1. Home

Privacy Policy

Privacy Policy

Privacy Policy

Last Updated: April 15, 2025

Welcome to Diegos Kingston (“we”, “us”, “our”). We respect your privacy and are committed to protecting your personal data. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you visit our website https://diegoskingston.com (the “Site”) and when you purchase products from us. By using the Site, you agree to the collection and use of information in accordance with this Policy.

1. Definitions

  1. Personal Data / Personal Information: Information that relates to an identified or identifiable individual.
  2. Sensitive Personal Data / Information (SPDI): Includes data such as financial information, passwords, health information, biometric data, etc.
  3. User / You / Your: Any person accessing the Site or using our services.
  4. Data Controller / We: Diegos Kingston – the party responsible for determining the purposes and means of processing your personal data.

2. What Information We Collect

We may collect the following types of information:
1. Information you provide directly

  1. Name, email address, phone number, postal address, shipping address, billing address.
  2. Payment information (credit/debit card, etc.).
  3. Account login details if you register an account (username, password).
  4. Order history, preferences.
2. Automatically collected information
  1. Device and usage data (e.g. IP address, browser type, operating system, referring URL, pages visited, time spent).
  2. Cookies and similar tracking technologies (see “Cookies & Tracking” below).
3. Sensitive Personal Data / Information
  1. We may collect financial/payment information; that is considered sensitive. We do not collect more sensitive data such as health data, unless explicitly needed and with your consent.

3. How We Use Your Information

We use your Personal Data for purposes such as:

  1. To process orders, payments, deliver products, and provide customer service.
  2. To create and manage your account, if you choose to register.
  3. To communicate with you (e.g. order confirmations, updates, promotions, survey).
  4. To improve our Site, products, and services (analytics, troubleshooting, enhancing user experience).
  5. To comply with legal obligations.
  6. To prevent or address fraud, security issues, and abuse.

4. Legal Basis for Processing (Where Applicable)

Where applicable under data protection laws, our processing of your personal data is based on:

  1. Your consent, when required.
  2. Performance of a contract (e.g. fulfilling orders).
  3. Legitimate interests (e.g. improving Site, marketing, fraud prevention), provided those interests do not override your rights and freedoms.
  4. Compliance with legal obligations.

5. Disclosure of Your Information

We may share your personal information:

  1. With service providers/vendors who help us operate the Site (payment processors, delivery partners, analytics providers, email service providers, cloud hosting).
  2. With third parties when required by law, regulation, legal process or to protect rights, property or safety.
  3. In connection with a business transaction (sale, merger, acquisition, restructuring) involving Diegos Kingston.
  4. With your consent or at your direction.
We will not share your sensitive personal data except as needed for order fulfilment (e.g. payment) or where required by law, and always with security measures.

6. Cookies & Tracking Technologies

  1. We use cookies, web beacons, tracking pixels, and similar technologies to collect usage information, improve Site functionality, recognize you, maintain sessions, personalize content, and for analytics.
  2. You can accept or reject cookies via your browser preferences. Please note that rejecting cookies may affect certain functionalities of the Site.
  3. Third party services (e.g. Google Analytics, advertising partners) may use their own cookies/tracking technologies.

7. Data Retention

  1. We will retain your personal data only for as long as needed for the purposes for which it was collected (e.g. to fulfill orders, maintain your account, comply with legal obligations).
  2. When data is no longer needed, we will securely delete or anonymize it by 30 days from the date of collection.

8. Security of Your Information

We take reasonable technical and organizational measures to protect your personal data from unauthorized access, misuse, alteration, or destruction. These may include encryption, access controls, secure servers, etc. However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

9. Children

  1. Our Site and services are intended for users who are at least 18 years old (or the legal age in your jurisdiction).
  2. We do not knowingly collect personal data from children under the legal age without parental consent. If we become aware we have collected data from a child without required consent, we will take steps to delete it.

10. Your Rights

Depending on your jurisdiction, you may have some or all of the following rights:

  1. Right to access the personal data we hold about you.
  2. Right to correct or update inaccurate or incomplete data.
  3. Right to delete your personal data (‘right to be forgotten’), subject to legal obligations.
  4. Right to withdraw consent at any time, where consent is the basis for processing.
  5. Right to object to certain types of processing, such as direct marketing.
To exercise these rights, please contact us using the contact details below. We aim to respond within the timelines required by applicable laws.

11. Cross Border Transfers

  1. If applicable, your personal data may be transferred to, stored, or processed in countries other than your country of residence.
  2. When this happens, we ensure that such transfers are done in accordance with applicable data protection laws, by putting in place adequate safeguards (such as contractual obligations, standard clauses, etc.).

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. When we make changes, we will update the “Last Updated” date at the top. If there are significant changes, we may also notify you by email or through a notice on the Site. Your continued use of the Site after the changes are in effect constitutes your acceptance of the revised policy.

13. Governing Law

This Policy is governed by the laws of New York, USA. Any dispute relating to this Privacy Policy shall be subject to the exclusive jurisdiction of the courts in New York, USA.

14. California Privacy Notice (CCPA / CPRA) for Diegos Kingston

This California Privacy Notice (“Notice”) supplements the information contained in our Privacy Policy and applies only to California residents. It explains your rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) and how Diegos Kingston (“we,” “us,” or “our”) collects, uses, discloses, and retains your personal information.

