Privacy Policy

Last updated: 2026-05-24

TrendDrop(“we”, “us”) respects your privacy. This policy explains what personal data we collect when you visit our store, why we collect it, who we share it with, and the rights you have under the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

1. What we collect

When you place an order or contact us, we collect:

• Name, email address, shipping address, phone number (optional)
• Order history and the products you viewed
• IP address, browser type, device identifiers, and approximate location
• Cookies and similar tracking technologies (see Section 5)

2. Why we collect it (legal basis)

• Contract performance — to process and fulfill your order, send confirmations, and handle returns.
• Legitimate interest — to detect fraud, improve our site, and respond to support requests.
• Consent — for marketing emails and non-essential cookies. You can withdraw consent at any time.
• Legal obligation — to keep transaction records as required by tax and consumer protection law.

3. Who we share it with

We share data only with the processors needed to run the store:

• Payment processors (e.g. Stripe)
• Shipping and logistics providers
• Analytics & advertising platforms (Meta, Google) — see Section 5
• Email delivery providers
• Customer support tools

We never sell your personal information. We require all processors to handle your data in line with GDPR-equivalent standards.

4. International transfers

Some of our processors are based outside the European Economic Area, including the United States. Where we transfer your data outside the EEA, we rely on Standard Contractual Clauses or other approved safeguards.

5. Cookies & tracking

We use:

• Strictly necessary cookies — required for the site to function (cart, checkout, session).
• Analytics cookies (e.g. Meta Pixel, Google Tag) — to measure ad performance and improve the site. Used only with your consent in the EU/UK.

You can manage or refuse non-essential cookies through your browser settings or our cookie banner.

6. How long we keep your data

We keep order and customer data for 7 years to comply with tax and accounting rules. Marketing data is kept until you unsubscribe. Analytics data is retained for up to 26 months.

7. Your rights

Under GDPR and CCPA, you have the right to:

• Access the personal data we hold about you
• Request correction or deletion
• Object to or restrict processing
• Data portability
• Withdraw consent and unsubscribe from marketing at any time
• Lodge a complaint with your local data protection authority

To exercise any of these rights, email support@trenddrop.shop. We respond within 30 days.

8. Security

The site is served over HTTPS with TLS encryption. Payment data is handled directly by PCI-DSS compliant processors — we never see your full card details.

9. Children

Our store is not intended for users under 16. We do not knowingly collect data from children.

10. Changes & contact

We may update this policy from time to time. Material changes will be flagged at the top of this page. Questions? Email support@trenddrop.shop.

Data controller: TrendDrop, Vilnius, Lithuania. Jurisdiction: Lithuania, European Union.