Privacy Policy

Welcome to MyLewie.com. This Privacy Policy explains how MyLewie (“we”, “us”, or “our”) collects, uses, and shares personal information when you visit our website mylewie.com or purchase our dental floss, teeth whitening, or other personal care products (the “Site” or “Service”). We operate exclusively in the United States and are committed to respecting your privacy and protecting your personal information in compliance with applicable U.S. laws (including the California Consumer Privacy Act and other state privacy laws). By using our Site, you agree to the collection and use of information as described in this Privacy Policy.

1. Information We Collect

We do not collect sensitive personal data (such as social security numbers, driver’s license numbers, or health/medical information) as part of our services. However, we do collect various types of personal information to operate our e-commerce business and provide you with a great experience. This includes:

·         Information You Provide Directly: When you make a purchase or attempt to make a purchase, create an account, or contact us, you may provide personal information such as:

o   Contact Information: Name, email address, phone number, and postal address (billing and shipping address).

o   Account Credentials: If you register an account, a username and password (which is stored in encrypted form).

o   Order Details: Products ordered, preferences, and any messages or gift notes.

o   Payment Information: Payment card details or other payment information. Note: We use secure third-party payment processors (e.g., Shopify Payments or similar) to handle payment transactions. Your full credit card number is not stored on our servers; it is handled by our payment provider. We may retain non-sensitive payment identifiers (e.g., last 4 digits of your card, card type) for reference.

o   Communications: Any information you provide when you contact us (such as inquiries, feedback, or correspondence) or when you subscribe to our newsletter (like your email address and marketing preferences).

·         Information We Collect Automatically: When you visit or interact with our Site (whether or not you make a purchase), certain data is collected automatically about your device and usage of the Site. This “Device and Usage Information” may include:

o   Device and Browser Data: IP address, browser type and version, device identifiers, operating system, and network information.

o   Usage Data: Date and time of your visits, the pages or products you view, the URLs or search terms that referred you to our Site, your Site interaction information (such as clicks, scrolling, and mouse movements), and time spent on pages.

o   Cookies and Similar Technologies: We use cookies, pixels, tags, and web beacons to collect information about your interactions (see Cookies and Tracking below for details). These technologies help us remember your preferences, keep you logged in, keep track of your shopping cart, and understand how you use our Site.

We may combine information you provide with information collected automatically for purposes of analytics, record-keeping, and to improve our services. All personal information described above is referred to collectively as “Personal Information” in this Policy.

2. How We Use Your Information

We use your Personal Information for the following purposes:

·         To Process Orders and Provide Services:
 We use your information to fulfill and deliver any orders you place. This includes processing payments, verifying order details, arranging shipping through our carriers, sending you order confirmations and receipts, and notifying you of shipping status. We also use your information to provide customer support, handle returns or exchanges, and address any issues with your orders.

·         To Communicate with You:
 We may contact you via email, phone, or text (if you provided these) to update you on your order, respond to your inquiries, inform you of any issues, or ask for feedback. These service-related communications are necessary to serve you as a customer.

·         For Marketing and Promotional Purposes (with Consent):
 With your permission, we use your contact information (typically your email) to send you marketing communications. For example, if you subscribe to our newsletter or opt-in during checkout, we will send you emails about new products, special offers, and helpful tips for oral care. We will only send marketing emails or texts if you have opted in (consented). You can withdraw your consent at any time (see Your Choices below). We may also use information about your past purchases or browsing to tailor our promotions (such as recommending products you might like).

·         For Analytics and Site Improvement:
 We use data (especially automatically collected data about device and usage) to understand how our customers use the Site. This helps us troubleshoot problems, improve the layout and content of our webpages, develop new features or products, and enhance the user experience. For instance, analyzing which pages are visited most or how users navigate our store helps us optimize design and inventory.

·         For Personalized Advertising:
 We (and our advertising partners) may use your browsing behavior and purchase history to deliver targeted advertisements on our Site or third-party websites (often called retargeting or behavioral advertising). For example, if you viewed a particular product on our Site, you may later see an ad for that product on another website. We only use and share data for personalized ads as permitted by law (see Cookies and Tracking and Sharing Your Information below for more on advertising practices and how to opt out).

·         To Prevent Fraud and Ensure Security:
 We may use Personal Information (especially device data like IP addresses and order information) to screen for fraudulent transactions, security risks, or malicious activity. This includes detecting and preventing fraud or abuse of our Site and ensuring the integrity of our platform. For example, we might refuse a transaction or flag an account that appears to be engaged in suspicious behavior.

·         To Comply with Legal Requirements:
 We process and may retain your information as needed to comply with laws and regulations. For instance, maintaining transaction records for tax, accounting, and regulatory audits; handling consumer rights requests (such as those under privacy laws); or responding to valid legal requests (like subpoenas or court orders) as required by law (see Sharing Your Information below for more).

·         For Any Other Purpose With Your Consent:
 In situations where we need to use your data for a purpose not listed above, we will explain the purpose and, if required, obtain your consent before proceeding. (For example, if we launch a new feature like a community forum or a subscription membership that involves new uses of your info, we will update this Policy or ask for consent as appropriate.)

We will only use your Personal Information in ways that are compatible with the purposes for which it was collected or that you later authorize. We do not use your Personal Information to make any automated decisions that have legal or significant effects on you (no automated profiling beyond common marketing segmentation).

3. Cookies and Tracking Technologies

What are Cookies? Cookies are small text files placed on your device that allow us or third parties to recognize your browser or device and collect certain information. We also use similar technologies like pixel tags (small snippets of code or images that track actions) and web beacons. These technologies help our Site function, enable certain features, and gather analytics and advertising data.

How We Use Cookies and Pixels: We use cookies and tracking technologies for several reasons:

·         Essential Cookies: These are necessary for our Site to function properly. For example, they keep track of your shopping cart items as you browse, enable you to log into your account, or ensure that the checkout process works. Without these, the website may not operate correctly.

·         Preference Cookies: These remember your choices (such as your preferred language or region) and enhance your experience.

·         Analytics Cookies: These cookies collect information about how visitors use the Site, which pages are popular, or if users encounter errors. We use this data to improve the Site’s performance and content. (See Google Analytics below.)

·         Advertising and Social Media Cookies: These cookies are used to deliver ads more relevant to you and your interests, and to measure the effectiveness of ad campaigns. They may be set by us or by third-party advertising partners and social media platforms. They can remember that you visited our Site and help display targeted ads on other websites based on your browsing history. (See Personalized Advertising below for how to opt out.)

Third-Party Tracking and Tools: We partner with third-party services that deploy their own cookies or pixels on our Site to assist with analytics, marketing, and advertising. The key third-party tools we use include:

·         Google Analytics: We use Google Analytics to collect information about Site usage. Google Analytics uses cookies and similar technologies to gather data such as what pages you visit, how long you stay, how you got here, and what you click on. This information helps us analyze Site traffic and user behavior. Google may also use the data it collects to contextualize and personalize ads on its own advertising network. The data we receive from Google Analytics is mostly aggregated (for example, total number of visitors in a day) and does not identify you personally. However, Google Analytics may collect your IP address and certain device identifiers; we have configured it to anonymize IP addresses where possible. You can learn more in Google’s Privacy Policy. If you wish, you can opt-out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on, available at tools.google.com/dlpage/gaoptout.

·         Klaviyo (Email Marketing & Analytics): We use Klaviyo as our email marketing platform. If you subscribe to our newsletter or provide your email for marketing, Klaviyo helps us send you emails and manage our subscriber list. Klaviyo may set a cookie or use similar tracking (like an email pixel) to know if you opened our emails or clicked on links. On our Site, Klaviyo’s tracking cookie helps us understand when an identified visitor (for example, someone who clicked from one of our emails or logged into their account) browses our Site. This information allows us to, for instance, see which products a subscriber might be interested in and send more relevant follow-up emails or offers. You can learn more in Klaviyo’s privacy notice on their website. If you no longer wish to receive marketing emails from us, you can unsubscribe at any time (every marketing email we send includes an “unsubscribe” link – see Your Choices below).

·         Advertising Pixels (e.g., Google Ads & Facebook Pixel): We may use tracking pixels from advertising networks such as Google Ads (for Google/YouTube advertising) and Meta’s Facebook/Instagram Ads. These pixels track when you take certain actions on our Site (like visiting a particular page or completing a purchase) and report back to the advertising platform. This helps us measure the effectiveness of our ads (for example, to know if an ad resulted in a sale) and allows those platforms to show you personalized ads from us on their networks. For instance, the Facebook Pixel may note that you viewed a specific item on MyLewie.com so that we can later show you an ad for that item or similar products on Facebook or Instagram. The information shared with these platforms may be considered a “sale” or “sharing” of data under certain state laws (like California’s) – see Your Rights below on how you can opt out. You can also adjust your ad preferences directly on those platforms (e.g., through your Google or Facebook account settings).

·         Other Third-Party Tools: We may utilize other tools and integrations for analytics, performance monitoring, or advertising as our business grows (for example, a session replay tool to see how users navigate our site, or an affiliate tracking system). If we add new tools that collect personal data or tracking information, we will update this Privacy Policy to include them. We will always endeavor to choose reputable partners that respect user privacy.

Your Choices for Cookies: Most web browsers automatically accept cookies, but you can usually modify your browser settings to decline or delete cookies if you prefer. You can remove or reject cookies in your browser’s settings (see your browser’s Help section for instructions). Note: If you disable or delete cookies, some features of our Site (like keeping items in your cart, or logging in) may not function properly.

“Do Not Track” Signals: Some browsers offer a “Do Not Track” (DNT) setting that allows you to signal your privacy preference to websites. Currently, there is no consistent industry standard for handling DNT signals. Therefore, our Site does not respond to “Do Not Track” browser signals. We will treat all user visits in accordance with this Privacy Policy, regardless of DNT signals. If a universal standard for DNT emerges in the future, we will revisit our policy.

4. How We Share Your Information

We understand that your personal information is important, and we only share it with third parties for legitimate business purposes, as described below. We do not sell your personal information for money. However, some of our data sharing (especially with advertising partners) might be considered a “sale” or “sharing” under certain privacy laws like the CCPA – we address those in Your Rights below.

Categories of third parties we may share information with:

·         Service Providers (Processors): We share personal information with trusted third-party companies that help us run our business (often called “service providers” or “vendors”). These companies process data on our behalf under strict confidentiality and only for the purposes we specify. Key service providers include:

o   Shopify: Our store is built on the Shopify platform. Shopify hosts our website and provides the e-commerce infrastructure (shopping cart, checkout, payment processing, etc.). Information you provide when making a purchase (including your Personal Information) is stored on Shopify’s systems. Shopify accesses and processes this data to enable order transactions, payments, and store functionality. You can read more about how Shopify uses customer information in the Shopify Privacy Policy.

o   Payment Processors: To securely process your payments, we use payment gateways and processors (e.g., Shopify Payments, PayPal, etc., as applicable). Your payment details are transmitted directly to these processors and are subject to their privacy and security policies. They only share back with us limited information necessary to confirm payment (such as a payment confirmation or last four digits of your card).

o   Shipping and Fulfillment Partners: We share necessary details with shipping carriers or fulfillment centers to deliver your orders. For example, we provide your name and shipping address (and sometimes phone or email for delivery updates) to postal services or courier companies that deliver your package.

o   Email & Marketing Providers: As mentioned, we use Klaviyo for email marketing. We upload or collect your email address and name (and sometimes information like what you purchased, so we can send relevant content) into our account on Klaviyo’s system. They process that data to send out newsletters or promotional emails on our behalf. They are not allowed to use your data for their own purposes.

o   Analytics and Advertising Partners: Companies like Google (for Google Analytics and Google Ads), Facebook/Meta (for analytics and advertising), or other analytics providers will receive certain information via their integrated technologies on our Site. For instance, Google Analytics will automatically receive device and usage data (see Cookies and Tracking above), and Facebook will receive info through the Pixel if you’ve visited our Site. These providers use the data to provide services to us (analytics reports or ad targeting). In some cases, they may also use collected data for their own purposes, such as improving their services or, in the case of advertising networks, for improving ad personalization on other websites. Please refer to each provider’s privacy policy for details on how they use the information collected via our Site. We only integrate third-party scripts/pixels to the extent allowed by law and with appropriate data processing agreements in place.

o   Other Vendors: We may also use other companies for specific business needs (e.g., an accounting software that stores invoices, an IT support provider, or a cloud storage backup service). These providers will have access to information only as necessary for their function and must protect it per our agreements with them.

