Privacy Policy

Last updated: March 26, 2026

Secure Payments

PCI-DSS compliant via Stripe

Data Protection

Encrypted & secure storage

No Data Selling

We never sell your info

Your privacy is important to us. This policy explains what information we collect, how we use it, and your rights regarding your personal data.

Information We Collect

Information You Provide

When you make a purchase or create an account, we collect:

  • Contact Information: Name, email address, phone number
  • Shipping Information: Delivery address, shipping preferences
  • Billing Information: Billing address (payment details are processed securely by Stripe and not stored by us)
  • Account Information: Username, password (encrypted), order history
  • Communications: Messages you send us via email or chat support

Information Collected Automatically

  • Device Information: Browser type, operating system, device identifiers
  • Usage Data: Pages visited, time spent, click patterns
  • Location Data: Country and region based on IP address (for currency and shipping)
  • Cookies: Session data, preferences, analytics (see Cookie section below)

How We Use Your Information

We use the information we collect to:

  • Process Orders: Fulfill purchases, process payments, arrange shipping
  • Communicate: Send order confirmations, shipping updates, and respond to inquiries
  • Improve Services: Analyze usage patterns to enhance our website and offerings
  • Prevent Fraud: Detect and prevent fraudulent transactions
  • Legal Compliance: Meet legal obligations and protect our rights
  • Marketing: Send promotional emails (only with your consent, easily unsubscribed)

Information Sharing

We do not sell, trade, or rent your personal information. We share data only with:

  • Payment Processors: Stripe processes payments securely (PCI-DSS Level 1 compliant)
  • Shipping Carriers: Canada Post, UPS, FedEx, USPS to deliver your orders
  • Analytics Providers: Google Analytics (anonymized data) to improve our services
  • Legal Authorities: When required by law or to protect our rights

Data Security

We implement industry-standard security measures to protect your data:

  • SSL/TLS encryption for all data transmission
  • Encrypted password storage using bcrypt hashing
  • Regular security audits and vulnerability assessments
  • Limited employee access to personal information
  • PCI-DSS compliant payment processing through Stripe

Cookies & Tracking

We use cookies and similar technologies to:

  • Essential Cookies: Required for site functionality (cart, login sessions)
  • Preference Cookies: Remember your settings (currency, language)
  • Analytics Cookies: Understand how visitors use our site (Google Analytics)
  • Marketing Cookies: Deliver relevant advertisements (only with consent)

You can control cookies through your browser settings. Disabling certain cookies may affect site functionality.

Data Retention

We retain your information for as long as necessary to:

  • Provide services and fulfill orders
  • Comply with legal obligations (tax records: 7 years)
  • Resolve disputes and enforce agreements

You can request deletion of your account and personal data at any time (see Your Rights below).

Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data
  • Portability: Receive your data in a structured, machine-readable format
  • Opt-out: Unsubscribe from marketing communications at any time
  • Withdraw Consent: Where processing is based on consent, withdraw it at any time

To exercise these rights, contact us at support@peptodio.com.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including Canada and the United States. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.

Children's Privacy

Our services are not intended for individuals under the age of 18 (or 19 in certain provinces). We do not knowingly collect personal information from minors. If we become aware that we have collected data from a minor, we will delete it promptly.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

Contact Us

For questions about this Privacy Policy or to exercise your rights, contact us: