At bathandbodyworks.top, your privacy is as important to us as the care we put into every product we craft.
We believe that trust, like fragrance, should linger — subtle, comforting, and enduring.
This Privacy Policy explains how we collect, use, and protect your personal information when you visit our website, make a purchase, or interact with our services.

By using bathandbodyworks.top, you agree to the practices described below.

1. Our Commitment to Your Privacy

We are dedicated to providing a safe and transparent shopping experience.
Every piece of information you share helps us serve you better — but we promise to handle it with sensitivity and respect.

We never sell, rent, or misuse your personal data.
Our goal is simple: to protect your trust while delivering a seamless, personalized experience.

💐 Because privacy, like self-care, begins with trust.

2. Information We Collect

We collect only the information necessary to process your orders and enhance your experience.

a) Information You Provide Directly

  • Name and contact details (email, phone number, shipping address)
  • Payment information (securely processed via trusted third parties)
  • Account credentials (if you register an account)
  • Communication preferences and customer service inquiries

b) Information Collected Automatically

When you browse our website, we may collect:

  • IP address and browser type
  • Device information (mobile, tablet, or desktop)
  • Pages visited and time spent on site
  • Referring URLs or links clicked
  • Shopping cart and browsing behavior

This helps us understand what inspires you and how we can improve your journey with us.

c) Information From Cookies

Cookies help us remember your preferences — your language, your cart, your favorite scents.
You can adjust your cookie settings at any time (see our Cookie Policy for more).

3. How We Use Your Information

Your data is used to create a more personal, efficient, and enjoyable experience:

  • To process and fulfill your orders
  • To send order confirmations, shipping updates, and account notifications
  • To personalize recommendations based on your preferences
  • To improve website performance and customer experience
  • To prevent fraud and ensure transaction security
  • To send occasional updates, offers, or newsletters (only with your consent)

Every interaction is designed to make your experience with bathandbodyworks.top smoother, safer, and more delightful.

4. Legal Basis for Processing (GDPR Compliance)

If you are located in the EU or UK, we process your data under the following lawful bases:

  • Contractual necessity: To complete transactions and deliver your purchases.
  • Consent: When you subscribe to newsletters or promotions.
  • Legitimate interests: For site analytics and service improvement.
  • Legal obligations: To comply with tax, anti-fraud, and consumer protection laws.

You may withdraw your consent at any time by contacting [email protected].

5. How We Protect Your Data

We employ industry-standard security practices to safeguard your personal information:

  • Secure Socket Layer (SSL) encryption for all transactions
  • Encrypted databases and firewalls
  • Limited access by authorized personnel only
  • Regular system updates and monitoring against threats

While no online system is entirely invulnerable, we take every reasonable step to ensure your data remains private and protected.

6. Payment Security

Your payment information is handled through trusted third-party processors such as Stripe, PayPal, or Shopify Payments.
bathandbodyworks.top never stores or has access to your full credit card details.

All payment gateways adhere to PCI DSS (Payment Card Industry Data Security Standard) compliance for secure processing.

7. Sharing Your Information

We value discretion — and we only share your data with trusted partners necessary to operate our business:

  • Shipping providers (to deliver your order)
  • Payment processors (to complete secure transactions)
  • Analytics services (to improve user experience)
  • Marketing platforms (only with your consent)

These partners are bound by confidentiality and privacy agreements that meet GDPR and CCPA standards.

We never sell or rent your personal information to advertisers or data brokers.

8. Marketing & Communication Preferences

You control how you hear from us.
If you subscribe to our newsletter, you may receive updates about new arrivals, limited collections, or self-care tips.

You can opt out anytime by:

  • Clicking “unsubscribe” at the bottom of any email, or
  • Contacting us directly at [email protected].

Even if you unsubscribe, you’ll still receive essential transactional emails (like order or shipping updates).

9. Your Privacy Rights

Depending on your region, you may have the following rights:

a) GDPR (EU/UK Users)

  • Right to access your personal data
  • Right to rectification (correction of inaccuracies)
  • Right to erasure (“right to be forgotten”)
  • Right to restrict processing
  • Right to data portability
  • Right to object to certain uses of your data

b) CCPA (California Residents)

You have the right to:

  • Know what personal data we collect
  • Request deletion of your data
  • Opt out of data sales (we do not sell data)
  • Receive equal service regardless of privacy preferences

To exercise these rights, contact [email protected].

We will verify your request for security before taking action.

10. Data Retention

We retain your data only as long as necessary to fulfill the purposes outlined in this policy — typically:

  • Order and tax records: up to 7 years (legal requirement)
  • Customer account data: until you request deletion
  • Marketing consent: until unsubscribed

When data is no longer needed, it is securely deleted or anonymized.

11. Cookies & Tracking Technologies

We use cookies and similar tools to personalize your experience and analyze traffic trends.
You can control or disable cookies via your browser.

For more details, please refer to our Cookie Policy.

12. Children’s Privacy

Our website is not intended for individuals under 16 years of age.
We do not knowingly collect data from minors.
If we become aware of such data, it will be deleted immediately.

13. International Data Transfers

If you are accessing bathandbodyworks.top from outside the United States, please note that your data may be processed and stored in U.S. servers.
We ensure appropriate safeguards and legal mechanisms for such transfers under GDPR guidelines.

14. Changes to This Policy

We may update this Privacy Policy to reflect operational or legal changes.
The “Last Updated” date at the bottom of this page indicates the latest revision.
We encourage you to review this page periodically to stay informed.

15. Contact Us

If you have questions, feedback, or privacy requests, please reach out:

📧 [email protected]
🕓 Response Time: within 24–48 business hours