·         Advertising and Marketing Partners: As part of allowing third-party cookies and pixels, certain information (mostly device identifiers and browsing info) is shared with advertising networks and social media platforms to facilitate targeted advertising. For example, if we use Google Ads, a conversion cookie/pixel will share that a certain user (identified by a cookie ID) completed a purchase on our Site, which helps us measure ad effectiveness. Likewise, if we use Facebook Ads, the Facebook Pixel will inform Facebook that a user with a certain Facebook cookie visited or took an action. These companies may use that data to show you ads for MyLewie on their platform or to analyze ad performance for us. Under California law, this kind of data sharing for “cross-context behavioral advertising” might be classified as “sharing” personal info. We handle such data sharing in compliance with relevant laws by offering opt-outs (see Your Rights). We do not knowingly share data with any third parties in a way that those third parties can identify you by name or contact info for their own independent marketing.

·         Legal Compliance and Protection: We may disclose personal information when required by law or when we believe in good faith that such disclosure is necessary to:

o   Comply with a legal obligation, government request, or court order (for example, responding to a subpoena or law enforcement inquiry).

o   Enforce our Terms of Service or other agreements.

o   Investigate and defend ourselves against any third-party claims or allegations.

o   Protect against fraud, credit risk, or security issues.

o   Protect the rights, property, and safety of MyLewie, our customers, or the public. (For instance, we might share information with relevant authorities if you engaged in fraudulent or illegal activities affecting our Site.)

·         Business Transfers: In the event that our company is involved in a merger, acquisition, sale of assets, bankruptcy, or reorganization, personal information may be transferred to a successor or affiliate as part of that transaction. If such a transfer occurs, your personal data will remain subject to the promises made in this Privacy Policy (unless you’re notified otherwise and consent to any new terms).

·         With Your Consent: Apart from the situations above, if we ever need to share your information for other purposes, we will ask for your consent. You will have the opportunity to opt-in or opt-out of such data sharing if it’s outside the scope of this Privacy Policy.

No Sale of Personal Data for Monetary Gain: We want to clarify that we do not sell your personal information to data brokers or third parties for monetary consideration. All instances of sharing described above are either for business operations (service provision) or advertising analytics as described. If in the future we ever consider selling personal data (which we have no plans to do), we will provide required notices and opt-out rights.

5. Your Choices and Controls

We believe in giving you control over your personal information. Here are the ways you can manage or limit the information you provide to us and how we communicate with you:

·         Updating Your Information: If you have an account on our Site, you can log in and update your contact information or preferences at any time. If any of your personal details (like address or email) change, please update them in your account or notify us so we can keep our records accurate.

·         Opting Out of Marketing Emails: If at any time you no longer wish to receive promotional emails from us, you can opt out. The easiest way is to click the “Unsubscribe” link at the bottom of any marketing email we send. You can also opt out by contacting us at our support email (see Contact Us below) and requesting to be removed from marketing lists. Please note, even if you opt out of marketing messages, we may still send you transactional or service emails (such as order confirmations, shipping notices, or responses to your inquiries) as these are not promotional in nature.

·         Cookie Controls: As discussed in Cookies and Tracking, you can control or delete cookies through your browser settings. You can also use browser extensions or privacy modes to limit cookie tracking. Keep in mind that disabling cookies may impact your experience on our Site (for example, the site might not remember items in your cart). For targeted advertising cookies, you can also manage preferences via industry opt-out sites. For example:

o   The Network Advertising Initiative (NAI) offers an opt-out page for member companies’ cookies: http://optout.networkadvertising.org.

o   The Digital Advertising Alliance (DAA) offers a Consumer Choice tool to opt out of interest-based advertising: http://optout.aboutads.info.

o   The DAA’s AppChoices allows you to control interest-based ads in mobile apps: http://www.youradchoices.com/appchoices.

o   Note that using these opt-outs will typically place an opt-out cookie on your device, so if you clear cookies, you may need to opt out again.

·         Ad Preferences on Platforms: You can adjust ad privacy settings directly on platforms like Google, Facebook, and others:

o   Google Ads Settings: Google Ad Personalization Settings – allows you to control personalized ads across Google services and partner sites.

o   Facebook Ad Preferences: In your Facebook account under Settings > Ads, you can manage your preferences, or visit Facebook Ad Preferences.

o   These platforms also often adhere to the broader industry opt-outs listed above.

