SneakPeakes is operated as an independent business in India, focused on reselling premium sneakers, streetwear, and accessories through our WooCommerce-powered online store. Our registered business address and contact details are provided in Section 12.

This policy applies to all visitors, customers, and users who interact with our website, make purchases, contact our support team, or sign up for our mailing list.

We collect personal data only to the extent necessary to operate our store, process your orders, and improve your experience. Here’s a complete breakdown:

We use your personal data for the following lawful purposes:

• Order fulfilment: Processing, confirming, packing, and dispatching your orders; managing returns and refunds.
• Account management: Creating and maintaining your customer account, enabling order history access.
• Customer support: Responding to queries, resolving disputes, processing complaints.
• Payment processing: Facilitating secure payment transactions through our payment gateway partners.
• Shipping & logistics: Sharing necessary details with courier/logistics partners to deliver your order.
• Legal compliance: Meeting obligations under applicable Indian law, including tax records, consumer protection requirements.
• Fraud prevention: Detecting and preventing fraudulent orders, suspicious activity, or chargebacks.
• Service improvement: Analysing aggregate, anonymised site usage data to improve product listings, UI/UX, and overall performance.
• Marketing communications: Sending promotional emails or order-related notifications — only where you have opted in or where it is a legitimate interest notification about your order.

We do not use your personal data for automated decision-making or profiling that has significant legal or similar effects on you.

Our website uses cookies — small text files placed on your device — to enable core functionality and improve your experience. Here is a breakdown of the cookies we use:

You can control or disable non-essential cookies through your browser settings. Disabling essential cookies may prevent you from completing purchases. We do not use cookies to track you across third-party sites beyond standard analytics.

We do not sell, rent, or trade your personal data. We share it only in the following circumstances and with the minimum data necessary:

• Logistics & Courier Partners: Name, address, phone number, and order details shared with shipping partners (e.g., Delhivery, Shiprocket, BlueDart) solely for delivery purposes.
• Payment Processors: Transaction data is processed by our payment gateway (e.g., Razorpay, PayU, CCAvenue). They handle your payment data under their own privacy policies and are PCI-DSS compliant.
• Cloud & Hosting Infrastructure: Our website and its data are hosted on servers (WordPress hosting provider). Data may reside on servers within or outside India, governed by adequate security agreements.
• Email Service Providers: If you opt into marketing, your email address is managed via our email platform (e.g., Mailchimp, Klaviyo).
• Legal & Regulatory Authorities: Where required by law, court order, or government directive, we will disclose personal data to the relevant authority.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, customer data may be transferred, subject to the same privacy protections.

All payments on SneakPeakes are processed through a third-party payment gateway. We never store your full card number, CVV, banking passwords, or UPI PIN on our servers. Payment data is handled end-to-end by the payment processor using industry-standard encryption (TLS/SSL).

Our website uses HTTPS encryption across all pages. Access to your personal data is restricted to authorised personnel only, on a need-to-know basis. We maintain reasonable administrative, technical, and physical safeguards in line with the IT (Reasonable Security Practices) Rules, 2011.

While we implement best-practice security, no online transmission is 100% secure. In the event of a data breach that poses significant risk, we will notify affected users as required by applicable law.

We retain your personal data only as long as necessary for the purposes described in this policy or as required by law:

• Order & transaction records: Retained for a minimum of 7 years in line with Indian GST and tax regulations.
• Account data: Retained while your account is active; deleted within 30 days of account closure upon request.
• Marketing data: Retained until you unsubscribe or withdraw consent.
• Server logs & analytics: Retained for up to 12 months, then anonymised or deleted.
• Support communications: Retained for 2 years from the date of last contact.

When data is no longer required, we securely delete or anonymise it. You may request earlier deletion of your account data (see Your Rights, below), subject to legal retention obligations.

Under the Digital Personal Data Protection Act, 2023 (DPDPA) and applicable Indian law, you have the following rights as a Data Principal:

To exercise any of the above rights, please contact us using the details in Section 12. We will respond within 30 days of receiving a verifiable request. We may need to verify your identity before acting on a request.

Our services are not directed at individuals under the age of 18 years. We do not knowingly collect personal data from minors. If you are under 18, please do not use our website or submit any personal information without verifiable parental consent.

Under the DPDPA 2023, processing of personal data of children requires verifiable parental or guardian consent. If we become aware that we have inadvertently collected personal data from a child under 18 without proper consent, we will delete such data promptly.

If you believe we may have collected information from or about a minor, please contact our Grievance Officer immediately (Section 12).

Our website may contain links to third-party websites, social media platforms (Instagram, YouTube, etc.), brand pages, or payment portals. These sites operate independently and have their own privacy policies. We are not responsible for the privacy practices or content of any third-party site.

We encourage you to review the privacy policy of any external site you visit through a link on SneakPeakes. Your interaction with third-party sites is at your own discretion and risk.

We may update this Privacy Policy from time to time to reflect changes in our practices, applicable law, or business operations. When we make material changes, we will:

• Update the “Last Updated” date at the top of this page
• Display a notice on our website homepage for at least 14 days
• Send an email notification to registered customers for significant changes

Your continued use of SneakPeakes after a policy update constitutes your acceptance of the revised policy. We recommend reviewing this page periodically.

For any questions, concerns, data requests, or grievances regarding this Privacy Policy or your personal data, please reach out to our Grievance Officer as designated under the IT Act and DPDPA:

You also have the right to lodge a complaint with the Data Protection Board of India once it is constituted under the Digital Personal Data Protection Act, 2023, if you believe your privacy rights have been violated and have not been satisfactorily addressed by us.