Your Cart
0 items
BEe Unique Baby Shop is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or make purchases from us.
0 items
Your privacy is important to us. Learn how we collect, use, and protect your personal information.
Last updated: March 2024
BEe Unique Baby Shop is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or make purchases from us.
We collect Personal Information (name, email, phone, addresses, payment info), Account Information (username, password, order history), Usage Data (IP address, browser type, pages visited), Device Information, and Location Data.
We collect information through direct interactions (account creation, orders, contact), automated technologies (cookies, web beacons, analytics), third-party services (payment processors, shipping providers), and social media platforms.
We use your information to process orders, manage accounts, send transactional and marketing emails, improve our services, prevent fraud, and comply with legal obligations.
We use Essential Cookies (required for functionality), Analytics Cookies (visitor interaction), Marketing Cookies (advertisements), and Preference Cookies (settings). You can manage these through your browser settings.
We may share information with service providers, business partners, and when required by law. We do not sell your personal information to third parties for marketing purposes.
We implement SSL encryption, PCI-compliant payment processing, regular security assessments, access controls, and employee training. No internet transmission is 100% secure.
Account info: until deleted. Order info: 7 years for tax compliance. Marketing preferences: until unsubscribed. Inactive accounts: may be deleted after 2 years.
You have rights to access, correct, delete, and port your data. You may object to processing and withdraw consent for marketing. Contact us to exercise these rights.
Our website is not intended for children under 13. We do not knowingly collect personal information from children under 13. Please contact us if you believe your child has provided us with personal information.
Your information may be transferred to countries with different data protection laws. We ensure appropriate safeguards are in place for such transfers.
Our website may contain links to third-party sites. We are not responsible for their privacy practices or content. Please review their privacy policies.
We may update this policy periodically. Changes are posted with an updated date. Continued use after changes constitutes acceptance of the updated policy.
Email: tlorraine0@gmail.com | Phone/WhatsApp: +254 756 630 248 | Business Hours: Monday - Saturday, 8 AM - 6 PM EAT
Select your country to see the specific data protection rights that apply to you
Data Protection Act, 2019
Request confirmation and access your data within 30 days.
Request correction of inaccurate or incomplete information.
Request deletion when data is no longer necessary.
Object to processing for direct marketing at any time.
Lodge complaints with the ODPC.
Must be notified within 72 hours of a data breach.
Authority: Office of the Data Protection Commissioner — odpc.go.ke
See exactly how long we keep each type of your data
Account Information
Profile, login, preferences
Until deleted
Order History
Purchases, invoices, receipts
Tax compliance
Marketing Emails
Consent, preferences, campaigns
Or 2 yrs inactive
Cookies & Tracking
Analytics, preferences
Max duration
Support Chats
WhatsApp, email, tickets
Customer service
Payment Records
M-Pesa, card references
Legal requirement
All deletion requests processed within 30 days. Anonymized data may be retained for statistics.
View a timeline of when you gave consent and what for
Enter your email to view your consent history
Consent history found
Track every change to this privacy policy
Added Regional Privacy Rights (East Africa + POPIA)
Added Data Retention Calculator
Added Consent Log Viewer
Added Policy Version History
Added Privacy Quick Actions
Added Breach Transparency Dashboard
Added Sticky TOC with reading progress
Added Shareable Section Links
Added Search Within Policy
Added Collapsible Sections
Added Export/Print optimized layout
Added Cookie Preference Manager
Added Data Request Forms
Added Third-Party Services Table
Added Security Measures Showcase
Added Compliance Badges
Added Data Flow Diagram
Added Privacy FAQ Accordion
Added Contact DPO Banner
Initial privacy policy published
Request, download, or delete your personal data
Get a copy of all personal data we hold about you in JSON format.
Permanently delete your account and all associated data.
Services we use that may process your data
How we protect your data
All data transmitted is encrypted with 256-bit SSL.
Enterprise-grade cloud with 99.9% uptime.
Users can only access their own data.
bcrypt with salt — no plain text stored.
Only collect what's necessary for your order.
Quarterly security audits and testing.
Standards we adhere to
GDPR
EU Data Protection
CCPA
California Privacy
PCI DSS
Payment Security
ISO 27001
Info Security
A simple view of how we handle your information
You
Browse & Shop
Our Servers
Encrypted Storage
Delivery
Order Fulfilled
Your data never leaves our secure infrastructure except for payment processing and delivery.
May 2026
Added cookie preferences, data request forms, and third-party table.
January 2026
Updated children's privacy and data retention.
August 2025
Initial privacy policy published.
How we rate on privacy best practices
Common questions about your privacy
No. We never sell, rent, or trade your personal data to third parties. Your information is used solely to process your orders, provide customer support, and improve our services.
We retain your data for as long as necessary to fulfill the purposes outlined in this policy. Order data is kept for 7 years for tax and legal compliance. Inactive accounts are anonymized after 2 years.
Yes. You have the right to request a copy of all personal data we hold about you. Use the "Download My Data" form above, and we will send you a complete export within 30 days.
When you request account deletion, we permanently remove your personal data from our active systems within 30 days. Some anonymized data may be retained for analytics and legal compliance.
We use essential cookies for site functionality and optional analytics cookies to understand site usage. Marketing cookies are only used if you explicitly consent. You can manage all preferences using the Cookie Preferences section above.
Yes. We do not store your payment card details on our servers. All payments are processed through PCI DSS compliant providers (M-Pesa, Stripe) using encrypted connections. We only store transaction references.
Every marketing email includes an unsubscribe link at the bottom. You can also contact us via WhatsApp or email to update your communication preferences at any time.
Under GDPR, you have the right to access, rectify, erase, restrict processing, data portability, and object to processing of your personal data. Contact our DPO using the form below to exercise any of these rights.
Manage your privacy settings with one click
Keep a copy for your records
Print version hides navigation and interactive elements for a clean reading experience.
Our commitment to honest security reporting
0
Data breaches to date
May 2026
Last security audit
Aug 2026
Next scheduled audit
We are committed to notifying affected users and relevant authorities within 72 hours of discovering any unauthorized access to personal data, as required by Kenyan Data Protection Act and POPIA.
Any breach notification will include: what data was involved, what happened, what we are doing about it, and steps you should take to protect yourself.
We engage independent security firms to conduct penetration testing and vulnerability assessments every quarter. Results are reviewed and remediated immediately.
Security Audit Certificate
Last verified: May 2026