Privacy Policy

How we protect and handle your personal information

Last Updated: January 6, 2025

1. Overview

Welcome to Trippy Tribe! We're committed to protecting your privacy and being transparent about how we collect, use, and share your personal information. This Privacy Policy explains our practices when you visit our website, purchase our glow-in-the-dark clothing, or interact with our services.

🛡️ Our Commitment: We only collect information necessary to provide you with excellent service and never sell your personal data to third parties.

Who We Are: Trippy Tribe is an e-commerce business operating in Sri Lanka, specializing in unique glow-in-the-dark and UV-reactive clothing and accessories.

Scope: This policy applies to all information collected through our website, mobile applications, and any other digital platforms operated by Trippy Tribe.

2. Information We Collect

2.1 Personal Information You Provide

  • Account Information: Name, email address, phone number, password
  • Billing Information: Payment details, billing address
  • Shipping Information: Delivery address, recipient details
  • Contact Information: When you reach out to customer service
  • Product Reviews: Reviews, ratings, and photos you submit
  • Marketing Preferences: Communication preferences and interests

2.2 Information Collected Automatically

Information Type Examples Purpose
Device Information IP address, browser type, device model Security and optimization
Usage Data Pages visited, time spent, click patterns Improve user experience
Location Data General location (city/region) Shipping and tax calculations
Shopping Behavior Cart contents, purchase history Personalization and recommendations
📍 Location Note: We only collect general location information (city/region) to calculate shipping costs and taxes. We never track your precise GPS location.

3. How We Use Your Information

3.1 Primary Uses

  • Order Processing: Process payments, fulfill orders, provide shipping updates
  • Customer Service: Respond to inquiries, resolve issues, provide support
  • Account Management: Create and maintain your account, remember preferences
  • Communication: Send order confirmations, shipping notifications, important updates

3.2 Secondary Uses (With Your Consent)

  • Marketing: Send promotional emails about new products and sales (opt-in)
  • Personalization: Recommend products based on your browsing and purchase history
  • Surveys & Feedback: Request feedback on your shopping experience
  • Social Media: Share your reviews or photos (with explicit permission)
✋ Your Control: You can opt out of marketing communications at any time by clicking "unsubscribe" in our emails or updating your account preferences.

4. Information Sharing

4.1 When We Share Information

  • Service Providers: Payment processors, shipping companies, email service providers
  • Legal Requirements: When required by law, court orders, or government requests
  • Business Protection: To protect our rights, prevent fraud, or ensure safety
  • Business Transfers: In case of merger, acquisition, or sale of assets
🚫 What We Never Do: We never sell, rent, or trade your personal information to third parties for their marketing purposes.

4.2 Trusted Partners

Partner Type Information Shared Purpose
Payment Processors Billing information, transaction details Process payments securely
Shipping Companies Name, shipping address, phone number Deliver your orders
Email Services Email address, name, preferences Send order updates and newsletters
Analytics Providers Anonymized usage data Improve website performance

5. Data Security

5.1 Technical Safeguards

  • Encryption: All sensitive data is encrypted in transit and at rest
  • Secure Hosting: Data stored on secure, monitored servers
  • Access Controls: Limited access on a need-to-know basis
  • Regular Updates: Security patches and system updates
  • Monitoring: 24/7 security monitoring and intrusion detection

5.2 Payment Security

🔒 PCI Compliance: We follow Payment Card Industry (PCI) Data Security Standards. Credit card information is processed through secure, encrypted channels and never stored on our servers.

5.3 What You Can Do

  • Use a strong, unique password for your account
  • Log out when using shared computers
  • Keep your contact information updated
  • Report suspicious activity immediately
  • Enable two-factor authentication if available

6. Cookies & Tracking Technologies

6.1 Types of Cookies We Use

Cookie Type Purpose Duration
Essential Cookies Website functionality, shopping cart, login Session/1 year
Analytics Cookies Website usage statistics, performance optimization 2 years
Marketing Cookies Personalized ads, social media integration 1 year
Preference Cookies Remember your settings and preferences 1 year

6.2 Managing Cookies

You can control cookies through your browser settings. However, disabling certain cookies may affect website functionality.

