Privacy Policy.

01Scope & Definitions

This Privacy Policy ("Policy") describes how [FILL IN: legal entity name — e.g., Bronze Era LLC] ("Bronze Era," "we," "us," or "our") collects, uses, and shares personal information when you visit bronze-era.com (the "Site"), purchase our products, sign up for marketing communications, or interact with us through any channel.

"Personal Information" means any information that identifies, relates to, describes, or could reasonably be linked to you.

By using the Site, you agree to the collection and use of information in accordance with this Policy.

02Information We Collect

Information you provide directly

• Account information: name, email address, password (hashed), and any profile details.
• Order information: shipping address, billing address, phone number, payment details (processed by our payment processor — see Section 05).
• Communications: contents of messages you send us by email, contact form, or social media.
• Quiz & preferences: answers you provide in our shade quiz, skincare quiz, and similar tools.
• Marketing preferences: the channels you opt into (email, SMS) and the topics you're interested in.

Information collected automatically

• Device & usage data: IP address, browser type, operating system, device identifiers, referring URL, pages viewed, time spent, and click behavior.
• Cookies and similar technologies: see Section 04.
• Analytics: aggregated patterns of how visitors use the Site (e.g., which pages convert, which articles are most read).

Information from third parties

• Payment processors may share fraud signals, card type, and partial card numbers (last 4 digits) with us; full card numbers are never stored on our servers.
• Social platforms may share basic profile information if you choose to log in or engage with us via their platforms.
• Shipping carriers share delivery and tracking updates.

03How We Use Information

We use personal information to:

• Process orders, payments, refunds, and returns.
• Communicate about your order, account, or customer service inquiry.
• Personalize your experience (e.g., recommended bundles, shade matches).
• Send marketing emails and SMS (only if you opt in — you can unsubscribe at any time).
• Detect, prevent, and respond to fraud and abuse.
• Improve the Site, our products, and our marketing.
• Comply with legal obligations, respond to lawful requests, and enforce our Terms of Service.

04Cookies & Tracking Technologies

Cookies are small text files placed on your device. We use:

• Essential cookies — required for the cart, checkout, and login to function.
• Analytics cookies — help us understand site performance (we use [FILL IN: Google Analytics, Plausible, etc.]).
• Marketing cookies — used to measure and improve the effectiveness of our advertising on platforms like [FILL IN: Meta, TikTok, Google Ads].

You can control cookies through your browser settings. Disabling essential cookies may prevent you from completing a checkout.

05Sharing & Disclosure

We do not sell your personal information.

We share information only as needed to operate the business, with carefully chosen service providers contractually bound to use the data only for our purposes:

• Payment processors — to securely process card transactions (e.g., [FILL IN: Shopify Payments, Stripe]).
• Shipping & logistics — to deliver your order (e.g., [FILL IN: USPS, UPS, DHL]).
• Email & SMS providers — to deliver order confirmations and marketing communications (e.g., [FILL IN: Klaviyo, Postscript]).
• Analytics providers — to understand site traffic and conversion patterns.
• Customer-service platforms — to handle support requests.
• Fraud-prevention services — to verify and protect transactions.

We may also disclose information to comply with valid legal process (subpoena, court order), to protect our rights or safety, or in connection with a merger, acquisition, or sale of assets.

06Your Rights

Subject to applicable law, you have the right to:

• Access the personal information we hold about you.
• Correct inaccurate or incomplete information.
• Delete your information (subject to legal retention requirements — e.g., tax records).
• Restrict or object to certain processing.
• Port your data to another service.
• Withdraw consent at any time where processing is based on consent.
• Lodge a complaint with your local data protection authority.

To exercise any of these rights, email privacy@bronze-era.com. We will respond within 30 days.

07Data Security

We use industry-standard technical and organizational measures to protect your information, including TLS encryption in transit, encrypted databases at rest, role-based access controls, and PCI-DSS-compliant payment processing.

No system is perfectly secure. If we ever experience a breach involving your personal information, we will notify affected users and applicable regulators in accordance with applicable law.

08Retention

We retain personal information only as long as needed for the purposes described in this Policy, to comply with legal obligations, resolve disputes, and enforce our agreements:

• Order & transaction records — minimum 7 years (tax compliance).
• Account data — until you request deletion.
• Marketing data — until you unsubscribe, plus 30 days for processing.
• Analytics data — typically [FILL IN: 14–26 months].

09International Transfers

Bronze Era is based in the United States. If you are accessing the Site from outside the U.S., your information may be transferred to, stored, and processed in the U.S. or other jurisdictions where our service providers operate.

For transfers from the European Economic Area, United Kingdom, or Switzerland, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission, and we apply additional safeguards as required by law.

10Children's Privacy

The Site is not intended for, and we do not knowingly collect personal information from, children under 13 years of age (or under 16 in the EEA). If you believe a child has provided us with information, contact privacy@bronze-era.com and we will promptly delete it.

11Third-Party Links

The Site may contain links to third-party websites and platforms (e.g., social media, payment processors, retailers). We are not responsible for the privacy practices of those sites. Please review their privacy policies before sharing information.

12California Privacy Rights (CCPA / CPRA)

California residents have additional rights under the California Consumer Privacy Act and the California Privacy Rights Act, including the right to know what categories of personal information we collect, the right to delete, the right to correct, the right to opt out of "sales" or "sharing" (we do not sell or share for cross-context behavioral advertising without consent), and the right to limit use of sensitive personal information.

To exercise these rights, email privacy@bronze-era.com with the subject line "California Privacy Request." We will not discriminate against you for exercising these rights.

13Changes to This Policy

We may update this Policy from time to time. The "Last updated" date at the top reflects the most recent revision. Material changes will be communicated by a banner on the Site or by email to registered users. Continued use of the Site after changes constitutes acceptance of the updated Policy.

14Contact