Privacy Policy

Introduction

This Privacy Policy explains how Told Print™ ("we," "us," or "our") collects, uses, and protects your personal information when you visit or make a purchase from toldprint.com.

We comply with the GDPR for EU/EEA residents and applicable privacy laws in other regions.

Data Controller: Told Print™, Greece, European Union

Information We Collect

We collect different types of information depending on how you interact with our website:

1. Information You Provide Directly

• Contact details: name, email, shipping/billing address, phone
• Account information: username, encrypted password, order history, preferences
• Payment information: processed by Shopify Payments or your chosen provider; we do not store full card details
• Communication data: messages via email, forms, support
• Custom order details: personalization text, design notes

2. Information Collected Automatically

• Device information: IP, browser, OS, device identifiers
• Usage data: pages viewed, time on site, clicks, referrers
• Cookies and tracking: see Cookie Policy
• Analytics: aggregated website metrics (Google Analytics, Shopify Analytics)

3. Information from Third Parties

• Social media: basic profile data if you use social login
• Payment processors: transaction confirmation and fraud signals
• Shipping carriers: delivery and tracking status

How We Use Your Information

Order Processing & Fulfillment

• Process and fulfill orders
• Send order and shipping updates
• Handle return and refund requests for defective, damaged, or incorrect items
• Provide customer support

Communication

• Respond to inquiries
• Send transactional emails
• Send marketing emails with consent (opt out anytime)
• Notify about policy or service changes

Website Improvement & Analytics

• Analyze usage to improve UX
• Run A/B tests and optimize store
• Understand preferences and behavior
• Develop products and features

Legal & Compliance

• Tax, accounting, consumer protection obligations
• Fraud prevention and security
• Enforce our Terms & Conditions
• Resolve disputes and claims

Marketing & Advertising (with consent)

• Retargeting and personalized recommendations
• Measure advertising effectiveness

Manage preferences at Privacy Choices.

Legal Bases (GDPR)

• Contract: processing necessary to fulfill your order
• Legitimate interests: security, fraud prevention, basic analytics
• Consent: marketing emails, marketing cookies, retargeting
• Legal obligation: tax compliance and record keeping

Data Sharing & Third Parties

We share information with trusted service providers required to operate our business. We do not sell personal data.

Service Providers We Work With

When We May Disclose

• Legal requirements
• Business transfers
• Protection of rights
• With your consent

International Transfers: When transferring data outside the EU/EEA (e.g., to Shopify in CA/US or to Printify in the US), we use EU Standard Contractual Clauses and apply supplementary measures where required.

Cookies & Tracking Technologies

We use cookies to enhance your experience.

Types of Cookies

• Essential: cart, checkout, basic functionality
• Performance: Google Analytics, Shopify Analytics
• Functional: language, currency
• Marketing: advertising and retargeting (only with consent)

Managing Cookies

• Browser settings to block/delete cookies
• Consent banner on first visit
• Change preferences anytime at Privacy Choices

Marketing/advertising cookies load only after consent. Disabling essential cookies may break core features.

We use Google Analytics 4 with IP anonymization and limited data retention. We do not use GA for personalized ads without consent.

Your Privacy Rights

EU/EEA & UK (GDPR)

• Access
• Rectification
• Erasure (“Right to be Forgotten”)
• Restriction
• Data portability
• Object to processing
• Withdraw consent
• Lodge a complaint with your supervisory authority

U.S. Residents (CCPA/CPRA & other state laws)

• Know, access, and deletion rights
• Opt out of “sale” or “sharing” of personal information
• Opt out of targeted advertising
• Correct inaccurate information
• Non-discrimination

Exercise these rights at Do Not Sell or Share My Personal Information.

How to Exercise

• Email info@toldprint.com with subject “Privacy Rights Request”
• Include your name, email, and request details
• We respond within 30 days or as required by law

Data Retention

• Order data: 7 years (tax/accounting)
• Account data: until deletion or account closure
• Marketing data: until unsubscribe or deletion request
• Analytics data: aggregated/anonymized after 26 months
• Support communications: up to 3 years
• Consent records (cookies/marketing): 24 months
• Server & security logs: up to 12 months

After these periods, data is deleted or anonymized unless a longer period is legally required.

Data Security

• Encryption: SSL/TLS for data in transit
• Secure hosting: Shopify’s PCI-DSS compliant infrastructure
• Payment security: processed by certified providers; no full card storage
• Access controls: role-based access to personal data
• Maintenance: regular updates and security patches

No online method is 100% secure. Use strong passwords and keep credentials confidential.

Children's Privacy

Our website is not intended for children under 16. If a child provided personal data, contact info@toldprint.com for prompt deletion.

Third-Party Links

External sites have their own policies. Review them before providing information.

Changes to This Privacy Policy

• We update the “Last updated” date
• We notify account holders by email when changes are significant
• We display a notice on the site

Continuing to use the site after updates constitutes acceptance.

Contact Us

EU Data Protection Authority: EU/EEA residents may lodge a complaint with their local supervisory authority.