Privacy Policy - Uptown Healing NYC

Last Updated: November 29, 2025

Your privacy is important to us. This Privacy Policy explains how Uptown Healing collects, uses, and protects your personal information when you use our website and services.

1. Information We Collect

Personal Information You Provide

We collect information that you voluntarily provide to us when you:

Create an Account: Name, email address, phone number, password
Place an Order: Billing and shipping addresses, contact information
Contact Us: Name, email, phone number, and any information you include in your message
Subscribe to Newsletter: Email address and communication preferences

Important: We do NOT store your payment card information. All payment processing is handled securely by Stripe, our payment processor. We only receive confirmation that your payment was successful.

Information Automatically Collected

When you visit our website, we automatically collect certain information about your device and browsing activity:

IP address and general location information
Browser type and version
Device type and operating system
Pages visited and time spent on our website
Referring website or source

2. How We Use Your Information

We use the information we collect for the following purposes:

Order Processing & Fulfillment

Process and fulfill your orders
Send order confirmations and shipping updates
Handle returns, exchanges, and customer service requests
Maintain accurate records of your purchase history

Communication

Respond to your inquiries and support requests
Send important updates about your orders or account
Provide customer service and support
Send newsletters and promotional emails (only if you've opted in)

Website Improvement

Analyze website usage and improve user experience
Understand customer preferences and shopping patterns
Improve our products and services
Detect and prevent fraud or security issues

3. How We Store Your Information

We take the security of your personal information seriously:

Secure Servers: Your information is stored on secure servers with industry-standard encryption
Password Protection: All passwords are encrypted using secure hashing algorithms
Limited Access: Only authorized personnel have access to customer data
Regular Security Updates: We regularly update our security measures and software

What We Store

We securely store the following types of information:

User account information (name, email, phone, encrypted password)
Shipping and billing addresses
Order history and details
Shopping cart items
Email preferences (newsletter, order updates, promotions)
Contact form submissions

What We Do NOT Store

Payment Card Information: Credit/debit card numbers, CVV codes, or card details are never stored on our servers
Social Security Numbers: We do not collect or store SSNs
Sensitive Health Information: We do not collect medical records or detailed health data

4. Payment Processing

All payment transactions are processed securely through Stripe, a PCI-compliant payment processor. When you make a purchase:

Your payment information is sent directly to Stripe's secure servers
We never see or store your full credit card number
We only receive confirmation that the payment was successful
Stripe handles all payment data in accordance with PCI-DSS requirements

For more information about Stripe's security practices, visit: https://stripe.com/privacy

5. Shopping Cart and Session Management

We use secure server-side storage to maintain your shopping cart and provide a seamless shopping experience:

How Your Cart Works

Server-Side Storage: Cart items are stored securely on our servers, not in browser cookies
Session Tracking: We use secure session management to track your cart across page visits
User Accounts: If you're logged in, your cart is linked to your account and accessible across devices
Automatic Cleanup: Inactive guest carts are automatically cleared after 30 days

What We Store

Product selections and quantities
Selected product options (sizes, formats)
Session identifiers for guest shoppers

Minimal Browser Storage

We use minimal browser storage only for essential functionality such as:

Authentication when you log in
Session management for maintaining your cart
Website functionality and user interface preferences

Privacy Benefit: This approach keeps your shopping data secure on our servers rather than exposed in your browser.

6. Your Privacy Rights

You have the following rights regarding your personal information:

Access Your Data

You can request a copy of the personal information we have about you by logging into your account or contacting us.

Update Your Information

You can update your account information, shipping addresses, and preferences at any time through your account dashboard.

Delete Your Account

You can request deletion of your account and associated data. Note that we may retain certain information for legal or legitimate business purposes (such as order records for tax purposes).

Opt-Out of Marketing Communications

You can unsubscribe from marketing emails at any time by:

Clicking the "unsubscribe" link in any marketing email
Updating your email preferences in your account settings
Contacting us directly at info@uptownhealingnyc.com

7. Data Retention

We retain your personal information for as long as necessary to:

Provide you with our services
Maintain your account (if you have one)
Comply with legal obligations (e.g., tax records)
Resolve disputes and enforce our agreements

If you delete your account, we will remove your personal information within 30 days, except for data we are required to retain for legal purposes.

