust categories below.
  • Browser controls: block or delete cookies (may impact features).
  • Global Privacy Control (GPC): if enabled in your browser, we treat it as an opt‑out of sale/sharing and targeted advertising on this site where legally required.

6) Data retention

We keep data only as long as necessary for the purposes described, including:

  • Orders and invoices: generally 6–10 years (accounting/legal requirements).
  • Support communications: up to 3 years after resolution.
  • Marketing data: until you unsubscribe or withdraw consent, or after defined inactivity windows.
  • Analytics data: retained in aggregated or de‑identified form where feasible.

7) Security

We implement administrative, technical, and physical safeguards designed to protect your data (e.g., TLS encryption in transit, access controls, least‑privilege practices). No method is 100% secure; we continuously improve our measures.

8) International transfers

We may process data outside your country (for example, in the US or EU). When transferring personal data internationally, we rely on appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms, and implement additional protections where required.

9) Your privacy rights

Your rights depend on your location and applicable laws, and may include:

  • Access: request a copy of your personal data.
  • Correction: update inaccurate or incomplete data.
  • Deletion: request we delete your data, subject to legal exceptions.
  • Restriction: limit certain processing.
  • Portability: receive data in a machine‑readable format.
  • Objection: object to processing based on legitimate interests, including profiling, and to direct marketing.
  • Consent withdrawal: withdraw consent at any time (e.g., cookies, marketing).
  • Appeal/complaint: contact us or your local supervisory authority.

To exercise rights, contact [email protected] with the subject “Privacy Request.” We may verify your identity and respond within the timeline required by law. Authorized agents may submit requests where permitted.

California (CCPA/CPRA): You have the right to know categories and specific pieces of personal information collected, correction, deletion, opt‑out of sale/share, and limit the use of sensitive information (we only use limited sensitive data, if any, for necessary purposes such as payment processing). See Section 10.

EEA/UK: You may lodge a complaint with your local data protection authority. We encourage contacting us first so we can resolve concerns.

10) “Do Not Sell or Share” and targeted ads

We do not sell personal information for monetary consideration. Some advertising and analytics activities could be considered a “sale” or “sharing” under certain state laws. You can:

  • Use “Cookie Settings” to disable Advertising and Analytics cookies.
  • Enable Global Privacy Control (GPC) in your browser—we treat it as an opt‑out where applicable.

If you prefer, you can also email us at [email protected] with the subject “Do Not Sell or Share.”

11) Children’s privacy

Our services are not directed to children under 13 (or under 16 in the EEA/UK). We do not knowingly collect personal data from children. If you believe a child has provided data, contact us to remove it.

12) Changes to this policy

We may update this policy to reflect changes to our practices or legal requirements. We will post updates here and adjust the “Last updated” date. Material changes may be communicated more prominently.

13) Contact us

Email: [email protected]

Hours: Mon–Fri 9:00–18:00, Sat 10:00–15:00 (ET)

For accessibility support with this policy or to obtain it in an alternative format, please email us.