·         Analytics Opt-Out: As mentioned earlier, you can opt out of Google Analytics tracking by using the browser add-on provided by Google (for Chrome, Firefox, etc.).

·         “Do Not Sell or Share My Personal Information” (for California residents): If you are a California consumer and wish to opt out of any “sale” or “sharing” of your personal information (as defined under the CCPA/CPRA), you can contact us to request this (see Your Privacy Rights below). Although we do not sell data for money, we respect opt-out requests related to targeted advertising. We are working on implementing a “Do Not Sell or Share” link or setting on our Site. In the meantime, if you want to ensure none of your data is used for targeted ads, please reach out to us and we will honor your request (for example, by not loading certain tracking scripts for your visits, or by processing your data in a way that is limited to “service provider” use).

·         Turning Off Tracking (Other): If you use browser extensions or privacy tools (like ad blockers or tracking blockers), those can also help control what third-party content loads on websites. Feel free to use such tools – our Site should still function as long as essential cookies/scripts are not blocked.

Please note that any opt-out preferences (especially cookies or device-specific settings) are typically tied to the specific device or browser you use. If you use multiple devices or browsers to access our Site, you should set your preferences on each. If you clear your cookies or use a new device, you may need to renew these preferences.

6. Your Privacy Rights (California and Other U.S. States)

Consumers in certain U.S. states have specific legal rights regarding their personal information. We are committed to honoring applicable privacy rights, including those afforded by the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and similar laws in other states (such as Virginia, Colorado, Connecticut, and Utah).

If you are a resident of California, you have the following rights with respect to your personal information (subject to certain exceptions and limitations by law):

·         Right to Know: You have the right to request that we disclose what personal information we collect, use, disclose, and sell or share. This includes the categories of personal information, the categories of sources, the business purpose for collection, the categories of third parties we share with, and specific pieces of information we have collected about you.

·         Right to Access: You can request a copy of the specific personal information we have collected about you in the past 12 months.

·         Right to Delete: You have the right to request that we delete personal information we have collected from you, subject to certain exceptions (for example, we may retain information as required by law or to complete transactions you have requested).

·         Right to Correct: You have the right to request correction of inaccurate personal information that we hold about you.

·         Right to Opt-Out of Sale/Sharing: If we ever “sell” personal information (as defined by the CCPA) or “share” it for cross-context behavioral advertising, you have the right to opt out. As noted, we do not sell personal info for money. We do share some data with advertising partners for targeted ads, which California law treats as “sharing.” You can opt out of this sharing (see Your Choices above for how to opt out, or contact us directly with a request).

·         Right to Limit Use of Sensitive Personal Information: (This right applies if a business uses or discloses sensitive personal info for reasons other than certain exempt purposes.) Note: Our business does not collect or use “sensitive personal information” as defined by law (such as precise geolocation, social security numbers, driver’s license numbers, financial account info, health data, etc.) beyond what may be necessary for order processing (e.g., payment info for a transaction). Since we do not collect such sensitive data for secondary purposes, there is nothing for you to limit in this regard.

·         Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights. This means if you make a privacy rights request, we will not deny you services, charge you a different price (or impose penalties), or provide a different level of service just because you exercised your rights. (If you opt out of certain data uses, however, please note some features – like personalized recommendations or certain offers – might not be available to you, simply because we no longer have the data to provide them.)

If you are a resident of other states with privacy laws (such as Virginia, Colorado, Connecticut, or Utah): The privacy rights granted are generally similar to California’s, with some differences in terminology and scope. These typically include the right to confirm if we process your data, the right to access and delete personal data, the right to correct inaccuracies, the right to opt out of targeted advertising or sale of personal data, and in some cases the right to opt out of certain types of profiling. We intend to extend essentially the same core rights to all our U.S. customers from these states. If you reach out to us with a privacy rights request, we will treat it in accordance with applicable law for your state.

How to Exercise Your Rights: If you would like to exercise any applicable privacy rights, please contact us by email or mail (see Contact Us below). Please clearly state your request and provide us with sufficient information to verify your identity. For example:

·         To request access or deletion, provide your name and the email address associated with your orders or account, and specify which right you want to exercise.

·         We may need to ask you for additional information to verify that you are the person (or an authorized agent of the person) whose data is the subject of the request. This is to protect your data from unauthorized access or deletion at the request of someone impersonating you.

