Privacy Policy
1.1 Introduction
Teak & Marble Atelier, Ltd. ("Company," "we," "us," or "our") respects your privacy and is committed to handling personal information in a transparent and responsible manner. This Privacy Policy explains how we collect, use, disclose, store, and protect personal information when you visit our websites, make a purchase, communicate with us, or otherwise interact with our online services.
The Company is a Delaware C-Corporation headquartered in New York. We currently market and sell primarily in the United States. Our website is publicly accessible worldwide, and this Privacy Policy applies to all visitors and customers regardless of location.
1.2 Scope of This Policy
This Privacy Policy applies to personal information collected through:
- https://teakandmarbleatelier.com and any of its subpages
- Customer service communications
- Checkout and payment flows
- Marketing communications
- Analytics, advertising, and similar technologies associated with our websites
1.3 Categories of Information We Collect
A. Identity and Contact Information
- Full name, billing name, shipping recipient name
- Email address, telephone number
- Billing address, shipping address
B. Account and Transaction Information
- Order details, purchase history, cart activity, delivery status
- Return or refund requests, customer service inquiries
- Dispute or chargeback history
C. Payment and Financing Information
- Payment method type, transaction identifiers, payment authorization status
- Fraud-prevention indicators, refund status
- Financing-related information submitted to or processed by third-party payment and financing providers.
We do not intentionally store full payment card numbers on our own systems where those data are handled directly by third-party payment processors.
D. Device and Usage Information
- IP address, browser type, device type, operating system, referring URLs
- Pages viewed, site interaction data, cookie identifiers, approximate geolocation
- Session and engagement data
E. Marketing and Preference Information
- Email preferences, consent choices, ad interaction data
- Abandoned-cart activity, product interests, campaign attribution information
F. Compliance and Security Information
- Fraud prevention data, chargeback-related information, security event data
- Records required to comply with legal, regulatory, tax, sanctions, consumer protection, or payment-network obligations
1.4 How We Collect Information
- Directly from you, when you place an order, complete a form, or contact us
- Automatically, through cookies, pixels, analytics tools, and similar technologies
- From service providers, including payment processors, ecommerce platforms, advertising partners, logistics providers, and fraud-prevention vendors
- From marketing and social platforms, where permitted by law
1.5 How We Use Personal Information
- Operate, maintain, and improve the websites
- Process and fulfill orders and arrange shipping and delivery
- Provide customer service, support, and return and refund administration
- Detect and prevent fraud, abuse, unauthorized transactions, and chargebacks
- Personalize content, product offerings, and advertising
- Measure site usage and campaign performance
- Send transactional communications including order confirmations, shipping updates, and return notifications
- Send marketing and abandoned-cart communications where permitted by law and where required consent has been obtained
- Comply with contractual, legal, tax, accounting, consumer protection, and regulatory obligations
- Protect our rights, property, and business operations
1.6 Payment Processing and Financing Providers
We use, or may use, third-party payment and financing providers, including:
- Stripe
- Shopify Payments
- PayPal
- Klarna
- Affirm
These providers may collect and process personal information as necessary to authorize and process payments, evaluate financing eligibility, prevent fraud, verify identity, process refunds, manage disputes and chargebacks, and comply with law and their own platform requirements. Each provider may act as an independent controller or service provider depending on the transaction and applicable law. Your use of these payment or financing services is also governed by the provider's own terms, privacy notices, and consumer disclosures.
1.7 Cookies, Pixels, Analytics, and Advertising Technologies
We use cookies, pixels, tags, scripts, and similar technologies to support website functionality, checkout and cart functionality, security and fraud prevention, analytics and performance measurement, advertising attribution, remarketing and audience building, and email and abandoned-cart functionality. We currently use or may use:
- Google Analytics (GA4)
- Google Ads and remarketing
- Meta Pixel
- TikTok Pixel
- Ecommerce and checkout technologies associated with our Shopify store platform
- Marketing and email automation tools
Non-essential tracking technologies, including analytics and advertising cookies, are activated only after you provide consent through our cookie banner or consent management mechanism, except where a jurisdiction-specific exemption applies. See our Cookie Policy for details.
1.8 Email Marketing and Abandoned-Cart Communications
If you provide your email address, we may send order confirmations, shipping and delivery updates, return and refund communications, customer service responses, marketing messages, and abandoned-cart reminders where permitted by law. You may unsubscribe from marketing emails at any time using the unsubscribe link in the email or by contacting us at [email protected]. We may continue to send non-marketing messages necessary to complete transactions, administer your account, or comply with legal obligations.
