This Privacy & Data Sovereignty Policy defines how 公司名称 (hereinafter referred to as “the Company”, “we”, “our”, or “us”), functioning under the registered trading brand name Knottywall, collects, processes, sequences, stores, and safeguards personal data harvested through our official online digital platform, www.knottywall.com.
This corporate tracking ecosystem is engineered to achieve strict, concurrent alignment with the Canadian Personal Information Protection and Electronic Documents Act (PIPEDA), the UK Data Protection Act, and the European General Data Protection Regulation (EU GDPR). By utilizing our storefront, completing checkouts, or interacting with our consumer communication interfaces, users acknowledge the structured data-handling operational standards defined within this policy.
2. Definitive Legal Data Controller
For the purpose of global data protection enforcement and regional supervisory privacy audits, the definitive corporate entity determining the operational purposes, processing methods, and cryptographic protection of personal information gathered via our e-commerce platform is:
Registered Corporate Entity:公司名称
Commercial Trading Brand: Knottywall
Official E-Commerce URL: www.knottywall.com
Dedicated Data Compliance Email: decorations@knottywall.com
Registered Business Address:公司地址
3. Comprehensive Taxonomy of Information Collected
To facilitate secure Direct-to-Consumer retail services and block financial fraud vectors, the Company compiles information under three precise technical categories:
A. Information Expressly Provided by the Consumer
Personal Identifiers: Full legal name, billing credentials, validated physical delivery coordinates, contact telephone indicators, and verified email communications;
Operational Enquiries: Comprehensive historical logs of customer service tickets, product dimensions queries, and contextual pre-shipping or post-purchase communications.
B. Secured Transaction & Merchant Gateway Telemetry
Processing Metadata: Unique transaction tracking IDs, order reference variables, authorized payment confirmation tokens, and historical fulfillment manifests;
Anti-Fraud Identifiers: Advanced device telemetry records, hardware fingerprints, network location coordinates, and automated behavioral biomarkers provided exclusively through our integrated payment processor to prevent credit card testing and unauthorized chargeback loops.
C. Automated Website Analytics & Local Tracking Parameters
Localized Internet Protocol (IP) addresses, operating system versions, browser agent details, navigational referral paths, precise timestamps of site interactions, and active cookie banner allocation consent metrics.
4. Lawful Bases & Core Objectives of Data Processing
The Company sequences your personal information strictly under valid lawful justifications permitted by cross-border data protection acts (including Contractual Necessity, Compliance with Legal Obligations, and Legitimate Business Interests). Processing activities are confined to the following administrative nodes:
Executing checkout transactions, physical stock allocation, and manual quality control mapping;
Coordinating secure final-mile logistical transit with premium priority international carrier networks;
All electronic commerce credit card settlement procedures completed on our domain are executed via specialized, secure external computing pathways managed under the standalone custody of Stripe.
Stripe gathers, monitors, and evaluates credit card token values, security codes, billing matches, and real-time device profiling variables necessary to clear financial transactions.
Knottywall does not ingest, view, or retain raw credit card numbers or raw CVV markers on its internal local web servers.
Data interaction occurring within the checkout ecosystem is simultaneously subject to the compliance standards, merchant rules, and absolute corporate privacy documentation hosted independently by Stripe.
6. Local Storage & Cookie Banner Governance
Our storefront deploys optimized cookies, tracking pixels, and local browser storage frameworks to ensure shopping cart stability and verify user preferences.
Non-essential analytical or custom-tailored marketing modules are completely blocked by default in accordance with global data protection frameworks. They are only activated once a consumer voluntarily engages with our storefront Cookie Banner and executes an affirmative “Accept All” or individual authorization confirmation. Complete functional controls and deletion procedures are disclosed inside our comprehensive Cookie Policy.
