Privacy & Cookies Statement

Last updated: September 24, 2025

‍

This Privacy Policy explains how Berkana (“Berkana,” “we,” “us,” or “our”) collects, uses, discloses, and safeguards your personal information when you visit berkana-store.webflow.io or any related pages, place an order, or otherwise interact with us (collectively, the “Services”).

‍

By using the Services, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use the Services.

‍

1) Who we are (Controller)

‍

Berkana is the controller of your personal information.
Contact email: support@berkanahair.com

‍

For EU/UK users, Berkana is the “data controller” for GDPR/UK GDPR purposes.

‍

2) Information we collect

‍

We collect the following categories of information:

‍

a) Account & Identity Data
Name, email address, password (hashed), and any profile details you choose to provide.b) Order & Transaction Data
Shipping/billing address, contact phone, email, items ordered, order notes, delivery preferences, currency, totals, discounts, refund/return history.

‍

c) Payment Data (Processed by our payment partners)
Payment card details are processed by our payment providers (e.g., Stripe and/or PayPal). We do not receive or store full card numbers. We may receive limited data such as the last 4 digits, card brand, transaction ID, and status.

‍

d) Communications
Emails, messages, and attachments you send to our Ritual Care Team (including return/exchange requests), and your marketing preferences.

‍

e) Device & Usage Data
IP address, device identifiers, browser type, operating system, pages viewed, referring/exit pages, timestamps, language, approximate location (derived from IP), and interactions (clicks, scrolls). Collected via cookies, pixels, and similar technologies.

‍

f) Cookies & Similar Technologies
Small files placed on your device to operate the store, remember your cart, and measure performance. See Section 9 for details.

‍

g) UGC (User-Generated Content)
Content you submit (e.g., product reviews), if enabled.

‍

h) Social/Third-Party Data
If you arrive via a social link or ad platform, we may receive limited campaign/attribution data.

‍

3) How we use your information

‍

We use your information to:

‍

• Provide the Services: create/manage your account, process and deliver orders, provide customer care, and handle returns/exchanges.
  
  
• Operate the site: secure hosting, load balancing, debugging, and performance optimization.
  
  
• Payments & fraud prevention: process payments through our partners, detect fraud/abuse.
  
  
• Communications: send transactional emails (order confirmations, shipping updates) and respond to your inquiries.
  
  
• Marketing (optional): send newsletters/promotions if you opt in; you can unsubscribe at any time.
  
  
• Analytics & improvements: understand usage, improve products and UX.
  
  
• Legal & compliance: tax, accounting, regulatory obligations, and to assert or defend legal claims.
  
  

Legal bases (EEA/UK): performance of a contract, legitimate interests (e.g., site security, analytics), consent (for marketing/cookies where required), and legal obligations.

‍

4) How we share information

‍

We disclose information to trusted service providers who help us run the Services, subject to appropriate contractual safeguards:

‍

• Hosting & platform: Webflow, Inc. (site hosting/CMS/ecommerce features).
  
  
• Payments: Stripe, Inc. and/or PayPal (payment processing, fraud prevention).
  
  
• Fulfillment & shipping: Carriers and logistics partners (to deliver your order).
  
  
• Email & communications: Email service providers (to send transactional/marketing emails).
  
  
• Analytics (if enabled): e.g., Google Analytics (see Cookies).
  
  
• Professional services: Accountants, auditors, legal counsel.
  
  
• Law enforcement & compliance: When required by law or to protect rights, safety, and property.
  
  
• Business transfers: In connection with a merger, acquisition, or sale of assets.
  
  

We do not sell your personal information for money. For California users, certain sharing for advertising/analytics may be considered “sharing” under CPRA; see Section 12.

‍

5) International data transfers

‍

Our providers may process data in countries outside your own (including the United States). Where required, we rely on appropriate safeguards such as Standard Contractual Clauses for EEA/UK transfers or other lawful mechanisms.

