Privacy policy

 

Privacy Policy

for ashaby.store

Last Updated: 04/04/2026

This Privacy Policy explains how Ashaby LLC, a limited liability company registered in the United Arab Emirates (“Company,” “we,” “us,” or “our”), collects, uses, stores, shares, and protects personal data when you access or use ashaby.store (the “Website”), create an account, place an order, contact us, or otherwise interact with our services.

The Website may display and sell products from third-party brands and suppliers, including but not limited to:

  • Centovita

  • MindGrows

By accessing or using the Website, you acknowledge that you have read and understood this Privacy Policy.

1. Scope of This Privacy Policy

This Privacy Policy applies to personal data collected through:

  • the Website;

  • customer account registration;

  • purchases and order processing;

  • customer service communications;

  • shipping and delivery coordination;

  • payment processing interactions;

  • promotional and marketing communications;

  • cookies and similar tracking technologies;

  • any other interactions with us related to the Website.

This Privacy Policy does not necessarily apply to third-party websites, services, payment processors, logistics providers, or brand partners that may have their own privacy policies.

2. Information We Collect

We may collect the following categories of personal data:

2.1 Information You Provide Directly

When you use the Website, we may collect information you voluntarily provide, including:

  • full name;

  • email address;

  • mobile phone number;

  • billing address;

  • shipping address;

  • company name, if applicable;

  • account login details;

  • order details;

  • communications you send to us;

  • any other information you submit through forms, chat, contact pages, or customer service channels.

2.2 Payment Information

Payments on the Website are processed through Stripe and/or related payment service providers. We may receive limited transaction-related information such as:

  • payment status;

  • payment method type;

  • transaction reference details;

  • billing name and billing address, where applicable;

  • fraud screening results or risk indicators.

We do not generally store full payment card numbers, CVV codes, or full sensitive card data when payment is securely processed by the external payment gateway.

2.3 Order and Transaction Information

When you place an order, we may collect and maintain:

  • products ordered;

  • order value;

  • discounts or promo codes used;

  • order date and time;

  • shipment status;

  • refund or cancellation details;

  • customer support history related to the order.

2.4 Shipping and Delivery Information

To fulfill delivery through SMSA or other shipping partners, we may collect and process:

  • recipient name;

  • shipping address;

  • mobile number;

  • delivery instructions, if provided;

  • shipment tracking details;

  • delivery confirmation or failed delivery status.

2.5 Account and Technical Information

When you browse or use the Website, we may automatically collect certain technical data, such as:

  • IP address;

  • browser type and version;

  • device type;

  • operating system;

  • language preferences;

  • referral URLs;

  • pages visited;

  • time spent on the Website;

  • date and time of access;

  • clickstream or interaction data.

2.6 Cookies and Tracking Technologies

We may collect information through cookies, pixels, tags, scripts, and similar technologies to support Website functionality, analytics, performance monitoring, personalization, and advertising.

2.7 Marketing and Communication Data

If you subscribe to our newsletter, interact with promotions, or consent to marketing, we may collect:

  • email marketing preferences;

  • SMS or promotional communication preferences;

  • interaction with marketing emails or campaigns;

  • coupon participation or promotional response data.

3. How We Use Your Information

We may use personal data for the following purposes:

  1. To create and manage your account.

  2. To process, confirm, fulfill, and deliver orders.

  3. To process payments and verify transactions.

  4. To communicate with you regarding orders, shipping, returns, support, or service updates.

  5. To coordinate deliveries with SMSA or other logistics providers.

  6. To detect, prevent, investigate, and address fraud, abuse, unauthorized transactions, or security incidents.

  7. To improve the Website’s functionality, performance, content, and customer experience.

  8. To respond to your inquiries, complaints, and service requests.

  9. To send operational messages, confirmations, invoices, and support communications.

  10. To send promotional or marketing communications, where permitted by law or based on your consent.

  11. To enforce our Terms of Use and other policies.

  12. To comply with legal, regulatory, tax, accounting, reporting, and law enforcement obligations.

  13. To maintain internal business records and reporting.

  14. To analyze usage trends, purchasing behavior, and operational performance.

4. Legal Basis for Processing

Where applicable under relevant data protection laws, we process personal data based on one or more of the following legal grounds:

  • your consent;

  • the performance of a contract with you;

  • compliance with legal or regulatory obligations;

  • protection against fraud, abuse, or unlawful activity;

  • our legitimate business interests, provided those interests do not override your fundamental rights and freedoms.

5. Sharing of Information

We may share your personal data with third parties only when reasonably necessary and in accordance with applicable law, including with:

5.1 Payment Processors

We share relevant transaction and billing information with Stripe and related payment service providers to process payments, verify transactions, detect fraud, and manage refunds.

5.2 Shipping and Logistics Providers

We share necessary shipping and contact details with SMSA and other logistics providers to deliver your order, provide shipment tracking, coordinate delivery attempts, and handle returns.

5.3 Service Providers and Vendors

We may share personal data with vendors, contractors, or service providers who support our operations, such as:

  • website hosting providers;

  • cloud infrastructure providers;

  • customer support platforms;

  • email and SMS service providers;

  • analytics providers;

  • fraud prevention or security providers;

  • IT and maintenance providers.