·         If you use an authorized agent (someone acting on your behalf), we will require proof of that authorization (for example, a written permission from you or proof of power of attorney, plus verification of the agent’s identity).

We will respond to verifiable requests as soon as we reasonably can, generally within 45 days as required by CCPA (or faster if possible). If we need more time (up to an additional 45 days), we will inform you of the reason and extension period in writing. Access requests are generally free, but the law allows us to refuse or charge for excessive/repetitive requests.

For deletion requests: After verifying your identity, we will delete (and instruct our service providers to delete) your personal information from our records, except for information we are allowed or required to retain by law (e.g., records of transactions for auditing, security, legal compliance, or if the information is needed to complete a transaction you requested, etc.). We will explain if any data must be retained when responding to your request.

For opt-out of sale/sharing: We will add your information to a suppression list to ensure it is not shared with third-party advertising partners going forward. If applicable, we may provide you a method (like a cookie-based control) to stay opted out.

Financial Incentives: The CCPA requires disclosure of any “financial incentives” for collecting, selling, or deleting personal info. We do not offer programs that provide payments or discounts in exchange for personal data, aside from our general promotions open to all. If we ever introduce a loyalty or referral program that involves collection of personal info in exchange for benefits, we will update this section with relevant details and any required opt-in consent.

Shine the Light (California Civil Code §1798.83): California’s “Shine the Light” law allows California residents to request information about our disclosures of certain categories of personal information to third parties for their direct marketing purposes. We do not disclose personal information to third parties for their own direct marketing purposes (unless you separately consent to such disclosure). Thus, we believe this requirement does not apply. If you have questions about any such potential sharing, you can contact us.

Nevada Residents: Nevada law gives the right to opt out of sales of certain covered information. We do not sell personal information for monetary consideration, but if you are a Nevada resident, you may submit a request to opt out of any future sale of your information by contacting us.

Response for Non-U.S. Users: Our Site and services are intended for U.S. customers. If you are visiting from outside the United States, please be aware that any information you provide will be processed and stored in the U.S. where privacy laws may not be as strict as those in your country. However, we will still treat your personal information in line with this Privacy Policy. If you are from regions like the European Economic Area (EEA) or United Kingdom, you may have additional rights (like the right to object to processing or data portability). While we do not actively serve those regions, if you choose to use our Site and wish to exercise such rights, you can contact us and we will do our best to honor your request consistent with applicable laws. Note that by using our U.S.-based Site, you consent to your data being transferred to the U.S.

7. Data Retention

We will retain your personal information only for as long as necessary to fulfill the purposes for which we collected it, as described in this Privacy Policy, and/or as long as required by law or legitimate business purposes. In practice, this means:

·         Order and Transaction Data: If you make a purchase, we will keep a record of your order and the personal information associated with it (such as your name, email, billing/shipping address, and transaction details). We retain this information for our accounting and tax records, to handle any disputes or returns, and for warranty/service purposes. Typically, we might retain sales records for at least 7 years (which is a common requirement for tax and financial records in the U.S.). Even if you request deletion of your data, we may need to keep certain order information to comply with legal obligations (we will inform you if so).

·         Account Information: If you create an account on our Site, we will keep your account information until you deactivate your account or request deletion. If an account is inactive for an extended period (for example, a few years), we may choose to delete it as part of a cleanup, but we are not obligated to do so.

·         Marketing Data: We retain information on your marketing preferences (like having your email on our mailing list) until you opt out or unsubscribe. If you unsubscribe from marketing emails, we will stop sending you emails, but we may keep your email on a suppression list to ensure we honor your opt-out going forward. We may also retain logs of promotional communications sent to you (for legal compliance, e.g., proving we honored opt-out requests).

·         Analytics Data: Data collected via Google Analytics or other analytics tools may be stored by those providers. For example, Google Analytics retains certain aggregated data; we have control to set certain retention periods for user-level data (commonly 14 months or so). We do not personally identify users via analytics data in our own systems. Any aggregated analytics reports may be kept indefinitely to analyze long-term performance.

·         Customer Service Communications: If you contacted us (via email, chat, or phone), we may retain those communications and our responses for a period of time (to train our team, to refer back if you have further issues, or to have a record in case of legal matters). Typically, we might keep customer service emails for a couple of years unless you request deletion earlier.

