Effective Date: [2023-5]
Last Updated: [2024-6]

1. Who We Are

LoveAiDolls (“we,” “us,” or “our”) is an international online retailer of adult products.
We operate the website https://www.loveaidolls.com (the “Site”).
We comply with the General Data Protection Regulation (EU 2016/679), the UK GDPR, the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA).
Protecting customers’ privacy and data rights across all jurisdictions is our priority.

2. Information We Collect

We process only data necessary for legitimate business purposes, including:

  • Identification & Contact Data – name, billing and shipping address, email, phone number.
  • Order & Payment Details – items purchased, payment and delivery information. Payments are handled by certified payment processors; we never store complete card details.
  • Account Information – login credentials (if you choose to register).
  • Technical Data – IP address, browser type, operating system, cookies and analytics data.

We do nicht intentionally collect or process special‑category (sensitive) personal data.

3. Purposes and Legal Bases (for EEA/UK Users)

Purpose Legal Basis
To process orders and provide products Contract performance
To communicate on purchases or deliveries Legitimate interest
To send optional marketing messages Consent
To comply with tax, accounting, and legal duties Legal obligation

You may withdraw consent or object to processing at any time.

4. Cookies & Analytics

We use essential and analytical cookies.
Under GDPR/UK GDPR, a cookie‑consent banner appears on first visit allowing acceptance or rejection. Cookie choices may be changed anytime through browser settings.
For U.S. users, we interpret the global privacy control (GPC) signal as an opt‑out preference.

5. Data Sharing & Disclosures

We share personal data only with:

  • Payment gateways (e.g., Stripe, PayPal);
  • Logistics providers for shipment;
  • Service vendors (cloud hosting, email systems, analytics);
  • Public authorities when legally required.

Each partner is bound by a data‑processing agreement ensuring GDPR‑level safeguards. We do not sell personal information under the CCPA.

6. International Transfers

Personal data may be transferred to and processed in countries outside your own, including the U.S.
We safeguard such transfers through Standard Contractual Clauses (SCCs) or other approved mechanisms under GDPR Article 46.

7. Data Retention

We retain order records and necessary identifiers only as long as required for legal, accounting, or warranty purposes. Data no longer needed are securely deleted or anonymized.

8. Security Measures

All transactions are protected by HTTPS/SSL encryption.
Servers are firewall‑protected and accessible only to authorized personnel.
Despite these precautions, no online system is 100 % secure; by using this Site, you acknowledge the inherent risk of internet transmission.

9. Your Rights

#### For EEA and UK residents (GDPR/UK GDPR)

You have the right to:

  • Access the personal data we hold;
  • Rectify inaccuracies;
  • Request erasure (“right to be forgotten”);
  • Restrict processing;
  • Obtain data portability;
  • Object to processing (including direct marketing);
  • Lodge a complaint with your local Data Protection Authority.

#### For U.S. residents (CCPA/CPRA)

California consumers may request to:

  • Know what personal information we collect, use and disclose;
  • Delete personal information (subject to exceptions);
  • Opt out of the sale or sharing of personal information (we do not sell data);
  • Correct inaccurate information;
  • Exercise the right to non‑discrimination when exercising privacy rights.

Requests can be made to [email protected].
We verify identity before disclosing or deleting data.

10. Children and Age Restrictions

Our Site and products are intended only for individuals 18 years or older (or the legal age in their jurisdiction). We do not knowingly collect information from minors. If a minor has provided data, please contact us for immediate removal.

11. Third‑Party Links

External links may appear on our Site. We are not responsible for the privacy practices of other websites.

12. Updates to This Policy

We may revise this Privacy Policy as legal or technical requirements change. The current version is always available at: https://www.loveaidolls.com/privacy‑policy/.
Material changes will be announced on the Site or by email (if you have an account).

13. Contact Information

Data Controller: LoveAiDolls
E-Mail:[email protected]
Postal Address: [Insert registered office address]
Representative (EU/UK if applicable): [Insert DPR Group or appointed EU rep info]

For European users, the supervisory authority is the Data Protection Authority of your home country. 
For UK users, it is the Information Commissioner’s Office (ICO).
For California, the California Privacy Protection Agency (CPPA).

🟩 Compliance Checklist Covered

Regulation Key elements included
GDPR / UK GDPR Lawful basis for processing (Art. 6), SCCs for transfers, data subject rights (Arts. 12–23), retention limits
CCPA / CPRA Rights to know/delete/correct/opt out, non‑discrimination statement
FTC Act (US) Transparency, accuracy, truth‑in‑data collection statements
Age limits Clear 18+ restriction
Data security SSL encryption and limited access policy