Privacy Notice

Effective Revision Date: June 2026

At Drapinae, which operates under the official corporate governance of Hong Kong Chengtong International Trading Co., Limited, securing your personal data is our paramount concern. This protocol details our strict administrative frameworks regarding the collection, processing, and defense of the personal details you supply while browsing our premium textile accessories, including our Classic Scarves, Elegant Shawls, and Silk Neckwear.

1. Classification of Harvested Data

To deliver a refined and individualized retail journey, we acquire specific categories of consumer information:

  • Client-Submitted Details: During checkout execution or profile registration, we collect essential logistical data, including your full legal name, shipping destination, electronic mail address, and telephone number.
  • Financial Processing Data: All monetary exchanges are encrypted and facilitated by certified external payment processors. Drapinae never retains or evaluates full credit card strings or security codes on our internal servers.
  • System Analytics: As you interact with our digital boutique, standard telemetry tools automatically record anonymized operational metrics, such as your IP address, browser configuration, and navigational behavior.

2. Utilization of Acquired Information

The data we collect is deployed exclusively for legitimate operational and business functions:

  • Parcel Delivery: To dispatch your scarves and wraps, safely process transactions, and supply real-time transit updates.
  • Platform Enhancement: To evaluate consumer traffic patterns, allowing us to continuously upgrade our interface and product curation.
  • Client Correspondence: To transmit critical order receipts and, provided you have explicitly consented, share promotional insights regarding our latest accessory drops.
  • Fraud Prevention: To actively scan for illicit behavior and ensure the total security of our e-commerce environment.

3. Information Safeguards

  • Cryptographic Protocols: All sensitive transmissions across the internet are heavily shielded using Secure Socket Layer (SSL) encryption technologies.
  • Internal Access Controls: Only vetted corporate personnel bound by rigorous confidentiality agreements are granted clearance to view consumer databases.
  • Payment Compliance: We strictly abide by Payment Card Industry (PCI-DSS) directives by exclusively partnering with fully compliant financial gateways.

4. External Partners & Marketing

Drapinae strictly forbids the direct exchange of your personal details for monetary gain. We only distribute requisite information to vetted third-party vendors to sustain our infrastructure and advertising initiatives:

5. Cookie Deployment

Our digital storefront implements both proprietary and third-party tracking cookies to:

  • Preserve the contents of your shopping cart across different browsing sessions.
  • Accumulate macro-level statistics regarding audience engagement.
  • Deliver personalized commercial messaging via networks like AppLovin. Note: You retain the autonomy to block or restrict cookies via your browser preferences, though this action may impede certain site functionalities.

6. Minor Protection (COPPA)

Our accessory boutique caters strictly to an adult demographic. We never knowingly solicit or harvest identification from individuals under the age of 13. Should our administration realize that a minor has accidentally submitted their data, we will execute an immediate and irreversible purge of that record.

7. CalOPPA Compliance In alignment with the California Online Privacy Protection Act:

  • Consumers are free to navigate our platform completely anonymously before initiating a transaction.
  • A direct hyperlink to this Privacy Protocol is permanently anchored in our website's footer.
  • Our technical architecture acknowledges and respects "Do Not Track" (DNT) directives broadcasted by web browsers.

8. GDPR Directives (European Rights)

For clients residing within the European Economic Area (EEA), we fully champion your jurisdictional rights under the GDPR. You hold the legal authority to access, amend, or demand the total erasure of your personal files by lodging a formal request to our administrative inbox at support@drapinae.com.

9. CCPA / CPRA Consumer Rights

Residents of California are granted specific privileges under state legislation:

  • The Right to Know: You may request a comprehensive breakdown of the precise data categories we have accumulated about your identity.
  • The Right to Opt-Out: While we do not "sell" data for cash, transmitting information to advertising affiliates (like AppLovin) for targeted campaigns may legally constitute a "sale" or "sharing" in California. You maintain the absolute right to opt out of this specific data distribution.

10. Incident Response Plan

In the highly improbable scenario of a systemic data compromise, our enterprise adheres to a rapid notification sequence:

  • Impacted consumers will receive an email alert within seven (7) business days, clarifying the severity and nature of the exposure.
  • A corresponding public alert will be prominently displayed on our storefront.

11. CAN-SPAM Adherence

We highly respect your digital inbox and operate with total email transparency:

  • All outbound marketing utilizes honest, descriptive subject headers.
  • Every promotional dispatch features a frictionless, highly visible "unsubscribe" mechanism.
  • Opt-out requests are honored instantaneously, securing your permanent removal from marketing lists.

12. Official Corporate Contacts

Should you require further clarification concerning this Privacy Protocol or our data stewardship, please reach out to our legal and support team:

  • Operating Brand: Drapinae
  • Corporate Entity: Hong Kong Chengtong International Trading Co., Limited
  • Registered Headquarters: Room 706, Ho King Commercial Centre, 2-16 Fa Yuen Street, Mong Kok, Kowloon, Hong Kong
  • Official Inbox: support@drapinae.com
  • Client Support Desk: +1 (336) 729-5179