‍

6) Data retention

‍

We keep personal information only as long as necessary for the purposes described:

‍

• Orders & tax records: generally 6–10 years (depending on local laws).
  
  
• Account data: as long as your account is active.
  
  
• Marketing data: until you unsubscribe or your consent is withdrawn.
  
  
• Support tickets/returns: for as long as necessary to resolve and maintain records.
  When no longer needed, we delete or anonymize information.
  
  

7) Security

‍

We implement technical and organizational measures appropriate to the risk (encryption in transit, access controls, least-privilege practices). No method of transmission or storage is 100% secure. If you believe your account has been compromised, contact us immediately.

‍

8) Your choices

‍

• Account: You can view/update certain information in your account (if enabled).
  
  
• Marketing emails: Unsubscribe using the link in the email or contact us.
  
  
• Cookies: Manage preferences via our cookie banner (if enabled) or your browser settings.
  
  
• Do Not Track: We do not respond to DNT signals due to lack of a uniform standard.
  
  

9) Cookies & similar technologies

‍

We use:

‍

• Strictly Necessary Cookies – required for the site to function (e.g., cart, checkout, security).
  
  
• Performance/Analytics Cookies – to understand site usage (e.g., Google Analytics).
  
  
• Functional Cookies – remember preferences (e.g., language, currency).
  
  
• Advertising/Attribution Cookies (if enabled) – to measure campaigns.
  
  

You can manage cookies through the site’s cookie controls (if provided) or by adjusting browser settings. Blocking certain cookies may impact functionality.

‍

10) Children’s privacy

‍

The Services are not directed to children under 13 (or under 16 in the EEA/UK). We do not knowingly collect personal information from children. If you think a child has provided us data, contact us to request deletion.

‍

11) Your rights (EEA/UK)

‍

Depending on your location, you may have the right to access, rectify, erase, restrict or object to processing, and portability of your data, and the right to withdraw consent where processing is based on consent. You also have the right to lodge a complaint with your local data protection authority.
To exercise rights, contact: support@berkanahair.com

‍

12) Your rights (California & certain U.S. states)

‍

If you are a California resident, under the CCPA/CPRA you may have rights to:

‍

• Know/Access categories and specific pieces of personal information collected;
  
  
• Delete personal information (subject to exceptions);
  
  
• Correct inaccurate information;
  
  
• Opt-out of “selling” or “sharing” personal information for cross-context behavioral advertising;
  
  
• Non-discrimination for exercising your rights.
  
  

We do not sell personal information for money. If we engage in “sharing” for advertising/analytics, you can opt out via our cookie banner or by contacting us.
Requests: support@berkanahair.com. We will verify your request consistent with applicable law. You may use an authorized agent pursuant to statutory requirements.

‍

13) Third-party links

‍

Our site may contain links to third-party websites or services. Their privacy practices are governed by their own policies; we are not responsible for them.

‍

14) Returns & Exchanges (how your data is used)

‍

As noted in our Return & Exchange Policy:

‍

• Unopened, unused items may be returned within 14 days of delivery for a full refund (minus shipping).
  
  
• Damaged/defective orders: contact us within 7 days for a replacement.
  
  
• Refunds are issued to the original form of payment after inspection.
  
  
• To initiate a return, email support@berkanahair.com with your order number and details.
  
  
• Due to limited runs, exchanges may result in store credit; if in stock, we’ll help exchange for the same product.
  
  

When you initiate a return or exchange, we use your Order & Transaction Data and relevant communications solely to verify eligibility, process the request, and comply with accounting/tax rules.

‍

15) Changes to this policy

‍

We may update this Privacy Policy from time to time. The “Last updated” date shows when it was most recently revised. Material changes will be posted on this page and, where required, notified to you (e.g., by email).

‍

16) Contact us

‍

For questions about this Privacy Policy or to exercise your rights, contact:Berkana — Ritual Care Team
Email: support@berkanahair.com