Privacy policy

PRIVACY POLICY
Last Updated: April 30, 2025

1. INTRODUCTION

This Privacy Policy describes how Crypto Moda Ltd. (Business Number: 790994214), operating as cryptomoda.ca (the "Site" or "we"), collects, uses, and discloses your Personal Information when you visit or make a purchase from the Site.

2. CONTACT INFORMATION

After reviewing this policy, if you have questions or concerns, please contact us:
Email: info@cryptomoda.ca
Address: 240 Dickinsfield Court Northwest
Edmonton, AB T5E 5V8, Canada
Phone: +1 (780) 680-8755

3. PERSONAL INFORMATION WE COLLECT

3.1 Device Information
Purpose: To optimize site performance and user experience
Collection method: Automatic collection through cookies and analytics tools
Information collected:
- Browser type and version
- IP address
- Time zone
- Cookie information
- Browsing patterns
- Site interaction data

3.2 Order Information
Purpose: To process orders and provide customer service
Collection method: Direct from customer during purchase
Information collected:
- Name
- Billing address
- Shipping address
- Payment information
- Email address
- Phone number
- Cryptocurrency wallet addresses (if applicable)

3.3 Payment Processing
We use secure payment processors:
- Shopify Payments
- Coinbase Commerce (for cryptocurrency transactions)
- PayPal

For cryptocurrency transactions:
- We do not store wallet addresses after transaction completion
- All crypto payments are processed through Coinbase Commerce's secure infrastructure
- Transaction data is encrypted using industry-standard protocols

4. HOW WE USE YOUR INFORMATION

We use your information to:
- Process your orders
- Communicate about your order
- Screen for potential fraud
- Provide customer support
- Send marketing communications (with consent)
- Improve our services

5. SHARING YOUR INFORMATION

We share information with
- Shopify (e-commerce platform)
- Coinbase Commerce (cryptocurrency payments)
- PayPal (payment processing)
- Google Analytics (site analytics)
- Facebook/Instagram (marketing)
- Shipping partners (order fulfillment)

6. DATA RETENTION AND SECURITY

We implement comprehensive security measures, including:
- PCI DSS Level 1 compliance for payment processing
- TLS encryption for all data transfers
- Regular security audits and monitoring
- Secure data backup systems
- Two-factor authentication for admin access
- Encrypted storage of personal information

Data Retention Periods:
- Order information: 7 years (tax compliance)
- Payment information: Not stored after processing
- Marketing preferences: Until the user opts out
- Cryptocurrency wallet addresses: Not stored

7. YOUR RIGHTS

You have the right to:
- Access your personal information
- Correct your personal information
- Delete your personal information
- Object to processing
- Data portability

8. COOKIES

We use the following cookies to optimize your experience:

Cookies Necessary for Store Functioning:
- _ab: Used for admin access (2 years)
- _secure_session_id: Navigation through storefront (24 hours)
- _shopify_country: Checkout functionality (session)
- _shopify_m: Customer privacy settings (1 year)
- _shopify_tm: Customer privacy settings (30 minutes)
- _shopify_tw: Customer privacy settings (2 weeks)
- cart: Shopping cart functionality (2 weeks)
- cart_currency: Shopping cart currency (2 weeks)
- cart_sig: Checkout functionality (2 weeks)
- cart_ts: Checkout functionality (2 weeks)
- checkout_token: Checkout functionality (1 year)
- secure_customer_sig: Customer login (20 years)

Analytics and Performance Cookies:
- _ga: Google Analytics tracking (2 years)
- _gid: Google Analytics user session (24 hours)
- _fbp: Facebook tracking (3 months)

Marketing Cookies:
- _gcl_au: Google AdSense (3 months)
- _pin_unauth: Pinterest conversion tracking (1 year)

9. MINORS

The Site is not intended for individuals under 18 years of age.

10. CHANGES TO THIS POLICY

We may update this policy. Changes will be posted on this page.

11. LEGAL BASIS FOR PROCESSING (GDPR)

For EEA residents, we process data under:
- Contract performance
- Legal obligations
- Legitimate interests
- Consent

12. CALIFORNIA PRIVACY RIGHTS (CCPA)

California residents have additional rights regarding:
- Personal information access
- Data deletion
- Information sharing practices