Privacy Policy

I. Introduction and Our Commitment to Your Privacy

Welcome to HANICORA LLC (“Company,” “we,” “us,” or “our”). We operate the website hanicora.shop (the “Site”). At HANICORA, we are deeply committed to protecting the privacy and security of your personal information. This Privacy Policy (“Policy”) explains in detail what information we collect about you when you visit our Site, make a purchase, or interact with us, how we use that information, and the rights and choices you have regarding your data.

We believe in transparency, and this document is designed to provide you with a clear understanding of our data practices in compliance with applicable data protection laws, including but not limited to the General Data Protection Regulation (GDPR) for our users in the European Economic Area (EEA) and the California Consumer Privacy Act (CCPA) as amended by the CPRA for residents of California.

By using our Site and services, you consent to the data practices described in this Policy. If you do not agree with the terms of this Policy, please do not access or use our Site.

II. Information We Collect

We collect several types of information to provide and improve our services to you.

A. Information You Provide Directly to Us:

  • Identifiers & Contact Information: When you create an account, make a purchase, or contact customer service, we collect your name, billing and shipping address, email address, and phone number.

  • Commercial Information: Records of products or services purchased, obtained, or considered, as well as your purchasing or consuming histories or tendencies.

  • Payment Information: When you make a purchase, we use our payment processor, Stripe, to collect your payment card details. We do not store full credit card numbers on our servers. Stripe handles all payment data in accordance with PCI-DSS standards. We only receive and store limited payment information such as the last four digits of your card and the card type for verification and customer service purposes.

  • Communications: Any communications you send to us (e.g., customer support inquiries, feedback, survey responses).

  • Account Credentials: If you create an account, your username and encrypted password.

B. Information Collected Automatically:

When you visit our Site, we automatically collect certain data about your device and your interaction with the Site through cookies, log files, web beacons, and similar technologies.

  • Device & Technical Information: Your IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, and device identifiers.

  • Usage Data: Information about how you navigate and interact with our Site, including the full URL clickstream to, through, and from our Site (including date and time), products you viewed or searched for, page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page.

C. Information from Third Parties:

We may receive information about you from other sources to help us improve and personalize our service.

  • Social Media Platforms: If you interact with us on social media (e.g., Facebook, Instagram, Pinterest), we may receive basic profile information.

  • Service Providers: We may obtain information from vendors who assist us with marketing, fraud detection, and analytics.

  • Advertising Networks: We may receive information about your interests and online behavior from ad networks we work with.

III. How We Use Your Information

We use the information we collect for various business purposes, including:

  • To Fulfill Your Orders & Contract: To process and ship your purchases, manage your account, send order and shipping confirmations, and provide customer support.

  • To Communicate With You: To send you transactional emails (e.g., order updates, policy changes), respond to your inquiries, and request feedback via surveys.

  • To Improve Our Site & Services: To analyze how our Site is used, troubleshoot technical problems, maintain security, conduct research and development, and improve the functionality and user experience of our Site.

  • For Marketing & Advertising (With Your Consent): To send you promotional communications about new products, special offers, and updates we think may be of interest to you, if you have opted in to receive them. This includes displaying targeted advertisements to you on other websites based on your browsing behavior on our Site (retargeting).

  • For Security & Fraud Prevention: To monitor and protect the security of our Site, detect and prevent fraudulent transactions, and verify your identity.

  • To Comply with Legal Obligations: To comply with applicable laws, regulations, legal processes, or enforceable governmental requests.

Legal Basis for Processing (For EEA Users):
Our legal basis for collecting and using your information will depend on the specific context in which we collect it. We typically rely on:

  • Performance of a Contract: When we use your data to fulfill an order you have placed.

  • Legitimate Interests: For our commercial interests in improving our services, marketing, and preventing fraud, provided these interests are not overridden by your rights.

  • Consent: Where we have obtained your explicit consent, such as for sending marketing emails.

  • Legal Compliance: Where processing is necessary to comply with the law.

IV. How We Share Your Information

We do not sell your personal information. We share your data only in the following limited circumstances with trusted third-party service providers who assist us in operating our business, under strict confidentiality obligations:

  • Service Providers: We share data with companies that provide essential services on our behalf, such as:

    • Payment Processing: Stripe (see Payment Methods).

    • Order Fulfillment & Shipping: Carriers like USPS and UPS, and warehouse/fulfillment centers.

    • Website Hosting & Analytics: Providers like Shopify, Google Analytics.

    • Email Marketing: Platforms like Klaviyo or Mailchimp (only if you have subscribed).

    • Customer Support: Help desk software providers.

