⚠ Draft — Replace with final legal copy before launch

Legal

Privacy Policy

Last Updated: 2026-05-25

1. Who We Are

Horoof Society (“we,” “us,” or “our”) operates the Horoof Society storefront and is the data controller responsible for the personal information you share with us.

2. Information We Collect

When you browse, create an account, or place an order we may collect:

  • Identity & contact data — name, email, phone, shipping address.
  • Order data — products, sizes, payment confirmation (not card numbers).
  • Technical data — IP address, browser type, device, referring URL.
  • Marketing preferences — newsletter opt-in status.

3. How We Use It

  • To process orders and deliver products to you.
  • To manage your account, save addresses, and show order history.
  • To send transactional emails (order confirmations, shipping updates).
  • To send marketing emails only if you’ve opted in — you can unsubscribe at any time.
  • To improve the Service through anonymised analytics.
  • To comply with legal obligations and prevent fraud.

4. Who We Share It With

We share data only with processors necessary to run the Service:

  • Shopify — order processing, checkout, customer accounts.
  • Payment processors — handle card payments under PCI standards.
  • Shipping carriers — to fulfill deliveries.
  • Email service providers — for transactional and (with consent) marketing email.

We never sell your data.

5. Cookies

We use cookies that are strictly necessary (cart, session) and, with your consent, optional analytics cookies. You can clear cookies through your browser; doing so will sign you out of your account.

6. Your Rights

Depending on your jurisdiction, you may have the right to access, correct, delete, or port your personal data, and to withdraw marketing consent. Email info@horoofsociety.comto exercise any of these rights — we’ll respond within 30 days.

7. Data Retention

Order records are kept for the period required by tax and accounting law (Jordan: typically 7 years). Account data is kept until you ask us to delete it, after which we retain only what we’re legally required to keep.

8. Security

Customer authentication tokens are stored in httpOnly cookies inaccessible to browser scripts. Payment data flows directly to PCI-compliant processors. No system is perfectly secure — we work to keep yours as safe as practical.

9. Changes

We’ll post changes here and update the “Last Updated” date above. Material changes affecting how we use your data will be emailed where we have your address.

10. Contact

Email info@horoofsociety.com for any privacy questions.