Privacy Policy

The data controller responsible for processing your personal data is:

We collect and process the following categories of personal data:

Order Information

When you place an order, we collect your name, email, shipping address, billing address, and payment information.

Account Data

If you create an account, we store your name, email, and order history.

Design Data

When you create a personalized design, we collect the date, time, place, personalization text, uploaded photos, QR links, and design choices needed to render your preview and fulfil your order.

Analytics & Usage Data

We collect anonymous usage data including pages visited, browser type, and device type.

Communication Data

When you contact us, we store the contents of your message and contact details.

We use your data for design preview generation, order processing, print fulfilment, shipping notifications, customer support, analytics, marketing (with consent), legal compliance, and fraud prevention.

We share personal data with the following processors, strictly for the purposes listed: Razorpay and PayPal for payment processing, our print fulfilment partners for order production and shipping, Brevo for transactional and marketing emails, Google Analytics for traffic measurement, and Meta Pixel for advertising attribution. For transfers of EU resident data outside the EEA, we rely on the European Commission's Standard Contractual Clauses. The current list of print fulfilment partners is available on request at [email protected].

You have the right to access, rectify, erase, restrict processing, data portability, object, and withdraw consent.

Contact [email protected] to exercise your rights. We respond within 30 days.

Our website uses essential, functional, and analytics cookies.

You can manage cookie preferences through your browser settings.

We implement appropriate technical and organizational measures to protect your data. All data is encrypted using TLS/SSL.

Order records are retained for 7 years to comply with applicable tax record-keeping requirements. Account and email marketing preferences are retained until you request deletion. Analytics data is retained for 14 months, after which it is anonymised or deleted.

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and CPRA, including the right to know what personal information we collect, the right to delete your personal information, and the right to opt out of the sale or sharing of personal information for cross-context behavioural advertising.

We do not sell your personal information for money. We do share advertising identifiers with Meta Pixel and Google Ads for measurement and retargeting; under CCPA this constitutes 'sharing' for cross-context behavioural advertising. You can opt out by rejecting the Marketing bucket in our cookie banner, or by emailing [email protected] with the subject line 'Do Not Sell or Share My Personal Information'.

We do not knowingly collect personal information from children under 16.