Privacy Policy

1. Introduction

Welcome to Christopher Josiah ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://christopherjosiah.com (the "Site") and make purchases from our online store.

By using our Site, you consent to the practices described in this Privacy Policy. If you do not agree with the terms of this policy, please do not access the Site.

2. Information We Collect

a. Personal Information You Provide

We collect personal information that you voluntarily provide when you:

  • Make a purchase, including:

    • Full name
    • Email address
    • Shipping address
    • Billing address
    • Phone number
    • Payment information (credit/debit card details, processed securely through our third-party payment processor)

  • Subscribe to our newsletter, including:

    • Name
    • Email address

  • Contact us, including:

    • Name
    • Email address
    • Any information you include in your message

b. Information Automatically Collected

When you visit our Site, certain information may be collected automatically, including:

  • IP address
  • Browser type and version
  • Operating system
  • Device information (desktop, mobile, tablet)
  • Referring URLs and exit pages
  • Pages viewed and time spent on pages
  • Date and time of visit
  • Click and browsing patterns
  • Cookies and similar tracking technologies (see our Cookie Policy for details)

c. Payment Information

We do not directly store your full payment card details on our servers. All payment transactions are processed through secure, PCI-compliant third-party payment processors. We may retain partial payment information (such as the last four digits of your card number and transaction ID) for order management and fraud prevention purposes.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Order Fulfillment: To process and ship your orders, send order confirmations, and provide tracking information
  • Customer Communication: To respond to your inquiries, provide customer support, and send order-related updates
  • Email Marketing: To send you newsletters, promotional offers, new product announcements, and other marketing communications (only with your consent; you can unsubscribe at any time)
  • Website Improvement: To analyze how visitors use our Site and improve its functionality, design, and user experience
  • Fraud Prevention: To detect, prevent, and address fraudulent transactions and other illegal activities
  • Legal Compliance: To comply with applicable laws, regulations, and legal obligations
  • Security: To protect the safety, rights, and property of Christopher Josiah, our customers, and others

4. How We Share Your Information

We do not sell, rent, or trade your personal information to third parties.

We may share your information only in the following limited circumstances:

  • Service Providers: We share information with trusted third-party service providers who assist us in operating our business, including:

    • Payment processors (e.g., Stripe, PayPal, or similar) to process transactions
    • Shipping and logistics providers to fulfill and deliver orders
    • Email marketing platforms to manage newsletters and promotional communications
    • Website hosting and analytics providers
    • These service providers are contractually obligated to protect your information and may only use it to perform services on our behalf

  • Legal Requirements: We may disclose your information if required to do so by law or if we believe in good faith that such action is necessary to:

    • Comply with a legal obligation, court order, or legal process
    • Protect and defend our rights or property
    • Prevent or investigate possible wrongdoing
    • Protect the personal safety of users or the public

  • Business Transfers: In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred as part of that transaction. We will notify you of any such change.

5. Data Retention

We retain your personal information for as long as necessary to:

  • Fulfill the purposes outlined in this Privacy Policy
  • Complete your transactions and provide requested services
  • Comply with legal, accounting, and regulatory requirements
  • Resolve disputes and enforce our agreements

Specific retention periods:

  • Order data: Retained for a minimum of [5] years for tax, legal, and accounting purposes
  • Email marketing data: Retained until you unsubscribe or request deletion
  • Website analytics data: Retained in aggregated/anonymized form

When personal information is no longer needed, we will securely delete or anonymize it.

6. Data Security

We take the security of your personal information seriously and implement appropriate technical and organizational measures, including:

  • SSL/TLS encryption for all data transmitted between your browser and our Site
  • Secure, PCI-compliant payment processing through third-party providers
  • Access controls limiting who can view personal information
  • Regular monitoring and security assessments

However, please be aware that no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee its absolute security.

7. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

a. General Rights (All Users)

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request that we correct inaccurate or incomplete information
  • Deletion: Request that we delete your personal information (subject to legal retention requirements)
  • Opt-Out of Marketing: Unsubscribe from our newsletter and marketing emails at any time by clicking the "Unsubscribe" link at the bottom of any email or contacting us directly

b. European Economic Area (EEA) / UK Residents — GDPR

If you are located in the EEA or UK, you have additional rights under the General Data Protection Regulation (GDPR), including:

  • Right of Access (Article 15)
  • Right to Rectification (Article 16)
  • Right to Erasure / "Right to Be Forgotten" (Article 17)
  • Right to Restrict Processing (Article 18)
  • Right to Data Portability (Article 20) — receive your data in a structured, commonly used, machine-readable format
  • Right to Object (Article 21) — object to processing based on legitimate interests or for direct marketing
  • Right to Withdraw Consent — where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing
  • Right to Lodge a Complaint — with your local data protection supervisory authority

Legal Bases for Processing (GDPR):
We process your personal data based on the following legal grounds:

  • Contractual necessity: To fulfill orders and deliver products
  • Consent: For email marketing and non-essential cookies
  • Legitimate interests: For fraud prevention, website security, and improving our services
  • Legal obligation: To comply with tax, accounting, and other legal requirements

c. California Residents — CCPA/CPRA

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

  • Right to Know: You may request that we disclose what personal information we have collected, used, disclosed, and sold in the prior 12 months
  • Right to Delete: You may request deletion of your personal information, subject to certain exceptions
  • Right to Opt-Out of Sale: We do not sell your personal information. No opt-out is necessary
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights

d. Canadian Residents — PIPEDA

If you are a Canadian resident, you have rights under the Personal Information Protection and Electronic Documents Act (PIPEDA), including the right to access, correct, and withdraw consent for the use of your personal information.

e. Australian Residents — Privacy Act

If you are an Australian resident, you have rights under the Australian Privacy Act 1988, including the right to access and correct your personal information and to lodge a complaint with the Office of the Australian Information Commissioner (OAIC).

f. How to Exercise Your Rights

To exercise any of the rights described above, please contact us at:

  • Email: [email address]

We will respond to your request within the timeframe required by applicable law (typically within 30 days). We may need to verify your identity before processing your request.

8. Email Marketing and Communications

By subscribing to our newsletter or providing your email address during checkout, you may receive:

  • New product launches and collection announcements
  • Exclusive promotions, sales, and discount codes
  • Brand news and updates
  • Style inspiration and lookbooks

Your consent matters:

  • We only send marketing emails with your consent
  • Every marketing email includes an "Unsubscribe" link
  • You can opt out at any time without affecting your ability to make purchases
  • We will honor unsubscribe requests within 10 business days

We will never spam you or share your email address with third parties for their marketing purposes.

9. International Data Transfers

As we serve customers globally, your personal information may be transferred to and processed in countries other than your country of residence, including the United States. These countries may have different data protection laws.

When we transfer personal data internationally, we take appropriate safeguards to ensure your information is protected, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Data processing agreements with our service providers
  • Compliance with applicable data transfer regulations

10. Children's Privacy

Our Site is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at [email address]. If we become aware that we have collected personal data from a child under 13, we will take steps to delete that information promptly.

11. Third-Party Links

Our Site may contain links to third-party websites, services, or social media platforms. We are not responsible for the privacy practices, content, or security of these external sites. We encourage you to review the privacy policies of any third-party site you visit.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make changes:

  • The "Last Updated" date at the top of this policy will be revised
  • For significant changes, we may notify you via email or a prominent notice on our Site
  • Your continued use of the Site after changes are posted constitutes your acceptance of the revised policy

We encourage you to review this Privacy Policy periodically.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Christopher Josiah1

Last updated: June 06, 2026