1.9 How We Disclose Personal Information
We may disclose information to:
- Payment processors and financing providers
- Ecommerce platform providers, including Shopify
- Shipping carriers and logistics partners
- Suppliers, fulfillment providers, and drop-shipping partners
- Fraud-prevention and cybersecurity vendors
- Advertising, analytics, and marketing providers
- Professional advisers such as lawyers, accountants, insurers, and auditors
- Government agencies, regulators, courts, and law enforcement where required or permitted by law
- Acquirers, investors, lenders, or successor entities in connection with a merger, financing, acquisition, restructuring, or asset transfer
Certain analytics or advertising practices may be treated as a "sale," "sharing," or "targeted advertising" under US state privacy laws including California's CCPA/CPRA. Where legally required, we provide the appropriate notice and opt-out mechanism. California residents may exercise their right to opt out of the sale or sharing of personal information for targeted advertising purposes by clicking the Do Not Sell or Share My Personal Information link in the website footer, or by contacting us at [email protected].
1.10 International Transfers
We are based in the United States, and personal information may be processed in the United States or other jurisdictions where our vendors or partners operate. If we later serve individuals in the UK or EU through active marketing or sales targeting, we will adopt appropriate contractual or legal safeguards for international transfers where required by applicable law.
1.11 Legal Bases for Processing — UK and EU
Our website is publicly accessible worldwide. If UK or EU individuals access our website, interact with our services, or make purchases, their personal data may be subject to UK GDPR and/or EU GDPR. To the extent those frameworks apply, we rely on the following legal bases for processing:
- Performance of a contract — processing necessary to fulfill an order or provide requested services
- Compliance with legal obligations — processing required to comply with applicable law
- Legitimate interests — including fraud prevention, security, and business operations, where those interests are not overridden by individual rights
- Consent — for non-essential cookies, marketing communications, and targeted advertising where required
- Establishment, exercise, or defense of legal claims
Legitimate interest does not constitute a valid legal basis for analytics or advertising cookies under current EU and UK regulatory interpretation. Consent is required for those purposes.
1.12 Canadian Residents — PIPEDA and Quebec Law 25
Canada's Personal Information Protection and Electronic Documents Act (PIPEDA) applies to our collection, use, and disclosure of personal information about Canadian residents in the course of our commercial activities. We comply with PIPEDA's 10 fair information principles, including accountability, identifying purposes, consent, limiting collection, limiting use, accuracy, safeguards, openness, individual access, and challenging compliance.
If you are a resident of Quebec, additional protections apply under Quebec's Act Respecting the Protection of Personal Information in the Private Sector (Law 25). Law 25 requires us to obtain your explicit, informed, and affirmative consent before activating any technology that tracks your personal information, including cookies, advertising pixels, and analytics scripts. You may withdraw your consent at any time by updating your cookie preferences through the Cookie Settings link in our website footer. Law 25 also provides you with rights of access, correction, portability, deletion (de-indexation), and the right to object to automated decision-making.
To exercise your Canadian privacy rights, contact us at [email protected].
1.13 Your Privacy Rights by Jurisdiction
Depending on your place of residence, you may have some or all of the following rights:
- Access: Request confirmation of whether we process your personal information and obtain a copy
- Correction: Request that inaccurate or incomplete information be corrected
- Deletion: Request deletion of personal information, subject to certain exceptions
- Portability: Receive your personal information in a structured, machine-readable format
- Objection / Restriction: Object to or request restriction of certain processing
- Withdrawal of Consent: Withdraw previously given consent, without affecting lawfulness of prior processing
- Opt Out of Targeted Advertising or Data Sharing: Including via the Do Not Sell or Share My Personal Information link (California) or cookie preferences link (all jurisdictions)
To submit a request, contact us at [email protected]. We will respond within the timeframe required by applicable law. We do not discriminate against individuals who exercise their privacy rights.
1.14 Children's Privacy
Our websites are not directed to children. We do not knowingly collect personal information from children under the following age thresholds: under 13 years of age under US federal law (COPPA); under 13 years of age under UK law (UK GDPR); under 16 years of age as the default threshold under EU GDPR, with individual member states permitted to reduce this to 13. If we become aware that we have collected personal information from a child below the applicable age threshold without verifiable parental consent, we will take steps to delete that information.
1.15 Data Retention
We retain personal information for as long as reasonably necessary to complete transactions, provide support, maintain business records, prevent fraud, comply with legal, tax, accounting, and regulatory obligations, resolve disputes, and enforce our contractual rights. Retention periods vary by data type and processing purpose.
1.16 Security
We use reasonable administrative, technical, and organizational safeguards designed to protect personal information. No method of transmission over the internet or electronic storage system is completely secure, and we cannot guarantee absolute security.
1.17 Changes to This Policy
We may update this Privacy Policy from time to time. Any revised version will be posted on the website with an updated effective date. Where required by applicable law, we will provide notice of material changes.
1.18 Contact Us
Teak & Marble Atelier, Ltd.
2489 Dogwood Avenue, East Meadow, New York 11554
Email: [email protected]