Privacy Policy for sai-bai.com

1. Introduction

Sai-Bai (“we,” “us,” or “our”) is committed to protecting your privacy and safeguarding your personal data. This Privacy Policy outlines how sai-bai.com (the “Website”) collects, uses, discloses, and safeguards your information in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. By visiting or interacting with our Website, you acknowledge and agree to the practices described herein.

2. Scope of Policy and Data Controller

This Privacy Policy applies to all users, visitors, and customers of sai-bai.com. Sai-Bai is the controller of personal data processed through the Website and determines the purposes and means of such processing. If you have any questions or requests related to your personal data, you may contact us at [email protected].

3. Categories of Data We Process

We may collect and process the following categories of personal data, either directly from you or automatically as you interact with our Website:

a. Usage Data
Includes information such as your browser type, IP address, time zone setting, operating system, referring/exit URLs, pages visited, session duration, and Website usage patterns.

b. Account Data
Includes your full name, billing/shipping address, email address, phone number, and other registration details provided when creating an account.

c. Profile Data
Includes your purchase history, browsing behavior on sai-bai.com, saved items, user preferences, favorites, and feedback.

d. Communication Data
Includes any messages you send us through our contact forms, support channels, and emails, as well as communication metadata.

e. Technical Data
Includes device type, internet connection type, screen resolution, hardware identifiers, and other device configuration details automatically collected from interactions with the Website.

f. Transaction Data
Includes payment information (processed by secure third-party providers), order summaries, delivery addresses, and refund requests.

g. Preference Data
Includes marketing preferences, subscription status, product interests, language choices, and cookie consent selections.

4. Legal Bases for Processing

We process your personal data under the following legal bases:

– Contractual Necessity: To fulfill our obligations under a contract, including processing orders and delivering products.
– Legitimate Interest: To improve our services, ensure security, manage our customer relationships, and detect/prevent fraud.
– Consent: Where legally required, we obtain your clear, affirmative consent to send marketing communications or use non-essential cookies.
– Legal Obligation: For compliance with applicable laws, including record-keeping and consumer protection statutes.

5. Your Rights

Under applicable data protection laws, you have the right to:

– Access: Obtain confirmation of whether your personal data is being processed and access a copy.
– Rectification: Request correction of inaccurate or incomplete personal data.
– Erasure: Request deletion of your personal data, subject to legal or contractual obligations.
– Restriction: Request limitation on the processing of your personal data in specific contexts.
– Portability: Receive your personal data in a structured, commonly used, and machine-readable format and transfer it to another controller.

To exercise any of these rights, please send your request to [email protected].

6. Security Measures

We implement a range of technical and organizational measures to safeguard your personal data, including:

– Encryption of sensitive and payment-related data during transit and storage
– Role-based access controls to limit data access on a need-to-know basis
– Regular backups and data recovery procedures
– Employee awareness training on data security and privacy protocols

7. International Transfers

Your personal data may be transferred and maintained outside of your jurisdiction, including to countries not considered to offer equivalent data protection levels. In such cases, we use GDPR-compliant Standard Contractual Clauses and other relevant safeguards to ensure your data remains protected in accordance with applicable laws.

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or to comply with legal, regulatory, or contractual retention requirements:

– Usage Data: 26 months
– Account Data: For the lifetime of the account or until deletion request
– Profile Data: Until account deactivation or objection
– Communication Data: 3 years after the last interaction
– Technical Data: 24 months
– Transaction Data: 7 years, in compliance with tax and financial regulations
– Preference Data: Until consent is withdrawn or account is deleted

9. Cookie Policy

We use cookies and similar tracking technologies on sai-bai.com to enhance functionality, improve performance, and tailor user experience. The categories include:

– Essential Cookies: Necessary for the Website to operate, including authentication and security.
– Functional Cookies: Remember your preferences and enhance usability.
– Performance Cookies: Help us understand Website performance using aggregated analytics data.
– Analytics Cookies: Collected via third-party services to analyze usage and optimize content.

10. Cookie Management and Compliance

When you first visit our Website, you will be presented with a cookie consent banner allowing you to accept or decline non-essential cookies. You may change or withdraw your consent at any time via our Cookie Settings panel, accessible from the Website footer.

Under GDPR and CCPA, you have the right to:

– Opt out of non-essential cookies
– Access detailed information about each cookie category
– Request deletion of data captured through cookies where applicable

11. Children’s Privacy

sai-bai.com is not intended for or directed at children under the age of 13. We do not knowingly collect personally identifiable information from children. If we become aware that such data has been inadvertently collected, we will take steps to delete the information promptly.

12. Policy Updates

We reserve the right to revise this Privacy Policy from time to time to reflect changes in legal, regulatory, or operational requirements. Substantive changes will be communicated via suitable notice on the Website. You are encouraged to periodically review this page to stay informed of how we protect your information.

13. Contact Us

If you have any questions, concerns, or requests about this Privacy Policy, or believe your personal data has been used in a way inconsistent with this Policy, please contact our Data Privacy Officer at:

Email: [email protected]

We are committed to complying fully with applicable privacy laws and ensuring that your personal data is handled responsibly and transparently.