Privacy Policy

Last updated: 2026-02-07


Website: https://kjwest.com
Contact: [email protected]

1. Summary of this policy

This policy explains what personal data we collect when visitors use our WordPress / WooCommerce store, why we collect it, how we use it, how long we keep it, who we share it with, and the rights available to you under applicable privacy laws (including GDPR for EU residents and PIPEDA/Canadian privacy law for Canadian residents).

2. Information we collect

We collect the types of personal data needed to operate an online store and fulfill orders:

  • Account and profile data: name, username, email address, billing & shipping address, phone number.
  • Order and transactional data: products purchased, order date, order total, taxes, shipping method, order history.
  • Payment data: payment method identifiers (tokenized data from payment processors). We do not store full card numbers on our servers if using a compliant payment gateway.
  • Site usage & technical data: IP address, browser user agent string, device information, pages visited, cart actions, and cookies.
  • Communications: support messages, contact form submissions, comments.
  • Marketing preferences: newsletter subscriptions, opt-ins/opt-outs.
  • Other data: any data you choose to provide (e.g., product reviews, uploaded files).

3. Comments

When visitors leave comments we collect the data shown in the comment form plus the commenter’s IP address and browser user agent string for spam detection.

4. Community guidelines for comments and public content

We maintain a respectful, lawful community. By posting comments, reviews, or other user-generated content you agree to the following:

  • No hate speech, harassment, threats, or bullying of any individual or group.
  • No obscene, sexually explicit, or otherwise pornographic material.
  • No defamatory, libelous, or fraudulent statements.
  • No content that infringes copyright, trademark, or other intellectual property rights.
  • No illegal content or content that encourages illegal activity.
  • No abusive language, repeated profanity, or targeted attacks.
  • No spam, advertising, or promotional content not explicitly permitted by site features.

We have zero tolerance for abusive behavior. We reserve the right to remove, edit, or refuse to publish any content that violates these guidelines or applicable law. We also reserve the right to suspend or terminate accounts, block users, and deny access or service to anyone at any time and for any reason.

If you believe content violates these guidelines, report it to [email protected] with relevant details.

5. Media / images uploaded by users

If you upload images or other media to the website, do not upload files that contain embedded location data (EXIF GPS).

By uploading media you confirm that:

  • You own the rights to the content or have permission from the copyright holder to upload and use it.
  • The content does not infringe any copyright, trademark, or other intellectual property rights.
  • The content does not violate applicable laws or regulations.
  • The content is not illegal, misleading, offensive, defamatory, or harmful.

We reserve the right to review, remove, or restrict access to uploaded content that violates these terms, applicable laws, or our policies, without prior notice. You are solely responsible for the content you upload and any consequences arising from its publication on our website.

6. Cookies and similar technologies

We use cookies to make the site work and to improve your experience.

  • If you leave a comment you may opt-in to saving your name, email and website in cookies for convenience. These cookies last 1 year.
  • A temporary cookie is set on the login page to check whether your browser accepts cookies; it contains no personal data and is discarded when you close your browser.
  • When you log in we set cookies to save login info and screen display choices. Login cookies last 2 days; screen options cookies last 1 year. If you select “Remember Me” your login will persist for 2 weeks. Logging out removes login cookies.
  • If you edit or publish a post an additional cookie is saved that contains the post ID and expires after 1 day.
  • Third-party services (analytics, advertising, payment providers) may also set cookies; see the section on third parties below.

7. Embedded content from other websites

Pages may include embedded content (videos, social embeds, maps). Embedded content behaves as if you visited that third-party site directly and those third parties may collect data about you, use cookies, track interactions, and link data to accounts you hold with them.

8. How we use your data (purposes and lawful bases)

We use personal data to:

  • Process and fulfill orders (contractual necessity).
  • Manage user accounts and provide customer service (contractual/legitimate interest).
  • Process payments via third-party payment processors (contractual/legitimate interest).
  • Send transactional emails (order confirmations, shipping notifications).
  • Send marketing emails only where you have given consent; you may opt out at any time (consent).
  • Improve the website, prevent fraud, and protect security (legitimate interest).
  • Comply with legal obligations (legal basis: compliance with law).

9. Who we share your data with (recipients)

We share data only as necessary to provide services:

  • Payment processors (Stripe, PayPal, other gateways) to handle payments.
  • WooCommerce, WordPress, and hosting providers for store operation and hosting.
  • Shipping and fulfillment partners to deliver orders.
  • Tax, accounting or legal advisors where required for compliance.
  • Email and marketing services for newsletters if you opt in.
  • Anti-fraud and spam detection services (automated checks).
  • Law enforcement or regulators if required by law.

If you request a password reset, your IP address may be included in the reset email. We do not sell personal data.

10. Third-party services and where your data is sent

Visitor comments and other content may be checked by automated spam detection services. Payment data is sent to and processed by third-party payment gateways; these processors have their own privacy policies and security controls. Links to the privacy policies of key third parties should be made available on the site for the specific providers you use.

11. International transfers

Some third-party service providers and hosting may store or process data outside your country. Where data is transferred internationally, we rely on appropriate safeguards (standard contractual clauses, service provider commitments) or local legal exceptions. For specific information about international transfers, contact [email protected].

12. How long we retain your data

  • Comments and related metadata: retained indefinitely unless you request deletion.
  • Account information: retained while your account exists and as long as necessary for business and legal purposes.
  • Order histories and transaction records: retained for business recordkeeping and to meet legal/tax obligations (retain for the period required by applicable law).
  • Support communications and marketing preferences: retained as necessary to provide services and comply with legal obligations.

If you need precise retention periods (for example, tax record retention under local law), contact [email protected]. We will retain data no longer than necessary and in accordance with applicable law.

13. Your rights and choices

Depending on where you live, you may have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate or incomplete data.
  • Request deletion (right to be forgotten) subject to legal/operational exceptions.
  • Request restriction of processing.
  • Object to processing based on legitimate interests or direct marketing.
  • Receive a portable copy of data you provided (data portability).
  • Withdraw consent where processing is based on consent.
  • Lodge a complaint with a supervisory authority (for EU residents) or with the appropriate privacy regulator in your country (for Canada: Office of the Privacy Commissioner of Canada).

To exercise rights, contact: [email protected]. We may need to verify your identity before fulfilling requests. We will respond within applicable legal timeframes.

14. Security measures

We use administrative, technical and physical measures to help protect personal data. These include SSL/TLS, secure hosting, access controls, and vendor security requirements. However, no transmission or storage can be guaranteed 100% secure. Report suspected data incidents to [email protected] immediately.

15. Children’s privacy

Our store is not intended for children under 16 (or the higher age required by local law). We do not knowingly collect personal data from children under that age. If you believe we have collected personal data from a child without consent, contact [email protected] and we will delete the data as required by law.

16. Changes to this policy

We may update this policy. When material changes occur we will post the updated policy on the site with a revised “Last updated” date. Significant changes may also be notified by email where required.

17. Contact & complaints

Data controller: kjwest.com
Email: [email protected]

If you are in the EU you may lodge a complaint with your supervisory authority; Canadian residents may contact the Office of the Privacy Commissioner of Canada.