·         Backup and Archival: Please note that residual copies of your personal information might remain in routine backups of our systems (e.g., backup files on server) for some additional time. However, these are secured and only accessed if needed for disaster recovery. When backups expire, they are deleted/destroyed.

When we no longer have a legitimate need or legal obligation to retain your personal information, we will securely delete or anonymize it. For example, we might anonymize usage data so it no longer can be associated with you, and then retain that aggregated data for analytical purposes.

8. Data Security

The security of your personal information is extremely important to us. We implement a variety of security measures to protect your data:

·         Encryption: The Site is secured via SSL (Secure Socket Layer) encryption. This means that when you enter personal information (like your credit card number or login credentials) on our Site, that data is encrypted during transmission to our servers, making it much harder for anyone to intercept. You can verify you’re on a secure page by looking for “https” in our URL and/or a lock icon in your browser address bar.

·         Payment Security: We adhere to PCI DSS (Payment Card Industry Data Security Standard) compliance through our payment providers. Credit card data is handled by our PCI-compliant payment gateway and tokenized; we do not store your full credit card information on our systems.

·         Access Controls: Personal information within our systems is limited to those employees, contractors, and service providers who need to know it to perform their duties (for example, our fulfillment team needs your address to ship packages, our customer service needs your order details to assist you). Access to systems is protected by authentication and employees are trained on the importance of confidentiality.

·         Secure Infrastructure: Shopify (our website host) maintains secure data centers and robust security practices. We rely on their security measures including firewalls, network monitoring, and intrusion detection systems. We also keep our software, plugins, and integrations up-to-date to patch security vulnerabilities.

·         Monitoring and Testing: We monitor our Site for potential vulnerabilities and attacks. We also periodically review our security procedures and may employ outside security assessments or audits to ensure our systems remain protected.

·         Incident Response: In the unfortunate event of a data breach or security incident that affects your personal information, we will act promptly to contain the issue, mitigate any harm, and notify affected parties and regulators as required by law.

Despite all these measures, no method of transmission over the Internet or electronic storage is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your personal data, we cannot guarantee absolute security. You can also play a part in keeping your data secure by maintaining the confidentiality of your account password and notifying us immediately if you suspect any unauthorized access to your account.

9. Children’s Privacy

Our Site and services are not intended for children under the age of 13. We do not knowingly solicit or collect personal information from children under 13 years old. If you are under 13, please do not provide any personal information on this Site. Parents or legal guardians should supervise their children’s internet activities and consider using parental control tools.

If we learn that we have inadvertently collected personal information from a child under 13, we will take steps to delete that information promptly. If you believe that a child under 13 may have provided us personal information (for example, by placing an order or signing up with false age information), please contact us so we can investigate and delete the data.

If we ever offer products or content that appeal to minors (e.g., teens), we will do so in compliance with applicable laws. Teens between 13 and 16 years of age should only use the Site with parental permission and supervision. California residents under 18 years old who are registered users of any site where content can be posted have the right to request removal of content they posted (California’s “Minor Eraser” law). However, our Site does not currently allow posting of content by users (beyond perhaps product reviews); if that changes, we will update our policies accordingly.

10. Changes to This Privacy Policy

We may update or modify this Privacy Policy from time to time to reflect changes in our practices, technologies, legal obligations, or for other operational reasons. When we make changes, we will post the updated Policy on this page with a new “Last Updated” date at the top. If changes are significant, we may also notify you via email or by means of a prominent notice on our Site prior to the change becoming effective (especially if we were to expand how we use your personal data in ways that require new consent).

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of the Site after any changes to this Policy constitutes your acceptance of the revised terms. If you do not agree with any updates, you should stop using our services and may request that we remove your personal information as outlined above.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or about how your personal information is handled, please contact us:

· Email: smile@mylewie.com

· Mail: MyLewie – Privacy Office
 8300 Douglas, Suite 800
 Dallas, TX 75225

(Please note: The mailing address above is provided for privacy inquiries. If you write to us, include “Attn: Privacy Officer” in your correspondence. We recommend email contact for the fastest response.)

We will respond to your inquiries as soon as reasonably possible. Your privacy is important to us, and we will do our best to address any issues or questions you have.