Personal data collected: Describe the types of personal data you collect from users, such as name, address, email address, phone number, and payment information.
Purpose of collecting personal data: Explain why you collect personal data from users, such as to fulfill orders, process payments, and provide customer support.
Legal basis for processing personal data: Describe the legal basis for processing personal data, such as consent, contractual necessity, or legitimate interests.
Data sharing: Explain if and when you share personal data with third parties, such as payment processors, shipping companies, or marketing partners.
User rights: Explain users' rights regarding their personal data, such as the right to access, correct, and delete their personal data.
Data retention: Describe how long you retain personal data, and the criteria used to determine retention periods.
Security: Describe the measures you take to protect personal data, such as encryption, access controls, and staff training.