A. Categories of Personal Information Collected

In the past 12 months, we have collected the following categories of personal information from California consumers:

Category

Examples

Sources

Purposes of Collection / Use

Identifiers

Name, email address, postal address, phone number, IP address, device identifiers

You directly (e.g. account creation, checkout), automatically via cookies and web analytics

Communication, customer service, marketing, fraud prevention, improving services

Commercial information

Products purchased, shopping cart contents, order history, payment method (partially)

You at checkout

Order fulfillment, transaction processing, refunds

Internet or network activity

Browsing history, search history, pages viewed, links clicked, referring/exit pages, time spent on pages, device and connection information

Automatically collected via cookies, web server logs, analytics tools

Website analytics, performance optimization, marketing personalization

Geolocation data

Approximate location (e.g. via IP address)

Automatically via IP or geolocation services

To tailor content or offers by region, detect fraud

Sensory or device data

Device information (browser type/version, operating system, screen resolution, etc.)

Automatically collected

Site compatibility, debugging, system optimization

Inferences and profiles

Preferences, interests, predicted behaviors

Derived from other personal information and usage patterns

Personalization, recommendations, marketing segmentation

We do not knowingly collect “sensitive personal information” as defined by CPRA (e.g. precise geolocation, biometric data, race, religion) except if you expressly provide such data (for example, in communications), in which case it will be treated in accordance with applicable law.

B. Use of Personal Information

We may use or disclose the above categories of personal information for one or more of the following business purposes:

  • To process and fulfill your orders (e.g. shipping, billing, payment, returns)
  • To communicate with you (e.g. order confirmations, customer support, updates)
  • To personalize content, offers, or recommendations
  • To send marketing messages (where permitted), including newsletters and promotional offers
  • To maintain, improve, and secure our website and systems, detect fraud, and enforce our policies
  • To comply with legal obligations, regulations, or requests
  • To detect and prevent security incidents or unlawful or criminal activity

We do not sell your personal information as defined under the CCPA/CPRA. (If in the future we intend to “sell” or “share” personal information under CPRA definitions, we will provide appropriate opt‑out mechanisms.)

C. Disclosure to Service Providers & Third Parties

We may share your personal information with the following categories of third parties:

  • Payment processors, shipping and fulfillment service providers
  • Analytics and advertising service providers
  • Email service providers and marketing platforms
  • Customer support and CRM providers
  • Fraud detection, security, and compliance service providers
  • Legal, audit, or regulatory bodies when required

When we disclose personal information to third parties, we require them to comply with confidentiality and security obligations consistent with this Notice and applicable law.

D. Retention of Personal Information

We retain personal information for as long as necessary to fulfill the purpose(s) for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. When personal information is no longer needed, we will securely delete, anonymize, or aggregate it.

E. Your Rights as a California Resident

Under CCPA / CPRA, you have certain rights with respect to your personal information:

  1. Right to Know / Access
    You can request that we disclose what personal information we have collected about you, including:
    • The categories and specific pieces of personal information collected
    • The sources from which the information was collected
    • The business or commercial purposes for collecting or disclosing the information
    • The categories of third parties with whom we share your information
    • The retention period or criteria used to determine how long we keep your information
  2. Right to Delete
    You can request deletion of your personal information, subject to certain exceptions (e.g. for law enforcement, legal claims, or necessary business records).
  3. Right to Correct
    You can request correction of inaccurate personal information that we hold about you.
  4. Right to Opt Out of Sale / Sharing
    Currently, we do not sell or share personal information as defined under CPRA. If that changes, you will have the right to opt out of sale or sharing of your information.
  5. Right to Limit Use and Disclosure of Sensitive Personal Information
    If you provide sensitive personal information, you may request limits on its use and disclosure.
  6. Right to Non‑Discrimination
    You have the right to not receive discriminatory treatment for exercising any of your rights under CCPA/CPRA. For example, we will not deny you goods or services or charge you different prices just because you exercised your privacy rights—unless the difference is reasonably related to the value of your data.
  7. Right to Opt Out of Profiling
    To the extent we use your data to create profiles or make automated decisions, you may have the right to opt out of such profiling that has legal or significant effects.

F. How to Submit Requests & Verification

To exercise any of the rights above, you may submit a request via:

  • Email: info@diegoskingston.com
  • Any other method designated on our website

We will require you to verify your identity and your request by asking you to provide certain information (e.g. name, email address, account info). We will not use this information for any other purpose. We may deny a request if it is not verified, is frivolous, or is overbroad under applicable law.

We will respond to eligible requests within the timeframe required by law (typically 45 days), and may extend for another 45 days with notice.

G. Authorized Agents

You may designate an authorized agent to make a request on your behalf. We may require you to verify in writing that the agent is permitted to act on your behalf.

H. Changes to This Notice

We reserve the right to update this Notice from time to time. When we do, we will post the revised version with a new “Last Updated” date. We encourage you to review this Notice periodically.

15. Contact Us

If you have questions about this Notice or our privacy practices, please contact us at:

Diegos Kingston
Email: info@diegoskingston.com

 

Acknowledgement

By using the Site, you acknowledge that you have read this Privacy Policy, understood it, and agree to be bound by it.