Privacy Policy
Your Secrets are Safe with Us 🤫
Let’s be honest: nobody actually likes reading Privacy Policies. But at OXXOVAPE, your privacy and trust mean the world to us. Just like your favorite neighborhood convenience store, we believe in keeping things simple, transparent, and secure.
We only collect the information we absolutely need to get your premium “vape mail” to your doorstep, verify you are an adult, and make your shopping experience awesome. We will never sell your personal data to shady third parties. Period.
Here is the plain-English breakdown of what data we collect, why we need it, and how we protect it, in full compliance with the GDPR and global privacy laws.
1. Data Controller Information
For the purposes of the General Data Protection Regulation (GDPR), the “Data Controller” (the folks responsible for keeping your data safe) is:
-
Data Controller: OXXOVAPE Operations Team
-
Contact Email:
[email protected]
![🛒]()
2. What Data We Collect
2. What Data We CollectWhen you hang out in our store, we collect a few necessary bits of info:
-
The Basics (Identity & Contact): Your name, email address, phone number, shipping and billing addresses.
-
The “Adults Only” Stuff (Age Verification): Your date of birth.
-
The Money Stuff (Financial Data): Payment details. (Note: We use highly secure, encrypted third-party gateways like Stripe/PayPal. We never see, store, or touch your full credit card number.)
-
The Tech Stuff (Analytics & Tracking): Your IP address, browser type, device info, and how you interact with our site (powered by standard cookies, Google Analytics, and Meta Pixel).
![🎯]()
3. How We Use Your Data
3. How We Use Your DataUnder GDPR, we need a good, legal excuse to process your data. Here is exactly what we use it for:
- To Get Your Vape Mail Delivered (Performance of a Contract): We use your address and contact info to process your order, ship your favorite disposable vapes, and send you tracking updates.
- To Keep the Kids Out (Legal Obligation): We legally must ensure you are of legal smoking age. Your DOB and ID data are used strictly for age verification.
- To Make Our Store Better (Legitimate Interests): We look at anonymous tracking data to understand what flavors are trending and fix any bugs on our website.
- To Send You Sweet Deals (Consent): If you subscribe to our newsletter, we’ll email you about restocks and discounts. (You can hit “Unsubscribe” anytime—we won’t take it personally).
![🍪]()
4. Cookies & Tracking Technologies
4. Cookies & Tracking TechnologiesYes, we use cookies! Not the chocolate chip kind, but tiny text files that help our website remember what’s in your shopping cart and keep you logged in. For the full scoop on how we use tracking tech (and how to turn them off), check out our Cookie Policy.
![🤝]()
5. Data Sharing
5. Data SharingWe share data only with industry-leading processors to ensure your security:
- Payment Processing: Trusted providers such as Stripe/PayPal (depending on your selection).
- Age Verification: We comply with EU/UK tobacco laws using professional verification protocols (e.g., 1account or similar integrated secure API) to ensure zero-access by minors.
![🌍]()
6. International Data Transfers
6. International Data TransfersBecause we ship globally and use world-class tech partners, your data might occasionally travel outside the European Economic Area (EEA). When it does, we ensure it’s protected by strict GDPR-compliant safeguards, such as Standard Contractual Clauses (SCCs).
![⏳]()
7. Data Retention (How Long We Keep It)
7. Data Retention (How Long We Keep It)We don’t hoard data. We only keep your personal information for as long as necessary to fulfill the purposes mentioned above. For example, we keep order records for a few years to comply with tax laws.
![🦸♂️]()
8. Your Rights Under GDPR
8. Your Rights Under GDPR If you are an EU resident (and frankly, even if you aren’t), you have ultimate control over your data. You have the right to:
-
Access: Ask us what data we have on you.
-
Rectification: Correct any wrong info (like a typo in your address).
-
Erasure (“Right to be Forgotten”): Ask us to wipe your account and delete your data.
-
Restriction & Objection: Tell us to stop processing your data for certain things (like marketing).
-
Data Portability: Get a copy of your data to take elsewhere.
-
Withdraw Consent: Change your mind about those marketing emails.
-
Lodge a Complaint: Complain to your local data protection authority if you think we messed up.
To exercise any of these rights, simply email us at [email protected]. We are quick to respond!
![🔐]()
9. Data Security
9. Data SecurityWe lock down your data tighter than a sealed vape pod. We use industry-standard SSL encryption and strict access controls to ensure your personal details are safe from hackers and snoops.
![🔄]()
10. Changes to This Policy
10. Changes to This PolicyIf the laws change or we update our store practices, we might tweak this policy. If we make big changes, we’ll let you know via email or a notice on the site.
📬 11. Contact Details
Got questions, concerns, or just want to chat about privacy? Reach out to our friendly support team:
- Email: [email protected]
- WhatsApp: OXXOVAPE Official Whatsapp
Last updated: March 2026. This Privacy Policy has been comprehensively reviewed and approved by the OXXOVAPE Compliance & Data Protection Team. It is routinely updated to ensure strict alignment with the General Data Protection Regulation (GDPR) and global consumer privacy standards.
