Privacy Policy

1. Introduction and Commitment to Privacy

At The Bakers Suite ("we," "us," or "our"), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at theoven.store (the "Website") and use our online ordering services.

By using our Website, you consent to the data practices described in this Privacy Policy. If you do not agree with the practices described in this policy, please do not use our Website.

We reserve the right to modify this Privacy Policy at any time. We will indicate the "Last Updated" date at the top of this page. Your continued use of the Website after any changes constitutes your acceptance of the modified Privacy Policy.

2. Information We Collect

We collect information that you provide directly to us and information that is automatically collected when you use our Website.

2.1 Order Information

When you place an order through our Website, we collect the following information:

Name: Your full name for order processing and delivery
Email Address: For order confirmations, notifications, and customer service communications
Phone Number: A 10-digit Zambian phone number for payment processing and delivery coordination
Delivery Address: Complete address where you want your order delivered
Special Notes: Any special instructions or notes you provide with your order
Order Details: Products ordered, quantities, selected addons, and pricing information
Delivery Date: Your selected delivery date

2.2 Payment Information

When you make a payment, we collect:

Phone Number: Used to initiate mobile money payments through MoneyUnify
Transaction Details: Transaction ID, amount, payment status, and related payment information provided by MoneyUnify

We do not store your full payment credentials. All payment processing is handled securely through MoneyUnify, our payment gateway provider.

2.3 Cart Data

To maintain your shopping cart across sessions, we store cart information in cookies and browser localStorage:

Product IDs and quantities
Selected addons and their additional amounts
Cart totals

This information is stored locally on your device and is not transmitted to our servers until you proceed to checkout.

2.4 Admin Account Information

If you are an administrative user who creates an account, we collect:

First name and last name
Phone number
Email address
Physical address
Password (stored securely using encryption)

2.5 Technical Information

When you visit our Website, we automatically collect certain technical information, including:

IP address
Browser type and version
Device information (type, operating system)
Pages visited and time spent on pages
Referring website addresses
Date and time of access

3. How We Use Your Information

We use the information we collect for the following purposes:

3.1 Order Processing and Fulfillment

Process and fulfill your orders
Coordinate delivery to your specified address
Manage order restrictions (minimum days in advance, maximum orders per day)
Maintain order records for business operations

3.2 Payment Processing

Initiate payment requests through MoneyUnify
Verify payment status
Process payment confirmations
Handle payment failures and retries

3.3 Communications

Send order confirmation emails to customers
Send order notification emails to administrators
Respond to customer inquiries and provide customer support
Notify you about important changes to our services or policies

3.4 Website Functionality

Maintain your shopping cart across sessions
Remember your theme preferences (light/dark mode)
Improve website performance and user experience
Analyze website usage and trends

3.5 Legal Compliance

Comply with applicable Zambian laws and regulations
Respond to legal requests and court orders
Protect our rights and prevent fraud
Enforce our Terms of Use

4. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our Website.

4.1 Types of Cookies We Use

Essential Cookies

Cart Cookies (`theoven_cart`): Stored for 30 days to maintain your shopping cart across sessions. This cookie contains product IDs, quantities, and selected addons.
Session Cookies: Used to maintain your session while using the Website.

Preference Cookies

Theme Preference: Stored in browser localStorage to remember your light/dark mode preference.

4.2 Purpose of Cookies

We use cookies to:

Maintain your shopping cart state so you don't lose items when navigating the Website
Remember your theme preferences for a personalized experience
Ensure the Website functions properly

4.3 Managing Cookies

You can control and manage cookies in several ways:

Browser Settings: Most browsers allow you to refuse or accept cookies. You can also delete cookies that have already been set. However, blocking or deleting cookies may impact your ability to use certain features of our Website, such as maintaining your shopping cart.
LocalStorage: You can clear localStorage data through your browser's developer tools or privacy settings.

Please note that if you disable cookies, you may not be able to use all features of our Website, including the shopping cart functionality.

