At Kannamma Stories ("we", "us", "our"), we are committed to protecting the privacy and security of our customers and their families. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website kannammastories.com or place an order with us. Please read this policy carefully. By using our website, you consent to the practices described herein.
1. Information We Collect
Personal Information You Provide
- Contact Details: Name, email address, phone number, and WhatsApp number when you place an order or contact us.
- Shipping Address: Delivery address for physical products (printed coloring books, story books, subscription boxes).
- Child's Information: Your child's name, age, gender, and preferences — used exclusively for personalizing ordered products.
- Order Details: Product selections, customization preferences, uploaded photos (for personalized products), and order history.
- Account Information: Email and password if you create an account on our website.
- Communication Data: Messages exchanged via WhatsApp, email, or our contact form regarding orders or inquiries.
Information Collected Automatically
- Device & Browser Data: IP address, browser type and version, operating system, device type, and screen resolution.
- Usage Data: Pages visited, time spent on each page, click patterns, referring website, and search terms used.
- Location Data: Approximate geographic location derived from your IP address (used for currency auto-detection).
- Cookies & Tracking: Essential cookies, analytics cookies, and similar technologies (see Section 7).
2. How We Use Your Information
We use the information we collect for the following purposes:
- Order Fulfillment: To create, personalize, and deliver your products; to generate Order IDs (format: KS-{timestamp}); and to send order confirmations and delivery updates via WhatsApp and email.
- Customer Support: To respond to inquiries, process revision requests, handle complaints, and provide after-sales assistance.
- Product Personalization: To use your child's name, age, and preferences to create customized coloring books, story books, animated videos, and audio content.
- Website Improvement: To analyze usage patterns, optimize our website performance, fix bugs, and enhance user experience.
- Marketing (with consent): To send newsletters, promotional offers (e.g., 10% off first order), and new product announcements. You can unsubscribe at any time.
- Legal Compliance: To comply with applicable laws, regulations, and legal processes.
- Fraud Prevention: To detect and prevent fraudulent transactions and abuse of our services.
3. How We Share Your Information
We never sell your personal data to third parties. We may share your information only in the following circumstances:
- Payment Processors: Cashfree Payments and PayPal process your payment securely. We do not store credit card numbers, UPI IDs, or bank account details on our servers.
- Shipping Partners: Courier services (for physical products within India and internationally) receive your shipping address and phone number solely for delivery purposes.
- Print-on-Demand Partners: Trusted printing partners receive product files for fulfillment. They do not retain customer data after printing.
- Analytics Providers: Google Analytics 4 collects anonymized usage data to help us understand website traffic and user behavior.
- Advertising Platforms: Meta (Facebook/Instagram) Pixel and Pinterest Tag collect anonymized conversion data to measure ad performance and enable retargeting. These pixels only activate if you accept marketing cookies.
- Hosting Provider: Vercel hosts our website and processes requests as part of normal website operations.
- Legal Requirements: We may disclose information if required by law, court order, or government regulation.
4. Data Storage & Security
- Your data is stored securely using industry-standard encryption (TLS/SSL for data in transit, AES-256 for data at rest).
- We use Supabase (hosted on AWS) as our database provider, which complies with SOC 2 Type II security standards.
- Payment information is processed by PCI DSS-compliant payment gateways (Cashfree, PayPal). We never store full card numbers or CVVs.
- Access to personal data is restricted to authorized team members on a need-to-know basis.
- Uploaded photos for personalization are stored securely and automatically deleted 90 days after order completion.
- We conduct regular security reviews and promptly address any vulnerabilities (see our Responsible Disclosure Policy).
5. Children's Privacy
We take children's privacy extremely seriously. Our products are designed for children, but our website and ordering process are intended for use by parents and guardians.
- We do not knowingly collect personal information directly from children under the age of 13.
- Children's names and ages collected from parents/guardians are used exclusively for product personalization and are never used for marketing, profiling, or behavioral tracking.
- We do not create user profiles for children or target advertising to children.
- Photos uploaded for personalization are handled with extra care, stored securely, and deleted within 90 days of order fulfillment.
- Parents/guardians can request deletion of their child's information at any time by contacting us.
- We comply with the Children's Online Privacy Protection Act (COPPA) and the Indian Information Technology Act, 2000.
6. Your Rights
Depending on your location, you may have the following rights regarding your personal data:
- Right to Access: Request a copy of the personal data we hold about you.
- Right to Correction: Request correction of inaccurate or incomplete data.
- Right to Deletion: Request deletion of your personal data (subject to legal retention requirements).
- Right to Withdraw Consent: Withdraw consent for marketing communications at any time by clicking "Unsubscribe" in any email or messaging us on WhatsApp.
- Right to Data Portability: Request your data in a structured, commonly used, machine-readable format.
- Right to Complain: Lodge a complaint with a data protection authority if you believe your rights have been violated.
To exercise any of these rights, contact us at kannamma.stories@gmail.com or WhatsApp +91-8341128359. We will respond within 30 days.
7. Cookies & Tracking Technologies
Our website uses the following types of cookies and tracking technologies:
- Essential Cookies: Required for the website to function (e.g., session management, cart functionality, authentication). These cannot be disabled.
- Analytics Cookies: Google Analytics 4 cookies help us understand how visitors interact with our website. Data is anonymized and not linked to personally identifiable information.
- Preference Cookies: Store your language, currency, and theme preferences for a better browsing experience.
- Marketing & Retargeting Pixels: We use the following third-party pixels to measure advertising effectiveness and show you relevant ads on other platforms:
- Meta (Facebook/Instagram) Pixel: Tracks page views, add-to-cart events, and purchases to help us serve relevant ads on Facebook and Instagram. You can opt out via Facebook Ad Settings.
- Pinterest Tag: Tracks page views and conversions to help us reach parents discovering children's products on Pinterest. You can opt out via Pinterest Privacy Settings.
You can manage or disable cookies through your browser settings. When you first visit our site, our cookie consent banner lets you accept or decline non-essential cookies (including marketing pixels). Disabling essential cookies may affect website functionality.
8. Third-Party Links
Our website may contain links to third-party websites (e.g., YouTube, Instagram, Facebook, payment gateways). We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.
9. Data Retention
- Order Data: Retained for 5 years for tax, legal, and warranty purposes.
- Account Data: Retained until you delete your account or request deletion.
- Marketing Data: Retained until you unsubscribe or request removal.
- Uploaded Photos: Automatically deleted 90 days after order completion.
- Analytics Data: Anonymized data retained for up to 26 months (Google Analytics default).
10. Changes to This Policy
We may update this Privacy Policy from time to time. When we make significant changes, we will notify you by email or by posting a prominent notice on our website. The "Last updated" date at the top of this page indicates when this policy was last revised. Continued use of our website after changes constitutes acceptance of the updated policy.
