Privacy Policy

1. Data we collect

Account details (name, email, phone) when you register.

Order/quote data (line items, address, contact) when you transact.

Anonymous analytics (page views, device, IP-derived country) to improve the site.

2. How we use it

Fulfill orders, send invoices, ship goods.

Respond to RFQs and support requests.

Send transactional emails (order status, verification, password reset).

Email marketing — only with explicit opt-in.

3. Storage & security

Passwords are bcrypt-hashed (cost 12). We never store raw card data — payments go through Stripe/PayTabs (PCI DSS).

JWT cookies are HttpOnly, Secure, SameSite=Strict.

All traffic is TLS 1.3 in transit.

4. Cookies

Strictly necessary cookies for auth and cart. Optional analytics cookies require consent (we will surface a banner before any non-essential cookie is set in regulated regions).

5. Sharing with third parties

Payment processors (Stripe, PayTabs), shipping carriers, and the IRS/tax authorities where legally required. Never sold or shared for marketing.

6. Your rights

Access, correction, deletion and portability of your data — write to privacy@wattsstore.com. EU residents have GDPR rights; UAE residents have rights under PDPL.

7. Retention

Order records are kept for 7 years (legal/tax requirement). Account data is deleted on request unless tied to open orders or warranty claims.

8. Contact

Questions? Email privacy@wattsstore.com or reach our Data Protection Officer at dpo@wattsstore.com.