  • Legal Requirements: We may disclose information if required by law, subpoena, or other legal processes, or if we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others, investigate fraud, or respond to a government request.

  • Business Transfers: In connection with any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company, your information may be transferred as a business asset.

  • With Your Consent: We may share information for any other purpose with your explicit consent.

V. Cookies and Similar Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Site and hold certain information to enhance your browsing experience.

  • What Are Cookies? Cookies are small data files placed on your device. We use both session cookies (which expire when you close your browser) and persistent cookies (which stay on your device until deleted).

  • How We Use Them:

    • Essential/Strictly Necessary: Required for the Site to function (e.g., shopping cart, login).

    • Performance/Analytics: Help us understand how visitors use our Site (e.g., Google Analytics). This data is aggregated and anonymous.

    • Functionality: Remember your preferences (e.g., language, region).

    • Advertising/Targeting: Used to deliver relevant ads to you on other sites.

  • Your Choices: Most web browsers allow you to control cookies through their settings preferences. You can set your browser to refuse all or some cookies, or to alert you when websites set or access cookies. However, if you disable or refuse cookies, please note that some parts of this Site may become inaccessible or not function properly. You can also opt out of targeted advertising by using resources like the Digital Advertising Alliance’s (DAA) opt-out page.

VI. Data Security

We implement robust technical and organizational measures designed to protect the security of your personal information. Our measures include:

  • Using SSL (Secure Socket Layer) encryption on all pages where personal data is transmitted.

  • Regularly reviewing our data collection, storage, and processing practices.

  • Restricting access to personal information to employees, contractors, and agents who need to know that information to process it for us and who are subject to strict contractual confidentiality obligations.

  • Utilizing PCI-DSS compliant payment processors.

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

VII. Data Retention

We retain your personal information only for as long as is necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period, we consider the amount, nature, and sensitivity of the data, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process it, and whether we can achieve those purposes through other means.

For example, we retain:

  • Order information for 7 years for tax and accounting compliance.

  • Customer service inquiries for 3 years to improve our service.

  • Marketing preferences until you withdraw your consent.

VIII. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information:

  • Access & Portability: You can request access to and a copy of the personal data we hold about you.

  • Correction: You can request that we correct inaccurate or incomplete data.

  • Deletion: You can request that we delete your personal data, subject to certain exceptions.

  • Opt-Out of Marketing: You can unsubscribe from our marketing emails at any time by clicking the “unsubscribe” link in any email. You can also opt out of targeted advertising as described in Section V.

  • Restrict Processing/Object: You can request we restrict the processing of your data or object to our reliance on legitimate interests as the legal basis for processing.

  • Withdraw Consent: Where processing is based on consent, you can withdraw consent at any time.

How to Exercise Your Rights: To exercise any of these rights, please contact us at buithihanh976@gmail.com or using the contact details below. We will respond to your request within 30 days, as required by law. We may need to verify your identity before fulfilling your request.

California Residents: The CCPA provides you with the right to know what personal information we collect, use, disclose, and sell. We have described this throughout this policy. You have the right to request deletion of your personal information and to opt-out of the “sale” or “sharing” of your personal information. We do not sell your personal information as defined by the CCPA. To exercise your CCPA rights, please contact us via the methods above.

EEA/UK Residents: You have the rights listed above under the GDPR. You also have the right to lodge a complaint with a supervisory authority in your country of residence.

IX. International Data Transfers

HANICORA LLC is based in the United States. If you are located outside the U.S., please be aware that the information you provide to us will be transferred to and processed in the U.S., where data protection laws may differ from those in your country. We take steps to ensure that your data is treated securely and in accordance with this Policy. For transfers of data from the EEA, UK, or Switzerland to the U.S., we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses.

X. Children’s Privacy

Our Site is not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us. If we become aware that we have collected personal information from a child under age 16 without verification of parental consent, we will take steps to delete that information.

XI. Third-Party Links

Our Site may contain links to other websites not operated by us. If you click on a third-party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

XII. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes to our practices or for other operational, legal, or regulatory reasons. The updated version will be indicated by a revised “Last Updated” date at the bottom of the page. We will notify you of any material changes by posting the new Policy on this page and, if the changes are significant, we may provide a more prominent notice or seek your consent as required by law.

XIII. Contact Us

For questions about this Privacy Policy, to exercise your privacy rights, or to make a complaint about our data practices, please contact our Data Privacy Representative:

HANICORA LLC
Attn: Privacy Officer
30 N Gould St Ste R
Sheridan, WY 82801
United States
Email: buithihanh976@gmail.com
Phone: +84 944 233 385

We are committed to working with you to obtain a fair resolution of any complaint or concern about privacy.