Van Gogh’s Diary Privacy Policy

Welcome to Van Gogh’s Diary independent website (hereinafter referred to as “we”). We attach great importance to your personal privacy and data security, and strictly comply with the General Data Protection Regulation (GDPR) and relevant global data protection laws and regulations. This Privacy Policy is formulated to clearly inform you how we collect, use, store and protect your personal information, as well as the rights you enjoy. By using our website and services, you agree to all the contents of this Policy.

1. Scope of Application

This Privacy Policy applies to all users (hereinafter referred to as “you”) who visit, browse the Van Gogh’s Diary independent website, and perform various operations such as registration, order placement, and consultation through our website. This Policy only regulates our behavior of collecting and processing your personal information, and does not apply to the privacy policies of third-party links and third-party services (such as payment institutions and logistics service providers). For the privacy behavior of third parties, please refer to their own privacy terms.

2. Personal Information We Collect

We follow the principle of “data minimization” and only collect personal information necessary for providing services, without collecting any irrelevant information excessively. It is specifically divided into the following two categories:

  1. Necessary Information: Core information you need to provide to complete order transactions and provide after-sales services, including but not limited to: name, email address, contact phone number, shipping address, and payment-related information (only used to complete payment; we do not store sensitive information such as complete payment passwords). Such information is the basis for completing transactions. If you do not provide it, we will not be able to provide you with services such as order placement and delivery.
  2. Non-necessary Information: Auxiliary information we may collect to optimize your browsing experience and improve service quality, including but not limited to: browser type, access device information (such as mobile phone model, computer system), access time, browsing history, and IP address. Such information can help us understand the usage of the website, optimize page design and service processes. You can choose whether to provide it independently, which will not affect the use of core services.

Note: We will not collect special categories of personal information such as your genetic data, biometric data, and health data unless we obtain your explicit consent and have a legal basis.

3. Purposes of Using Personal Information

  1. The personal information we collect is only used for the following legitimate purposes, strictly following the principle of “purpose limitation” and not used for other purposes unrelated to services:
  2. Completing order processing: Including confirming order information, arranging delivery, following up logistics status, and handling after-sales returns and exchanges (in line with our after-sales policy, only used for compliant after-sales scenarios such as quality problems and wrong deliveries).
  3. Providing customer service: When you consult questions through email, in-site messages, etc., we will use your contact information to communicate with you, answer questions, and handle complaints and suggestions.
  4. Optimizing the website and services: According to your browsing history and usage habits, optimize the website interface, improve loading speed, and provide you with more personalized product displays (excluding targeted marketing unless we obtain your explicit consent).
  5. Compliance and security guarantee: To prevent fraud, ensure website security, investigate abnormal transactions, and protect the legitimate rights and interests of you and us; at the same time, comply with the requirements of relevant laws and regulations and retain necessary transaction records.

4. Storage and Protection of Personal Information

  1. Storage Period: We will follow the principle of “storage limitation” and only store your personal information for the shortest period necessary to complete services and fulfill legal obligations. After the order is completed, we will retain your order information (excluding sensitive payment information) until the expiration of the statutory retention period, after which we will anonymize or securely delete your personal information and no longer use it for any service scenarios.
  2. Security Protection: We adopt industry-standard technical and management measures to ensure the security of your personal information, including but not limited to: encrypted data storage, access permission control, regular security testing, and prevention of hacker attacks. We only authorize necessary staff to access your personal information, and relevant personnel must strictly abide by confidentiality obligations and bear corresponding responsibilities for violations.
  3. Cross-border Storage: If you are a user in the EU region, we will ensure that the cross-border transmission of your personal information complies with GDPR requirements, and only transmit it to regions with an adequate level of data protection, or through appropriate safeguards such as EU Standard Contractual Clauses (SCCs) to ensure that the level of data protection is not reduced.

5. Sharing and Disclosure of Personal Information

  1. We promise not to arbitrarily share, sell, or rent your personal information, and only share it in the following limited circumstances with strict confidentiality measures:
  2. Third-party service providers: To complete order delivery, we will share your name, shipping address, and contact phone number with logistics service providers (only for delivery; logistics providers must abide by confidentiality obligations and not use it for other purposes); to complete payment, we will share necessary order information and payment-related information with payment institutions (excluding complete payment passwords).
  3. Legal requirements: When receiving legitimate requests from government departments and judicial authorities (such as court subpoenas and administrative orders), we will disclose necessary personal information in accordance with the law to fulfill legal obligations.
  4. Your explicit consent: After obtaining your written or oral explicit consent, we may share the personal information you specify in accordance with your requirements.
  5. We will not share your personal information with irrelevant third parties, nor use it for scenarios such as targeted marketing without your consent.

6. Your Rights to Personal Information

  1. In accordance with GDPR and relevant regulations, you enjoy the following rights to personal information, and we will provide you with convenient ways to exercise them:
  2. Right of Access: You have the right to inquire about your personal information collected and stored by us at any time, including the collection time, purpose of use, sharing status, etc.
  3. Right of Rectification: If you find that your personal information is incorrect (such as wrong shipping address or contact phone number), you have the right to request us to correct it in a timely manner.
  4. Right to Erasure (Right to be Forgotten): When your personal information is no longer necessary for use, you withdraw your consent, or we process your information in violation of regulations, you have the right to request us to delete your personal information.
  5. Right to Withdraw Consent: You have the right to withdraw your consent to the collection, use, and sharing of personal information at any time. After withdrawing consent, we will no longer continue to collect and use relevant information, but it will not affect the legal processing actions completed based on your consent before.
  6. Right to Data Portability: You have the right to request us to provide your personal information in an identifiable and transferable format, or directly transfer it to another compliant subject designated by you (such as another e-commerce platform).
  7. If you need to exercise the above rights, please contact us through the contact information at the end of this Policy. We will verify your identity within 3-7 working days and respond to your request.

7. Use of Cookies and Similar Technologies

To optimize your browsing experience, we may use Cookies and similar technologies to store your browsing preferences (such as language settings and product browsing history) so that you do not need to reset them when you visit again. You can disable Cookies in your browser settings, but disabling them may affect some website functions (such as being unable to remember shopping cart products) and will not affect the use of core services such as order placement and consultation.

We use Cookies only to improve user experience, do not collect sensitive personal information, and will not share Cookie information with third parties.

8. Protection of Children’s Privacy

Our website and services are not intended for children under 13 years of age. If you are a child under 13 years of age, please do not use our services or provide any personal information. If we find that we have mistakenly collected personal information of children, we will immediately delete the relevant information and no longer use it. For minors aged 13-16, using our services requires the explicit consent of a guardian.

9. Updates to the Privacy Policy

With the update of laws and regulations and the adjustment of website services, we may update this Privacy Policy from time to time. After the update, we will issue a notice in a prominent position such as the homepage and footer of the website to inform you of the updated content. If you continue to use our services, it means you accept the updated Privacy Policy; if you do not accept it, you can stop using our services.

10. Contact Information

If you have any questions, complaints about this Privacy Policy, or need to exercise your rights related to personal information, please contact us through the following methods:

Customer Service Email: vangoghsdiary@gmail.com

Customer Service Hours: Monday to Saturday 9:00-18:00 (GMT+8)

We will respond to your needs in a timely manner, properly handle your questions and requests, and protect your privacy rights and interests.