At Y'ALL D'FFERENT BREED ("Yalldb", "we", "us", or "our"), we respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.
By using our website, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our services.
1. Information We Collect
We collect several types of information from and about users of our website:
1.1 Personal Information You Provide
When you create an account, place an order, or interact with our services, you may provide us with:
- Full name (first and last name)
- Email address
- Phone number
- Date of birth
- Shipping and billing addresses
- Payment information (processed securely by Stripe)
- Marketing email preferences
1.2 Automatically Collected Information
When you access our website, we automatically collect certain information about your device and browsing activities:
- IP address and device identifiers
- Browser type and version
- Operating system
- Pages viewed and time spent on pages
- Referring website addresses
- Web performance metrics (Core Web Vitals)
- Error logs and diagnostic data (via Sentry)
1.3 Shopping and Preference Data
- Shopping cart contents (stored in your browser)
- Wishlist items (stored in your browser)
- Order history and purchase records
- Product reviews and ratings
- Customer support interactions
2. How We Use Your Information
We use the information we collect for the following purposes:
2.1 Order Processing and Fulfillment
- Process and fulfill your orders
- Process payments through Stripe
- Send order confirmations and shipping notifications
- Handle returns, exchanges, and refunds
- Verify your identity and prevent fraud
2.2 Communication
- Send transactional emails (order updates, password resets)
- Respond to customer support inquiries
- Send marketing emails (only if you opt in)
- Notify you of changes to our policies or services
2.3 Website Improvement and Analytics
- Monitor and analyze website performance
- Identify and fix technical errors
- Understand user behavior and preferences
- Improve our products, services, and user experience
- Optimize website speed and functionality
2.4 Legal Compliance
- Comply with legal obligations and regulations
- Enforce our Terms of Service
- Protect against fraud and security threats
- Resolve disputes and legal claims
3. Data Sharing and Third Parties
We do not sell, trade, or rent your personal information to third parties. We only share your information with trusted service providers who help us operate our business:
3.1 Payment Processing
Stripe - We use Stripe to process payments securely. Your payment card information is transmitted directly to Stripe and never stored on our servers. Stripe's privacy policy: https://stripe.com/privacy
3.2 Email Delivery
SendGrid - We use SendGrid to send transactional emails (order confirmations, shipping updates, password resets). SendGrid's privacy policy: https://www.twilio.com/legal/privacy
3.3 Error Tracking and Performance Monitoring
Sentry - We use Sentry to monitor errors and performance issues. Sentry collects error logs, stack traces, and basic user context (anonymized). Sentry's privacy policy: https://sentry.io/privacy/
3.4 File Storage
DigitalOcean Spaces - We use DigitalOcean Spaces (AWS S3-compatible) to store product images and media files. DigitalOcean's privacy policy: https://www.digitalocean.com/legal/privacy-policy
3.5 Legal Requirements
We may disclose your information if required by law, court order, or government regulation, or to protect our rights, property, or safety.
4. Your Rights (GDPR & CCPA)
Depending on your location, you have certain rights regarding your personal information:
4.1 Access and Portability
You have the right to request a copy of the personal information we hold about you in a structured, commonly used format.
4.2 Correction
You can update your account information at any time by logging into your account. If you need assistance, contact us.
4.3 Deletion
You have the right to request deletion of your personal information, subject to certain legal exceptions (e.g., order records for tax purposes).
4.4 Opt-Out of Marketing
You can opt out of marketing emails at any time by clicking the "unsubscribe" link in any marketing email or updating your preferences in your account settings.
4.5 Do Not Sell My Information (CCPA)
We do not sell your personal information to third parties. California residents can request information about data sharing practices.
How to Exercise Your Rights
To exercise any of these rights, please contact us at: privacy@yalldb.com
We will respond to your request within 30 days as required by law.
5. Data Security
We implement industry-standard security measures to protect your personal information:
- Encryption: All data transmitted between your browser and our servers is encrypted using HTTPS/TLS
- Authentication: Secure JWT (JSON Web Token) authentication with automatic token refresh
- Password Security: Passwords are hashed using Django's built-in secure hashing algorithms (PBKDF2)
- Rate Limiting: Protection against brute-force attacks and abuse
- Payment Security: We never store payment card information; all payments are processed by PCI-compliant Stripe
- Regular Audits: Ongoing security monitoring and vulnerability assessments
While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.
7. Children's Privacy (COPPA Compliance)
Our website is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at privacy@yalldb.com, and we will delete such information promptly.
Users must be at least 18 years old to create an account and make purchases. If you are between 13 and 18, you may use our website only with parental consent.
8. International Users and Data Transfers
Our servers and third-party service providers are located in the United States. If you are accessing our website from outside the United States, your information will be transferred to, stored, and processed in the United States.
By using our services, you consent to the transfer of your information to the United States and other countries where our service providers operate. We comply with applicable data protection laws, including GDPR for European Union users.
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:
- Posting the updated policy on this page with a new "Last Updated" date
- Sending an email notification to registered users (for significant changes)
- Displaying a prominent notice on our website
Your continued use of our website after the effective date of the updated Privacy Policy constitutes your acceptance of the changes.
10. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Y'ALL D'FFERENT BREED
Email: privacy@yalldb.com
Customer Support: support@yalldb.com
For general inquiries, visit our Contact Us page.
Your Privacy Matters
We are committed to transparency and protecting your privacy. This policy is designed to help you understand how we handle your information. If you have any concerns, we encourage you to reach out to us.