Privacy Policy
Effective Date: January 2025
Last Updated: January 2025
Duori LLC (“Duori,” “we,” “us,” or “our”) respects your privacy and is committed to protecting your Personal Data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit www.duoripatches.com or interact with us offline (collectively, the “Site”).
1. Who Is Responsible for Your Data?
Duori LLC – 2121 Biscayne Blvd #1760, Miami, FL 33137, USA – is the “controller” of Personal Data collected via the Site.
2. How to Contact Us
Email: support@duoripatches.com
Postal: Duori LLC, 2121 Biscayne Blvd #1760, Miami, FL 33137, USA
3. What Is “Personal Data”?
“Personal Data” means any information that identifies, relates to, describes, or could reasonably be linked to you. This includes identifiers (name, postal address, email, phone, IP address), commercial info (purchases, preferences), device data, and—in limited cases—wellness or skin-sensitivity information you voluntarily provide. Under some laws, health data is a “sensitive” or “special” category requiring extra protection.
4. How We Collect Personal Data
|
Source |
Examples |
|---|---|
|
You provide it directly |
account setup, checkout, customer-service emails, product reviews, contests/surveys |
|
Cookies & similar tech |
device IDs, IP, browsing actions; see § 8 |
|
Third-party partners |
payment processors, analytics providers, ad networks, social-login platforms |
You may refuse to provide data, but some Site features (e.g., ordering) may not work without it.
5. Children’s Data
The Site is not directed to children under 13 (U.S.) / 16 (EEA/UK). We do not knowingly collect data from children. Parents may request deletion at support@duoripatches.com.
6. Why & How We Use Your Data
|
Purpose |
Typical Data |
Legal Basis* |
|---|---|---|
|
Fulfil orders & manage subscriptions |
contact, payment, delivery info |
Contract |
|
Customer support |
contact, order history |
Legitimate interest |
|
Personalized product recommendations & ads |
purchase history, preferences, cookies |
Consent / Legit. interest |
|
Email/SMS marketing |
email, phone |
Consent (opt-in) |
|
Fraud prevention & security |
device, payment-risk signals |
Legit. interest / Legal obligation |
|
Site analytics & improvement |
usage, device data |
Legit. interest |
*If you reside in the EEA/UK, GDPR legal bases apply; U.S. users rely on analogous principles.
We do not use Personal Data to make fully automated decisions that have legal or similar significant effects.
7. Disclosing Your Data
|
Category |
Why We Share |
Safeguards |
|---|---|---|
|
Service providers (payment, warehousing, shipping, IT, analytics, email) |
perform services on our behalf |
Contractual confidentiality & data-protection terms |
|
Advertising/marketing partners |
deliver relevant ads only if you consent |
Pseudonymization / opt-out links |
|
Legal & safety |
comply with subpoenas, court orders, or defend legal claims |
Minimum necessary disclosure |
|
Business transfers |
merger, acquisition, or sale of assets |
Successor bound by this Policy |
We never sell Personal Data for money. Under California law, we may “share” usage data with ad partners; you can opt out—see § 10.3.
8. Cookies, Analytics & Targeted Ads
We—and our partners like Google Analytics, Meta, and TikTok—use cookies, pixels, and similar technologies to:
-
remember preferences & keep you logged in
-
measure Site performance
-
personalize content & ads
Manage preferences anytime via our Cookie Consent banner or your browser. To opt out of Google Analytics, visit http://tools.google.com/dlpage/gaoptout.
9. International Transfers
We host data in the United States. When we transfer EU/UK data abroad, we rely on safeguards such as Standard Contractual Clauses or other lawful mechanisms.
10. Your Privacy Rights
|
Region |
Rights & How to Exercise |
|---|---|
|
United States (Federal) |
Access, deletion, marketing opt-out (CAN-SPAM) – email us |
|
California (CCPA/CPRA) |
Access, correction, deletion, opt-out of “sale/share,” limit use of sensitive info – use our “Do Not Sell or Share My Info” link or email |
|
EEA/UK (GDPR) |
Access, rectification, erasure, restriction, objection, portability – email us; lodge complaint with local DPA |
10.1 Marketing Opt-Out. Click “unsubscribe” in any Duori email or adjust account settings.
10.2 SMS Opt-Out. Reply “STOP” to any SMS.
10.3 Do Not Sell/Share (California). Click the footer link or email support@duoripatches.com.
11. Withdrawing Consent
Where we rely on consent (e.g., email marketing, targeted cookies), you may withdraw at any time without affecting prior processing.
12. Data Retention
We keep data only as long as needed for the purposes in § 6, plus any period required by tax, accounting, or legal obligations. When retention ends, we delete or anonymize data.
13. Data Security & Breach Notification
We use industry-standard technical and organizational measures (encryption in transit, network firewalls, access controls). No method is 100 % secure, but if we experience a data breach that is likely to result in harm, we will notify affected individuals and regulators as required by law.
Duori is not a HIPAA-covered entity; nevertheless we treat any health-related details you provide with heightened safeguards.
14. Changes to This Policy
We may revise this Policy periodically. We will post the updated version with a new “Last Updated” date and, if changes are material, notify you via email or prominent Site notice.
15. Questions or Complaints
Email support@duoripatches.com.
If unresolved, U.S. residents may contact the FTC (https://reportfraud.ftc.gov) and EEA/UK residents may contact their local supervisory authority.
Version: January 2025