LAYNA
Home/Privacy Policy

Privacy Policy

Information Sharing

We do not sell your personal information. We may share your information with the following categories of third parties solely for the purposes of operating our business and serving you:

  • Service Providers: We share data with trusted partners who assist us with order fulfillment, payment processing, shipping, email delivery, customer support, and analytics. These providers are contractually bound to use your information only to provide services on our behalf.
  • Legal Compliance: We may disclose your information if required by law, court order, or government regulation, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
  • Business Transfers: In the event of a merger, acquisition, financing, or sale of assets, your personal information may be transferred as part of that transaction. We will notify you via email before such a transfer occurs.

Cookies & Tracking Technologies

We use cookies and similar tracking technologies to operate laynaface.com and to collect information about how you interact with our site.

  • Essential Cookies: Required for the website to function — enabling the shopping cart, account login, checkout process, and language preferences. These cannot be disabled.
  • Analytics Cookies: We use Google Analytics to collect anonymous data about how visitors browse and interact with our site — pages visited, time spent, and click paths. This data helps us improve the user experience. Analytics data is aggregated and does not identify you personally.
  • Marketing Cookies: We use Facebook Pixel and Klaviyo to deliver personalized advertisements and to re-engage visitors who have shown interest in our products. These cookies track browsing behavior across sessions. You can opt out of marketing cookies via our Cookie Consent Banner or your browser settings.

Data Security

We take the security of your personal information seriously and implement appropriate technical and organizational measures to protect it, including:

  • Encryption: All data transmitted between your browser and our site is protected by TLS (transport layer security) encryption. Sensitive payment information is encrypted at rest using AES-256.
  • Access Controls: Access to personal data is restricted to authorized employees and contractors who need it to perform their job functions. All access is logged and reviewed regularly.
  • PCI DSS Compliance: Payment card data is handled in accordance with the Payment Card Industry Data Security Standard (PCI DSS). We do not store full credit card numbers — all payment processing is performed by PCI-certified payment processors.
  • Regular Audits: Our security infrastructure is reviewed and tested regularly to guard against emerging threats.

Additional Rights — GDPR (European Economic Area)

If you are located in the European Economic Area (EEA), you have the following additional rights under the General Data Protection Regulation (GDPR):

  • Right of Access: Request a copy of all personal data we hold about you in a portable format.
  • Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data, subject to certain legal retention obligations.
  • Right to Data Portability: Receive your data in a structured, commonly used, and machine-readable format.
  • Right to Restrict Processing: Request that we limit the way we use your data if you believe it is inaccurate or being used unlawfully.
  • Right to Object: Object to our use of your personal data for direct marketing purposes at any time.

To exercise any GDPR rights, contact us at privacy@laynaface.com. We will respond within 30 days.

Additional Rights — CCPA (California Residents)

Under the California Consumer Privacy Act (CCPA), California residents have the right to:

  • Know what personal information we collect and how it is used and shared.
  • Delete personal information we have collected (subject to certain exceptions).
  • Opt-Out of the sale of personal information. LAYNA does not sell your personal information. If that changes, we will update this policy and provide a clear opt-out mechanism.
  • Non-Discrimination — we will not discriminate against you for exercising any of your CCPA rights.

To submit a CCPA request, email privacy@laynaface.com. We will verify your identity before fulfilling the request.

Children's Privacy

laynaface.com is not directed to children under the age of 16. We do not knowingly collect personal information from children under 16. If we discover that we have collected information from a child under 16 without parental consent, we will delete that information promptly. Parents or guardians who believe their child has provided us with personal data can contact us at privacy@laynaface.com.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will post the updated policy on this page with a revised "Last updated" date and, where appropriate, notify you by email or through a notice on our website. We encourage you to review this policy periodically.