Privacy Policy

Effective Date: October 15, 2025

Welcome to Cocomey (www.cocomey.com). This Privacy Policy explains how we collect, use, disclose, and protect your personal information. By accessing or using our site, you agree to this Policy.

1) Who We Are

Controller / Business: Guangzhou Hongyongsheng Electronics Co., Ltd.

Site: www.cocomey.com

Contact: service@cocomey.com

We operate this online store and determine the purposes and means of processing your personal information.

2) Information We Collect

• Identifiers & Contact Data: name, email, phone, billing/shipping address.
• Order & Payment Data: products purchased, order ID, payment status, last four digits of card (if applicable). Payments are processed by third-party processors (e.g., PayPal or card processors). We do not store full card numbers.
• Device & Usage Data: IP address, browser type, pages viewed, referring/exit pages, timestamps, approximate location.
• Cookies & Tracking: cookie IDs, ad IDs, and similar technologies—see Cookies.
• Customer Support Data: messages, inquiries, attachments you send to us.
• Marketing Preferences: newsletter opt-in/opt-out, consent choices.

3) How We Use Your Information

• Provide & fulfill services: process orders, payments, shipping, returns, and customer support.
• Improve our site: debugging, analytics, personalization, and performance.
• Marketing & ads: send offers (with consent where required); measure and deliver ads.
• Security & abuse prevention: fraud prevention, risk monitoring, and compliance with law.
• Legal basis (GDPR): performance of contract, legitimate interests, legal obligations, and consent (where applicable).

4) How We Share Your Information

We do not sell personal information for money. We may share limited data with partners to operate our business (which can be deemed “sharing” for cross-context behavioral advertising under CPRA).

• E-commerce platform & hosting: Shopify or equivalent platform services.
• Payment processors: PayPal and card processors to handle secure payments.
• Logistics & fulfillment: shipping/warehouse providers to deliver your orders.
• Analytics & advertising partners: e.g., Google, Meta (Facebook/Instagram), and similar tools for analytics/ads.
• Service providers: IT, customer support, anti-fraud, and email/SMS tools.
• Legal & compliance: to comply with laws, enforce terms, or protect rights and safety.
• Corporate events: as part of a merger, acquisition, financing, or sale of assets (with appropriate safeguards).

“Do Not Sell or Share My Personal Information” (CPRA): California residents can opt out of “sharing” used for cross-context behavioral advertising via this link (configure this page) and through browser signals like Global Privacy Control.

5) Cookies & Similar Technologies

We use cookies and similar technologies to operate our site, measure traffic, and show relevant ads.

Your controls: use our cookie banner/settings (configure in theme/app), adjust browser settings, or use the opt-out links below in Analytics & Ads.

6) Analytics, Advertising & Your Choices

• Opt out via our cookie banner (where available) or device/browser settings.
• Google Ads/Analytics: Google My Ad Center & GA Opt-Out.
• Meta: Ads Preferences within Facebook/Instagram accounts.
• Industry tools: NAI Opt-Out, DAA WebChoices.

Global Privacy Control (GPC): When we detect a GPC signal, we will treat it as a request to opt out of “sale”/“sharing” for that browser, to the extent required by applicable law.

7) Information Security

We use administrative, technical, and physical safeguards designed to protect personal information (e.g., TLS/SSL encryption in transit, access controls, logging). However, no method of transmission or storage is 100% secure.

8) Data Retention

We retain personal information only for as long as necessary for the purposes described above, including legal, accounting, or reporting requirements. Typical periods:

• Order/transaction records: up to 7 years (tax/audit requirements).
• Customer support inquiries: up to 24 months after resolution.
• Marketing data: until you opt out or for the period required by law.

9) International Transfers

We may process and store information in countries/regions outside your own (e.g., the US, EU/UK, Hong Kong, Mainland China). Where required, we use appropriate safeguards such as Standard Contractual Clauses (SCCs) or equivalent mechanisms.

10) Your Privacy Rights

GDPR/UK GDPR (EEA/UK residents): You may have the right to access, correct, delete, restrict or object to processing, and data portability. Where processing is based on consent, you may withdraw consent at any time.

US State Laws (e.g., California CPRA): You may have rights to know/access, delete, correct, and to opt out of “sale”/“sharing” of personal information and of targeted advertising. Use our Do Not Sell or Share page, our cookie banner, or send a request via email.

Verification & Response: We may take steps to verify your identity and will respond within the timeframe required by law.

Authorized Agents (CA): If you use an authorized agent, we may require proof of authorization.

11) Children’s Privacy

Our services are not directed to children under 13, and we do not knowingly collect personal information from them. If you believe a child has provided us information, please contact us to delete it.

12) Changes to This Policy

We may update this Policy from time to time. If we make material changes, we will post a notice on this page and/or notify you by email or site banner, indicating the update’s effective date.

13) Contact Us

Email: service@cocomey.com

Mailing Address (Business): Guangzhou Hongyongsheng Electronics Co., Ltd., Guangzhou, China

For faster assistance, include “Privacy Request” in your subject line and describe the nature of your request and the country/state you reside in.