NewProtects ("we," "us," or "our") operates the website newprotects.shop (the "Site"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our Site or make a purchase.
By using our Site, you agree to the terms of this Privacy Policy. If you do not agree, please do not use the Site.
1. Information We Collect
We collect personal information that you voluntarily provide to us when you:
- Place an order (name, email, shipping address, payment confirmation)
- Sign up for marketing emails (email, optional name)
- Contact us via email or live chat (name, email, message content)
- Create an account (if applicable)
Categories of personal data collected:
- Identifiers: name, email address, billing/shipping address, phone number
- Commercial info: order history, products purchased, total spend
- Payment info: processed via PayPal - we do NOT store full credit card numbers
- Internet activity: pages visited, time on page, referring URL, device/browser type, IP address
- Communications: any messages you send us via email or chat
2. How We Use Your Information
We use your information to:
- Process and fulfill orders (including shipping, tracking, delivery confirmation)
- Communicate about your order (confirmation, shipping updates, delivery, returns)
- Respond to inquiries you send via email or live chat
- Send marketing emails - only if you opted in (see Section 7)
- Improve our Site (analytics, bug fixes, A/B testing)
- Prevent fraud and enforce our Terms of Service
- Comply with legal obligations (tax, accounting, law enforcement requests)
3. Sharing Your Information
We do NOT sell your personal information. We share it only with the following trusted third parties, solely to operate our business:
- PayPal (payment processor) - order amount, name, email, shipping address
- Brevo (email marketing) - email address, name (only if you opted in)
- Cloudflare Pages (website hosting) - passive visitor data only
- Shipping carriers - name, address, phone for delivery
- Cloudflare Email Routing - inbound email forwarding only
We may also disclose information if required by law, court order, or to protect our rights or the safety of others.
4. Cookies & Tracking
Our Site uses cookies and similar technologies for:
- Essential cookies (cart, session, language preference) - required for the Site to function
- Analytics cookies - to understand how visitors use the Site (anonymized where possible)
- Marketing cookies - only with your consent (e.g., retargeting ads)
You can control cookies via your browser settings. Disabling certain cookies may limit Site functionality (e.g., checkout).
5. Data Retention
We keep your personal information for as long as necessary to:
- Fulfill orders and handle returns (typically 2-3 years for tax/legal reasons)
- Maintain marketing list (until you unsubscribe)
- Comply with legal obligations
After retention period, data is deleted or anonymized.
6. Your Rights
Depending on your location, you have some or all of the following rights:
- Access - request a copy of personal data we hold about you
- Correction - request correction of inaccurate data
- Deletion - request deletion of your data (subject to legal retention)
- Opt-out of sale - we don't sell, but you can confirm
- Opt-out of marketing - unsubscribe link in every email, or contact us
- Portability - receive your data in a machine-readable format
- Restrict processing - in certain circumstances
- Object to processing - for legitimate interest claims
- Lodge a complaint with your local data protection authority
To exercise any right, email hello@newprotects.shop with the subject "Privacy Request". We respond within 30 days.
Region-specific notes:
- 🇪🇺 EU/UK (GDPR): We rely on contract (order fulfillment) and consent (marketing) as legal bases.
- 🇺🇸 California (CCPA/CPRA): You can opt out of "sale" (we don't sell) and request data deletion.
- 🇦🇺 Australia (Privacy Act 1988): You can request access and correction under APP 12-13.
- 🇨🇦 Canada (PIPEDA): You can request access under PIPEDA and opt out of marketing under CASL.
- 🇳🇿 New Zealand (Privacy Act 2020): You have similar rights to AU.
7. Email Marketing
If you opt in to marketing emails, we use Brevo to send you:
- New product announcements
- Special offers and promotions
- Order-related updates (if separately opted in)
You can unsubscribe anytime via the "Unsubscribe" link in any email, or by emailing hello@newprotects.shop. We honor unsubscribes within 10 business days (CAN-SPAM compliant).
Each marketing email includes our physical mailing address and identifies as an advertisement where required.
8. Children's Privacy
Our Site is not intended for children under 16. We do not knowingly collect personal data from children under 16. If you believe a child has provided us data, email us and we'll delete it.
9. Data Security
We protect your data with:
- HTTPS/TLS encryption in transit
- Encrypted storage on Cloudflare and Brevo
- Limited access (only authorized personnel)
- No storage of full credit card numbers (PayPal handles)
No method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.
10. International Transfers
Our Site is operated from Malaysia/Hong Kong. If you are visiting from outside this region, your data may be transferred to and processed in a country different from your own. By using our Site, you consent to such transfers.
We use service providers (Cloudflare, PayPal, Brevo) that maintain adequate data protection standards via standard contractual clauses or equivalent mechanisms.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Changes are effective when posted on this page with an updated "Last updated" date. Material changes will be notified via email if you have an account.
12. Contact Us
If you have questions or concerns about this Privacy Policy or our data practices, contact us:
- Email: hello@newprotects.shop
- Mail: No.62, Jalan Bakti 49, Taman Mutiara Rini, 81300 Skudai, Johor, Malaysia
- Live chat: Click the chat button on our Site (bottom-right)
This Privacy Policy is provided for informational purposes. While we believe it complies with GDPR, CCPA/CPRA, CAN-SPAM, Spam Act 2003, CASL, and UEM, it does not constitute legal advice. For specific compliance concerns, consult a qualified attorney in your jurisdiction.