8. Children's Privacy

Our website and services are not intended for children under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately, and we will take steps to remove that information from our systems.

9. Third-Party Links

Our website may contain links to third-party websites, including:

Social media platforms (Facebook, Instagram)
Payment processors (Stripe)
Educational or informational resources

We are not responsible for the privacy practices of these third-party websites. We encourage you to read their privacy policies before providing any personal information.

10. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

Right to Know

You have the right to request information about the personal data we have collected about you in the past 12 months, including:

Categories of personal information collected
Sources from which we collected the information
Our business purpose for collecting the information
Categories of third parties with whom we share the information

Right to Delete

You have the right to request deletion of your personal information, subject to certain exceptions.

Right to Opt-Out

We do not sell your personal information. If our practices change, we will update this policy and provide you with the ability to opt-out.

Non-Discrimination

We will not discriminate against you for exercising any of your CCPA rights.

To exercise these rights, please contact us at privacy@uptownhealingnyc.com or (212) 555-HERB (4372).

11. International Data Transfers

Your information may be transferred to and processed in the United States, where our servers are located. The United States may have data protection laws that are different from those in your country.

By using our website and services, you consent to the transfer of your information to the United States. We take appropriate safeguards to ensure your data is protected in accordance with this Privacy Policy.

12. Data Security Measures

We implement various security measures to protect your personal information:

Technical Safeguards

SSL/TLS encryption for data transmission
Encrypted data storage
Secure password hashing
Regular security audits and updates
Firewall protection
Session timeout mechanisms

Administrative Safeguards

Limited employee access to customer data
Confidentiality agreements with employees and contractors
Regular privacy and security training
Incident response procedures

Physical Safeguards

Secure hosting environment
Data backup and disaster recovery procedures
Access controls to physical infrastructure

Note: While we take reasonable measures to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.

13. Data Breach Notification

In the event of a data breach that affects your personal information, we will:

Notify you within 72 hours of discovering the breach
Inform you of what information was compromised
Explain the steps we are taking to address the breach
Provide guidance on how you can protect yourself
Comply with all applicable data breach notification laws

14. Email Marketing and Communications

Types of Emails We Send

Transactional Emails: Order confirmations, shipping notifications, account updates (these cannot be opted out of as they are essential to our service)
Marketing Emails: Newsletters, promotional offers, new product announcements (you can opt-out at any time)
Customer Service Emails: Responses to your inquiries and support requests

Managing Your Preferences

You can manage your email preferences by:

Logging into your account and updating your preferences
Clicking "unsubscribe" at the bottom of any marketing email
Contacting us directly at info@uptownhealingnyc.com

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we make changes:

We will post the updated policy on this page
We will update the "Last Updated" date at the top of this policy
For material changes, we may notify you via email or a prominent notice on our website
Your continued use of our website after changes are posted constitutes your acceptance of the updated policy

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

16. Contact Us About Privacy

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Privacy & Data Protection

Email: privacy@uptownhealingnyc.com
Phone: (212) 555-HERB (4372)
Mail:
Uptown Healing NYC LLC
Attention: Privacy Officer
123 Healing Street
New York, NY 10001

Response Time: We aim to respond to all privacy inquiries within 30 days.

17. Your Consent

By using our website, creating an account, or making a purchase, you consent to the collection and use of your information as described in this Privacy Policy.

If you do not agree with this Privacy Policy, please do not use our website or services.

18. Additional Resources

For more information about your privacy rights and data protection:

Federal Trade Commission (FTC): www.ftc.gov/privacy
California Attorney General (CCPA): oag.ca.gov/privacy/ccpa

Summary

We collect only the information necessary to provide our services, we keep your data private and secure, we use industry-standard security measures, and we give you control over your information. Your privacy matters to us.