Privacy Policy

Privacy Policy for Jmel’s (jmel-s.com)

1. Introduction

Welcome to Jmel’s. We respect your privacy and are committed to protecting your personal data. This Privacy Policy outlines how we collect, use, share, and secure your information when you shop with us. By using our site, you agree to the terms below.

2. Information We Collect

  • Personal Data You Provide: Name, email, shipping and billing addresses, phone number, payment information, and other order-related details.

  • Automatically Collected Data: IP address, device type, browser type, cookies and tracking technologies, usage patterns, and purchase behavior — for site functionality and analytics.

  • Via Stripe Payments: Data processed during transactions such as payment method details, billing address, and fraud protection info. As Stripe notes, you must provide clear notice that you're using Stripe and disclose what Stripe processes Reddit.

3. How We Use Your Information

  • Process and fulfill orders (e.g., shipping, refunds).

  • Communicate with you (order confirmations, updates, support).

  • Prevent fraud, ensure security, and meet legal obligations.

  • Understand and improve user experience, site functionality, and marketing (with consent).

  • Comply with legal requests.

4. Stripe's Role & Your Responsibilities

  • Stripe’s Role: Stripe acts as a payment processor. It collects and processes payment data, identity verification, fraud prevention, and related services as described in its privacy policy stripe.com+1.

  • Your Obligations: You must notify your customers that Stripe processes their data and ensure customers have given consent for that. This is required under Stripe’s Services Agreement stripe.com.

5. Sharing Your Data

  • We share necessary data with:

    • Stripe to process payments.

    • Shipping & logistics partners for delivery.

    • Service providers for analytics, customer management, or legal purposes.

  • We do not sell your data.

6. Your Privacy Rights

Because state-level privacy laws vary widely across the U.S.:

  • California Residents (e.g., CCPA / CPRA):

    • Right to know, access, and delete your personal information.

    • Right to opt out of sale/sharing of your info. Provide a clear “Do Not Sell or Share My Personal Information” link WikipediaReuters.

    • Provide a toll-free number or email for privacy requests Wikipedia.

  • Other States: Since 20 U.S. states now have their own privacy laws, the requirements can vary—such as opt-in vs. opt-out consent models and age-based restrictions Reuters+1.

  • Federal Standards: We follow core principles of notice and consent as outlined by the FTC’s Fair Information Practice Principles (FIPPs) Wikipedia.

7. Data Security & Retention

  • We implement reasonable security measures to protect your data.

  • Stripe limits the amount of data it stores, according to its data retention policies docs.stripe.com.

  • We retain your data only as long as necessary for order fulfillment, legal compliance, or fraud prevention.

8. Cookies & Tracking

  • We use cookies and similar tools to enhance functionality, remember preferences, analyze traffic, and, with consent, serve analytics or targeted ads.

  • You can manage your cookie preferences through your browser or our consent tools.

9. Minors

Our site is not intended for individuals under 13. If we become aware of underage data collection without parental consent, we will delete the information.

10. Updates to This Policy

We’ll update this policy when needed — and post the update date at the top. If changes are significant, we’ll notify you directly or through prominent site notices.

11. Contact Us

For privacy-related inquiries or to exercise your rights:

  • Email: [your-designated-privacy-email]

  • Mailing Address: [your business address]

  • Phone (optional): Toll-free number if your business is subject to CCPA/CPRA disclosures Wikipedia.

Key Compliance Highlights

Regulation Requirement Highlights
Stripe Requirements Must disclose Stripe’s involvement and ensure customer consent Redditstripe.com.
CCPA / CPRA Provide opt-out links, access/deletion rights, toll-free or email contact, no re-soliciting within 12 months Wikipedia.
CalOPPA / Shine the Light Clearly post privacy policy, disclose tracking, respond to disclosure requests Wikipedia+1.
Other State Laws Prepare for a patchwork of opt-in/out models and sensitive data handling requirements Reuters+1.
FTC Fair Practices Notice, consent, purpose-limiting, data subject rights Wikipedia.

Next Steps for Jmel’s:

  1. Customize placeholders—add your email, phone, and physical address.

  2. Implement UI elements, like the “Do Not Sell or Share” link for California residents.

  3. Set up a request process for access, deletion, or opt-out inquiries.

  4. Use a cookie banner offering informed consent if needed.

  5. Monitor evolving laws as more states introduce new regulations.