🍪 Cookie Consent: We use a cookie consent banner to obtain your permission for non-essential cookies. You can change your preferences at any time.

7. Your Privacy Rights

7.1 Access and Control

  • Access: Request a copy of your personal information
  • Update: Correct or update your information
  • Delete: Request deletion of your account and data
  • Port: Export your data in a readable format
  • Restrict: Limit how we use your information
  • Object: Opt out of marketing communications

7.2 How to Exercise Your Rights

📧 Contact Us: Email us at privacy@trippytribe.lk or use the contact form below. We'll respond within 30 days and verify your identity before processing requests.

7.3 Account Deletion

When you request account deletion:

  • We'll delete your personal information within 30 days
  • Some information may be retained for legal compliance
  • Anonymous analytics data may be retained
  • You'll receive confirmation when deletion is complete

8. Sri Lankan Privacy Laws

8.1 Local Compliance

As a Sri Lankan business, we comply with:

  • Computer Crimes Act No. 24 of 2007: Cybersecurity and data protection
  • Electronic Transactions Act No. 19 of 2006: Digital transactions and records
  • Consumer Affairs Authority Act: Consumer protection rights
  • Data Protection Act (Draft): Preparing for upcoming privacy legislation

8.2 Cross-Border Transfers

🌍 International Transfers: When we transfer data outside Sri Lanka (e.g., to payment processors), we ensure adequate protection through contractual safeguards and security measures.

8.3 Local Data Storage

  • Primary data storage within Sri Lanka when possible
  • Secure cloud storage with international providers
  • Regular data backups and disaster recovery
  • Compliance with local banking and financial regulations

9. Children's Privacy

9.1 Age Restrictions

Our services are intended for users 18 years and older. We do not knowingly collect personal information from children under 18.

9.2 Parental Oversight

⚠️ Parents: If you believe your child has provided personal information to us, please contact us immediately at privacy@trippytribe.lk and we'll delete it promptly.

9.3 Teen Safety

  • Teens 16-17 may shop with parental consent
  • Parents can request access to teen accounts
  • Special protection for sensitive information
  • Educational resources about online safety

10. Policy Updates

We may update this Privacy Policy from time to time to reflect:

  • Changes in our business practices
  • New legal requirements
  • Technological developments
  • Customer feedback and suggestions

10.1 How We Notify You

  • Website Notice: Prominent notice on our homepage for 30 days
  • Email Notification: Direct email to registered customers for significant changes
  • Version History: Previous versions available upon request
  • Effective Date: All changes clearly marked with implementation dates
📅 Stay Informed: We recommend reviewing this policy periodically to stay informed about how we protect your information.

11. Contact Us

11.1 Privacy Questions

If you have questions about this Privacy Policy or how we handle your information:

Contact Method Details Response Time
Email privacy@trippytribe.lk Within 24 hours
General Support info@trippytribe.lk Within 48 hours
Phone +94 77 123 4567 Business hours
Address Trippy Tribe, Negombo, Sri Lanka Mail: 5-7 business days

11.2 Data Protection Officer

For serious privacy concerns or legal matters, you can reach our Data Protection Officer at:

📧 DPO Email: dpo@trippytribe.lk
📞 Direct Line: +94 77 123 4568
⏰ Available: Monday-Friday, 9 AM - 5 PM (Sri Lanka Time)

11.3 Regulatory Authorities

If you're not satisfied with our response to your privacy concerns, you may also contact:

  • Information and Communication Technology Agency (ICTA): For cybersecurity and data protection matters
  • Consumer Affairs Authority: For consumer protection issues
  • Central Bank of Sri Lanka: For payment and financial data concerns

Questions About Your Privacy?

We're here to help! Contact our privacy team with any questions or concerns.

Email Privacy Team Contact Form