Our Privacy Policy

This document outlines what personal data we gather, how we utilize it, and the rights you hold regarding your information. By accessing our Site, you consent to these terms.

Updated: September 10, 2025
Data Controller: Certified-Pep manages all personal data collected here.

This policy applies to all visitors, registered users, and customers. Please note that it does not extend to external third-party sites linked from our platform.

1) Data Collection

Information Provided by You Account credentials (name, email, secure password). Checkout data (billing/shipping addresses, contact info). Customer service inquiries, feedback, and reviews. Marketing opt-ins and communication preferences.

Automated Collection Device/Browser details (IP address, user agent, language). Activity logs (pages visited, referral sources, timestamps). General location estimated via IP (city/region). Tracking technologies like cookies and local storage.

Sensitive Information We never request or store sensitive health records, government ID numbers, or full credit card details. All financial transactions are handled by secure payment gateways.

2) Usage of Your Data

Service Delivery: To manage accounts, fulfill orders, ship products, and offer support.

Security & Optimization: To monitor site health, fix errors, prevent abuse, and enhance functionality.

Communication: Sending essential order updates and—if subscribed—promotional offers. Unsubscribing is always an option.

Legal Compliance: Meeting tax, accounting, and regulatory requirements.

EU/UK Legal Basis Processing is based on contract fulfillment, legitimate business interests (security, operations), consent (marketing/cookies), and legal compliance.

3) Cookies & Tracking

Types of Cookies Essential: Critical for login, cart, and checkout. Analytics: Help us understand site traffic and usage. Functional: Save your settings and preferences. Marketing: Enabled only with your explicit consent.

Your Control Adjust cookie settings via your browser. We request consent for non-essential tracking where required. We respect Global Privacy Control (GPC) signals for opting out.

4) Security Measures

We employ robust security protocols, including TLS/SSL encryption, secure hosting, and regular system updates. While no online system is impenetrable, we are committed to notifying you and relevant authorities promptly in the event of any data breach.

5) Data Sharing

We strictly do not sell your personal data. We only share necessary information with trusted third-party partners essential for our operations. These partners are contractually bound to protect your data.

Service Providers Payments: Stripe, PayPal (we do not hold card data). Communications: Email platforms for alerts and marketing. Logistics: Shipping carriers for order delivery. Infrastructure: Hosting, CDNs, and analytics tools.

Disclosure may also occur if legally mandated, to protect safety, or during corporate restructuring (e.g., mergers).

6) Retention Policy

Transaction Records: Retained as required for tax, fraud prevention, and legal audits (typically 5–7 years).

Support History: Kept as long as necessary to resolve inquiries and improve service quality.

Marketing Data: Retained until you opt out or after a period of inactivity.

Once data is no longer needed, it is securely deleted or anonymized.

7) User Rights & Choices

Global Privacy Rights Request a copy of your personal data. Correct errors in your information. Request deletion (subject to legal retention rules). Data portability (receive data in a usable format). Revoke consent for marketing at any time. Object to specific processing activities.

US State Rights (CA, CO, CT, UT, VA) Right to know, access, correct, and delete data. Opt-out of profiling, sale, or targeted ads. We do not sell data or share it for cross-context behavioral ads. California residents: GPC signals are honored, and we ensure non-discrimination for exercising privacy rights.

Exercising Your Rights Email info@Certified-Pep.shop with "Privacy Request" in the subject line. Identity verification may be required. EU/UK residents retain the right to file complaints with local supervisory authorities.

8) International Data Transfers

As a US-based company, we may process data in the United States and other jurisdictions. For transfers from the EU/UK/EEA, we rely on established safeguards like Standard Contractual Clauses (SCCs) to ensure data protection.

9) Protection of Minors

Our services are intended for adults (18+). We do not knowingly collect data from children. If you suspect a minor has shared information with us, please contact us for immediate deletion.

10) Policy Updates

We may revise this policy to align with legal or operational changes. The "Last Updated" date will reflect revisions. Significant changes will be communicated prominently.

11) Contact Us

For questions or privacy concerns, email us at info@Certified-Pep.shop.

Submit Privacy Request Visit Customer Support

Shopping cart

Recently Viewed

Privacy Policy