Privacy policy
Effective Date: March 27, 2025
ChaChaCha Inc. (hereinafter referred to as "we", "us", or "our") is committed to protecting the personal information of our customers. We comply with applicable laws and regulations regarding the protection of personal information, including the Act on the Protection of Personal Information in Japan, the General Data Protection Regulation (GDPR) of the European Union, and the California Consumer Privacy Act (CCPA), where applicable. This Privacy Policy outlines how we collect, use, protect, and manage your personal information.
1. How We Collect Personal Information
We collect personal information through the following methods:
1.1 Types of Personal Information
- Name, phonetic spelling (Furigana), gender, occupation, and company/organization name.
- Contact details such as email address, mailing address, and telephone number
- Passwords for account authentication
- Shipping information designated by customer.
- Payment information such as credit card or bank account details
- Survey responses that may identify individuals
- Any information entered or submitted through forms or other means defined by us
1.2 Device Information
When using our services via a desktop or mobile device, we may collect device identifiers, IP addresses, cookies, and any other data voluntarily provided such as device type, country, user name, or email address.
1.3 Location Information
With your permission, we may collect your location information while using our services. This setting can typically be disabled in your device or browser settings. However, disabling it may restrict access to some of our services.
1.4 Usage and Behavioral Data
We may collect data related to your activities, such as your access history to our website (https://chachacha.garden), information submitted through product reviews, login via social networking services (SNS), and usage patterns of our services.
1.5 Information from External Services
If you use external services (e.g., social media accounts) in connection with our services, we may collect the ID or other information disclosed under the privacy settings of those services.
Note: You may choose whether to provide personal information. However, by accessing or using our services, you are deemed to have agreed to this Privacy Policy, and we may collect and manage your information accordingly.
2. Purpose of Use
We will only use your personal information for the following purposes and will not use it beyond the scope without obtaining your consent:
1. To provide information via direct mail, email, or other communication.
2. To offer services for registered members.
3. To process and fulfill product orders, including confirmation, shipping, and payment.
4. To respond to inquiries and support requests.
5. To provide payment processing services.
6. To provide advertisements and promotional content.
7. To improve, enhance, and develop new services or features.
8. To fulfill duties associated with any of the above purposes
Note: You may decline to provide certain information, but doing so may prevent you from using parts of our services.
3. Use of Cookies
Cookies are small text files exchanged between your browser and our server when you visit our website. These cookies may be stored on your device, depending on your browser settings. They do not contain personally identifiable information.
We may use cookies to improve your browsing experience and provide personalized services. You can choose to reject cookies or set your browser to notify you when cookies are received. However, some features or services on our website may not function properly without cookies.
4. Security Measures
We implement appropriate organizational, technical, physical, and human safeguards to prevent unauthorized access, leakage, loss, or destruction of personal information.
We also securely and reasonably dispose of information that is no longer necessary for our business.
5. Disclosure to Third Parties
We may disclose your personal information to third parties under the following conditions:
1. With your explicit consent.
2. When required by law or legal procedures.
3. When outsourcing services to vendors.
In cases of outsourcing, we select appropriate service providers and enter into data protection agreements to ensure compliance and adequate supervision.
6. Your Rights under GDPR and CCPA
If you are located in the European Economic Area (EEA) or California, you may have the following rights:
GDPR (EEA Residents):
- The right to access, correct, delete, or restrict processing of your personal data
- The right to object to data processing
- The right to data portability
- The right to withdraw consent at any time
- The right to lodge a complaint with a supervisory authority
CCPA (California Residents):
- The right to know what personal information we collect and how we use it
- The right to request deletion of your personal information
- The right to opt-out of the sale of personal data (note: we do not sell personal data)
- The right to non-discrimination for exercising your rights
To exercise these rights, please contact us at:
info@chachacha.garden
7. Opting Out of Communications
If you no longer wish to receive marketing or promotional emails, you can update your preferences through your account page or by contacting us via email or phone.
Customers who have not registered for an account may also unsubscribe by contacting us directly.
Please note: Transactional emails related to orders may still be sent regardless of your subscription preferences.
8. Accessing and Correcting Your Information
You can review or update your personal information through your account page. If you do not have an account or need assistance, please contact us via email or phone.
Requests for deletion will be handled in accordance with applicable laws.
9. Changes to This Policy
We may update this Privacy Policy without prior notice due to changes in legal, technological, or business requirements. The updated policy will be posted on this page with the effective date.
10. Data Transmission and Security
We use SSL (Secure Socket Layer) encryption — one of the most trusted technologies — to ensure secure transmission of data between your device and our servers.