Privacy Policy
Pepidyn collects the minimum information necessary to fulfill your order and respects your right to financial and personal privacy.
1. What we collect
Account & order data
- Email address — for order confirmation, tracking updates, and account recovery
- Shipping name and address — to deliver your order
- Order history — products purchased, quantities, timestamps
- Cryptocurrency wallet address used at checkout — for transaction verification only
Technical data
- IP address, browser type, referrer (logged for 30 days)
- Session cookies (essential for cart and login)
- Anonymous analytics — page views and conversion funnel, without personally identifying users
2. What we don't collect
- No credit card or banking information — we accept only cryptocurrency, so we never see your bank
- No identity verification documents — no government ID, no KYC
- No social security number, tax ID, or birth date
- No medical information, prescriptions, or health records
3. How we use your data
- To fulfill and ship your order
- To send transactional emails (confirmation, tracking)
- To respond to support requests you initiate
- To prevent fraud and comply with applicable law
We do not sell, rent, or trade your personal data. We do not share your data with advertisers or marketing partners.
4. Third parties
We share minimum data with specific service providers strictly to fulfill your order:
- NOWPayments / BTCPay — to verify your cryptocurrency payment
- Shipping carriers — to deliver your package (name + address)
- Email service (Resend) — to send transactional messages
- Hosting (Vercel) — to operate the website
- Database (Neon) — to store your account and order data
Each provider is contractually bound to protect your data and use it only as instructed by us.
5. Data retention
- Active account data: retained while your account is active
- Order records: 7 years (for tax and dispute purposes)
- Session logs / IP addresses: 30 days
- Email correspondence: 2 years
You may request deletion of your account and personal data at any time. Order records may be retained in anonymized form for tax compliance.
6. Your rights
You have the right to:
- Access the personal data we hold about you
- Correct inaccurate or incomplete data
- Request deletion of your data (right to erasure)
- Export your data in a portable format
- Object to processing for marketing purposes
- Withdraw consent at any time
To exercise any right, email [email protected]. We respond within 30 days.
7. Security
We use TLS encryption for all data in transit, encrypted databases at rest, and limit data access to personnel who require it for their role. We do not store unencrypted payment details — we don't collect them in the first place.
8. Cookies
We use only essential cookies (cart session, login state) and anonymous analytics. We do not use advertising cookies, retargeting pixels, or cross-site tracking.
9. International transfers
Pepidyn operates internationally. Your data may be processed in jurisdictions outside your home country. Where transfers occur from the EU, we rely on Standard Contractual Clauses.
10. Children
Our site is intended for users 21+ and qualified researchers. We do not knowingly collect data from individuals under 18. If we discover such collection, we delete it.
11. Changes
We may update this Privacy Policy. The effective date appears at the top. Material changes will be communicated by email to active customers.
Contact
Data Protection Officer: [email protected]