5. Payment Processing

We use MoneyUnify as our payment gateway to process payments securely. When you make a payment:

5.1 Payment Information Sharing

Your phone number is shared with MoneyUnify to initiate the mobile money payment request
Payment amount and transaction details are transmitted securely to MoneyUnify
MoneyUnify processes the payment through mobile money services

5.2 Transaction Data Storage

We store the following payment-related information securely:

Transaction ID
Payment amount and charges
Payment status (initiated, pending, successful, failed, cancelled)
Phone number used for payment (for transaction records)
Payment request and response data (for record-keeping and dispute resolution)

5.3 MoneyUnify Privacy Practices

MoneyUnify has its own privacy policy that governs how it collects, uses, and protects your payment information. We encourage you to review MoneyUnify's privacy policy to understand their practices.

We are not responsible for MoneyUnify's privacy practices or data handling. Your use of MoneyUnify's payment services is subject to their terms and privacy policy.

6. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

6.1 Service Providers

We may share your information with trusted third-party service providers who assist us in operating our Website and conducting our business:

MoneyUnify: For payment processing. They receive your phone number and payment amount to process transactions.
Email Service Providers: For sending order confirmations, notifications, and customer service emails.

These service providers are contractually obligated to protect your information and use it only for the purposes we specify.

6.2 Legal Requirements

We may disclose your information if required by law or in response to valid legal requests, such as:

Court orders or subpoenas
Government investigations
Legal proceedings
Protection of our rights, property, or safety, or that of our customers or others

6.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity. We will notify you of any such change in ownership or control of your personal information.

7. Data Retention

We retain your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

7.1 Order and Customer Data

Order and customer information (including name, email, phone, delivery address, order details, and payment information) is retained indefinitely to maintain comprehensive order records for business operations, customer service, and legal compliance.

7.2 Admin Account Data

Administrative account information is retained while your account is active and for a reasonable period after account closure to comply with legal obligations and resolve disputes.

7.3 Technical Information

Technical information such as IP addresses and browser data may be retained for security and analytics purposes for a limited period, typically not exceeding 12 months.

8. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

Secure server infrastructure
Encryption of sensitive data in transit and at rest
Regular security assessments and updates
Access controls and authentication for administrative functions
Secure payment processing through MoneyUnify

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

If you have any concerns about the security of your information, please contact us at mpondakareen@gmail.com.

9. Your Rights Under Zambian Law

Under applicable Zambian data protection laws, you have certain rights regarding your personal information:

9.1 Right to Access

You have the right to request access to the personal information we hold about you, including:

What information we have collected
How we have used your information
Who we have shared your information with

9.2 Right to Correction

You have the right to request correction of any inaccurate or incomplete personal information we hold about you.

9.3 Right to Deletion

You have the right to request deletion of your personal information, subject to certain exceptions, including:

Legal obligations that require us to retain certain information (e.g., tax records, order history)
Ongoing business operations that require the information
Dispute resolution or legal proceedings

Please note that we retain order and customer data indefinitely for order records, as stated in Section 7.1.

9.4 Right to Object

You have the right to object to certain processing of your personal information, such as processing for direct marketing purposes.

9.5 How to Exercise Your Rights

To exercise any of these rights, please contact us at mpondakareen@gmail.com with:

Your full name
Email address associated with your account or orders
Description of the right you wish to exercise
Any relevant details to help us process your request

We will respond to your request within a reasonable timeframe and in accordance with applicable Zambian law.

10. Children's Privacy

Our Website is available to users of all ages. We do not knowingly collect personal information from children under the age of 13 without parental consent. However, since our Website does not have age restrictions, we may collect information from users of any age when they place orders.

If you are a parent or guardian and believe that your child has provided us with personal information without your consent, please contact us at mpondakareen@gmail.com and we will take steps to remove such information from our records.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:

Updating the "Last Updated" date at the top of this page
Posting a notice on our Website
Sending an email notification to registered users (if applicable)

Your continued use of the Website after any changes constitutes your acceptance of the modified Privacy Policy. If you do not agree to the changes, you should stop using the Website.

12. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Email: mpondakareen@gmail.com
Website: theoven.store

We will make every effort to respond to your inquiries in a timely and appropriate manner.