7. Institutional Data Retention Frameworks
In compliance with international accounting standards, anti-fraud auditing laws, and financial regulatory parameters, personal information is preserved only for the duration required to satisfy its operational and statutory purpose. Our retention lifecycles are defined in the schedule below:
Core Data Classification
Statutory Operational Purpose
Absolute Retention Lifecycle
Customer Orders & Financial Records
Institutional tax filing, corporate accounting audits, and chargeback defense tracking
Up to 7 years from transaction execution
Customer Success Communications
Quality control tracking, historical dispute resolution, and communication continuity
Up to 3 years from ticket closure
Website Operational Logs
Security firewall mapping, system error diagnosis, and bot protection reviews
Up to 24 months from collection
Cookie Preference Configurations
Local user consent memory alignment
Linked directly to localized browser cache parameters
Upon the expiration of these verified timelines, data logs are permanently purged from active systems, subjected to irreversible anonymisation routines, or archived inside encrypted offline arrays.
8. Explicit Disclosures & Safe Third-Party Data Sharing
Knottywall does not engage in the commercial sale, leasing, or speculative renting of customer databases to third-party marketing brokers. Data sharing is restricted to legitimate administrative operations under secure data processing agreements with:
Logistical Partners: Authorized international fulfillment hubs and certified priority postal couriers;
Statutory Entities: Law enforcement bodies or regulatory authorities where mandated by valid legal court orders or binding tax statutes.
9. Cross-Border Data Flows & International Protection
Because the Company operates under a global Direct-to-Consumer distribution layout, consumer data logs may cross international boundaries for storage or processing within systems operated by our technical infrastructure providers.
To maintain total data sovereignty and avoid unauthorized international leaks, the Company implements Standard Contractual Clauses (SCCs) and adequacy bridging frameworks. This ensures that your private personal markers are treated with an uncompromised level of security and encryption regardless of geographical hardware positioning.
10. Universal Statutory Data Subject Rights
Subject to regional criteria defined by your physical jurisdiction (such as the UK, Europe, or Canada), individuals maintain absolute statutory rights regarding their archived personal records. You may exercise these privileges at any time:
The Right of Access & Portability: Request an official, machine-readable transcript of all personal parameters held in our systems;
The Right of Rectification: Demand the immediate correction of inaccurate or incomplete billing, contact, or delivery files;
The Right of Erasure (“Right to be Forgotten”): Request the destruction of your personal data file, provided the information is no longer legally required for active tax processing, chargeback dispute defense, or statutory recordkeeping;
The Right to Object or Restrict Processing: Unilaterally halt optional automated processing loops or revoke historic consent allocations.
Verification Check Requirement: To maintain maximum transaction security and prevent identity theft, fraudulent profiling, or unauthorized data modification, the Company will execute an identity verification handshake prior to processing or releasing any Data Subject Access Request (DSAR).
The Company deploys modern technical, physical, and administrative measures including Hypertext Transfer Protocol Secure (HTTPS), full Transport Layer Security (TLS) data encryption, and access-controlled backend databases to shield information from loss, interception, or alteration.
However, since no data transit channel across the global web can eliminate external hazards completely, users remain explicitly responsible for preserving the password confidentiality and browser environment safety of their localized client devices.
12. Document Amendments & Scheduled Updates
The Company reserves the right to dynamically amend or rewrite portions of this Privacy & Data Sovereignty Policy to reflect technical storefront updates, legislative evolutions, or updated financial merchant gateway compliance rules. Any revisions will be instantly published through the immediate adjustment of the “Last Updated” marker at the head of this document.
For any official inquiries, international financial underwriting evaluations, or to exercise your explicit statutory data subject rights, please direct all formal correspondence to our localized team:
Trading Brand Profile: Knottywall
Operating E-Commerce URL: www.knottywall.com
Dedicated Data Compliance Email: decorations@knottywall.com
Official Corporate Entity Label:公司名称
We use cookies to enable our website to function properly, to personalize content and ads, to provide social media features and to analyze our traffic. We also share information about your use of our site with our social media, advertising and analytics partners.