5.4 Third-Party Brands or Suppliers

Where operationally necessary, we may share limited order-related information with relevant third-party brands, suppliers, or fulfillment partners, including Centovita and MindGrows, for purposes such as product fulfillment, quality control, inventory coordination, returns handling, or complaint resolution.

5.5 Legal and Regulatory Authorities

We may disclose information where required to do so by law, regulation, legal process, court order, governmental request, or to protect our rights, property, safety, customers, or operations.

5.6 Business Transfers

If we are involved in a merger, acquisition, restructuring, asset sale, financing transaction, or similar corporate event, personal data may be transferred as part of that transaction, subject to applicable law.

6. International Data Transfers

Your personal data may be processed, stored, or accessed in countries other than your country of residence, including where our service providers, technology infrastructure, payment processors, logistics partners, or business partners operate.

By using the Website, you acknowledge that your information may be transferred internationally and processed in jurisdictions that may have different data protection standards than your own. We will take reasonable contractual, organizational, and technical measures to protect personal data in such circumstances as required by applicable law.

7. Data Retention

We retain personal data only for as long as reasonably necessary for the purposes described in this Privacy Policy, including to:

  • maintain your account;

  • fulfill transactions and deliveries;

  • process refunds, complaints, and disputes;

  • comply with accounting, tax, legal, and regulatory obligations;

  • prevent fraud and enforce our rights;

  • maintain legitimate business records.

Retention periods may vary depending on the nature of the data, applicable legal requirements, contractual needs, and operational necessity. When data is no longer required, we may delete, anonymize, aggregate, or securely archive it in accordance with applicable law.

8. Cookies and Tracking Technologies

The Website may use cookies and similar technologies for the following purposes:

  • enabling core website functions;

  • remembering user preferences;

  • maintaining login sessions;

  • improving site speed and usability;

  • measuring Website traffic and performance;

  • understanding how users interact with the Website;

  • supporting analytics and reporting;

  • personalizing content or promotions;

  • facilitating remarketing or advertising campaigns, where applicable.

You may be able to manage or disable cookies through your browser settings. However, disabling certain cookies may affect Website functionality or your user experience.

9. Marketing Communications

We may send you transactional and service-related communications necessary for order processing, support, or account management.

Where permitted by law, we may also send promotional emails, SMS messages, or other marketing communications regarding products, offers, campaigns, or updates.

You may opt out of marketing communications at any time by:

  • clicking the unsubscribe link in emails;

  • contacting us through the Website;

  • updating your communication preferences, where such settings are available.

Please note that opting out of marketing messages does not prevent us from sending essential transactional or service-related communications.

10. Data Security

We implement reasonable administrative, technical, and organizational measures designed to protect personal data against unauthorized access, disclosure, alteration, loss, misuse, or destruction.

Such measures may include, where appropriate:

  • secure hosting environments;

  • access controls;

  • encrypted transmission using SSL/TLS;

  • payment processing through secure third-party gateways;

  • role-based internal access restrictions;

  • monitoring, logging, and security review mechanisms.

However, no method of transmission over the internet or method of electronic storage is completely secure. Accordingly, while we strive to protect your data, we cannot guarantee absolute security.

11. Your Rights

Depending on the laws applicable to you, you may have certain rights regarding your personal data, including the right to:

  • request access to the personal data we hold about you;

  • request correction of inaccurate or incomplete data;

  • request deletion of your personal data, subject to legal and operational limitations;

  • object to certain processing activities;

  • request restriction of processing in certain cases;

  • withdraw consent where processing is based on consent;

  • request a copy of your data where applicable;

  • lodge a complaint with a competent authority where permitted by law.

We may require verification of identity before processing certain requests. Some rights may be limited where we are legally required or otherwise permitted to retain or continue processing certain data.

12. Children’s Privacy

The Website is not intended for children who are below the age required to lawfully provide consent under applicable law, and we do not knowingly collect personal data directly from children in violation of applicable legal requirements.

If you believe that a child has provided us with personal information unlawfully, please contact us so we can review the matter and take appropriate action.

13. Third-Party Websites and Services

The Website may contain links to third-party websites, third-party brands, social media pages, payment processors, logistics providers, or external services.

We are not responsible for the privacy practices, content, security, or policies of those third parties. We encourage you to review their privacy policies before providing personal data or using their services.

This includes, without limitation:

  • Stripe

  • SMSA

  • Centovita

  • MindGrows

14. Data Accuracy

You are responsible for ensuring that the personal data you provide to us is accurate, complete, and up to date. We are not responsible for issues arising from inaccurate, outdated, or incomplete information submitted by you, including delivery failures, payment verification issues, or communication delays.

15. Changes to This Privacy Policy

We reserve the right to amend, update, or revise this Privacy Policy at any time. Any changes will become effective upon posting the updated version on the Website, unless otherwise stated.

Your continued use of the Website after the updated Privacy Policy is published constitutes your acknowledgment of the updated terms.

We encourage you to review this page periodically.

16. Governing Law

This Privacy Policy shall be governed by and interpreted in accordance with the laws of the United Arab Emirates, to the extent that such laws do not conflict with any mandatory data protection rights applicable under relevant law.

17. Contact Us

If you have any questions, requests, complaints, or concerns regarding this Privacy Policy or the way your personal data is handled, you may contact us through the official contact details available on the Website.

Legal Entity: Ashaby LLC
Website: ashaby.store
Country: United Arab Emirates


Login

Forgot your password?

Don't have an account yet?
Create account