We collect various types of information to provide, maintain, and improve our services. The information we collect falls into the following categories:

1.1 Personal Information You Provide

When you interact with our website, create an account, make a purchase, or communicate with us, you may voluntarily provide the following personal information:

Account Registration Information:

• Full name (first and last name)
• Email address
• Phone number (mobile or landline)
• Date of birth (DOB) - required for age verification purposes
• Account password (encrypted and securely stored)

Shipping and Billing Information:

• Shipping address (street address, city, state, ZIP code, country)
• Billing address (if different from shipping address)
• Delivery instructions or preferences

Payment Information:

Payment information is processed securely by our third-party payment processor. We do not store full credit card numbers, CVV codes, or complete banking information on our servers. We may retain:

• Last four digits of your credit/debit card
• Card type (Visa, Mastercard, etc.)
• Expiration date
• Billing name and address
• Transaction history and payment metadata

Order and Purchase Information:

• Order history (products purchased, quantities, prices)
• Product preferences and shopping cart contents
• Wish lists or saved items
• Return and refund history

Communication and Support Information:

• Customer service inquiries and correspondence
• Product reviews, ratings, or feedback
• Survey responses or contest entries
• Chat transcripts or support ticket information

Marketing and Loyalty Program Information:

• SMS opt-in consent and phone number
• Email marketing preferences and subscription status
• Loyalty or rewards program membership details
• Referral information (names and contact details of referred individuals)
• Birthday or anniversary dates (for special offers and promotions)
• Social media handles or profile information (if you choose to link accounts)

1.2 Information Collected Automatically

When you visit our website, we automatically collect certain information about your device, browsing behavior, and interaction with our services. This information is collected through cookies, web beacons, log files, and other tracking technologies.

Device and Technical Information:

• IP address (Internet Protocol address)
• Device type (desktop, mobile, tablet)
• Operating system and version (Windows, macOS, iOS, Android)
• Browser type and version (Chrome, Safari, Firefox, Edge)
• Screen resolution and display settings
• Device identifiers (such as advertising ID or device fingerprint)
• Language preferences and time zone settings

Browsing and Usage Information:

• Pages viewed and time spent on each page
• Click-through paths and navigation patterns
• Referring website or source (how you arrived at our site)
• Search queries entered on our website
• Date and time of visits and interactions
• Links clicked and buttons pressed
• Products viewed, added to cart, or purchased

Location Information:

• Approximate geographic location based on IP address (city, state, country)
• Time zone derived from device settings

1.3 Age Verification Data

Because our products are restricted to individuals who meet the minimum legal age requirement (18 years or older, or 21 years or older depending on your state or local jurisdiction), we collect and process age verification information:

• Date of birth (DOB) - stored in your account profile
• Age verification status - tracked via session cookies and account flags
• Verification timestamp - when you last confirmed your age
• Age verification cookies - persistent for up to 7 days, reset weekly to re-verify

If you fail age verification, you will be redirected away from our website. We do not knowingly collect or retain information from individuals who do not meet the minimum age requirement.

1.4 Cookies and Tracking Technologies

We use cookies, web beacons, pixels, and similar tracking technologies to enhance your browsing experience, analyze site usage, and deliver personalized content and advertising. Cookies are small text files stored on your device that help us remember your preferences and improve our services.

Types of Cookies We Use:

Essential Cookies (Required):

These cookies are necessary for the website to function properly and cannot be disabled without affecting site functionality.

• Session cookies - maintain your login status and shopping cart
• Age verification cookies - track age verification status
• Security cookies - prevent fraud and protect your account
• Authentication cookies - verify your identity when logged in

Functional Cookies:

These cookies enhance functionality and personalization but are not essential for basic site operation.

• Preference cookies - remember your language, region, and display settings
• Saved cart cookies - preserve items in your shopping cart between visits
• Wish list cookies - save products you've marked for later

Analytics Cookies:

These cookies help us understand how visitors use our website so we can improve performance and user experience.

• Google Analytics cookies - track page views, session duration, and user behavior
• Shopify analytics cookies - monitor e-commerce metrics and conversion rates
• Performance monitoring cookies - identify technical issues and optimize loading speed

Advertising and Marketing Cookies:

These cookies are used to deliver relevant advertisements and track the effectiveness of marketing campaigns.

• Remarketing cookies - show you relevant ads on other websites after visiting our site
• Conversion tracking pixels - measure the success of advertising campaigns
• Social media cookies - enable sharing and track engagement on social platforms
• Third-party advertising cookies - delivered by advertising networks and partners

You can control cookie preferences through your browser settings. However, disabling certain cookies may limit your ability to use some features of our website. To learn more about managing cookies, visit your browser's help section.

Do Not Track (DNT) Signals

Some web browsers have a "Do Not Track" (DNT) feature that signals to websites that you do not want your online activities tracked. At this time, we do not respond to DNT signals or similar mechanisms. However, you can manage your cookie preferences and opt out of certain tracking through your browser settings or by using the opt-out tools provided by third-party advertising networks.

1.5 Information from Third-Party Sources

We may receive information about you from third-party sources, including:

• Payment processors - transaction data and fraud prevention information
• Shipping carriers - delivery status, tracking updates, and address verification
• Marketing platforms - engagement data, email delivery status, and campaign metrics
• Social media platforms - profile information if you link your social media accounts
• Analytics providers - aggregated demographic and interest data
• Fraud prevention services - risk assessment and security verification data

We use the information we collect for the following purposes:

2.1 Order Processing and Fulfillment

• Process and complete your orders
• Arrange shipping and delivery through third-party carriers
• Send order confirmations, shipping notifications, and delivery updates
• Process payments and prevent fraudulent transactions
• Handle returns, refunds, and exchanges

2.2 Account Management

• Create and maintain your customer account
• Authenticate your identity and secure your account
• Manage your preferences, wish lists, and saved items
• Track your order history and loyalty program points

2.3 Customer Service and Support

• Respond to your inquiries, questions, and support requests
• Resolve disputes and address complaints
• Provide product information and recommendations
• Improve customer service quality and training

2.4 Marketing and Communications

• Send promotional emails about new products, sales, and special offers (with your consent)
• Deliver SMS messages about order updates and exclusive deals (with your opt-in)
• Personalize marketing content based on your preferences and purchase history
• Administer contests, sweepstakes, surveys, and promotions
• Send birthday or anniversary messages and special offers (if you've provided this information)

2.5 Loyalty and Rewards Program

• Track your purchases and award loyalty points
• Process referrals and reward you for referring friends
• Provide exclusive member benefits and early access to sales
• Send personalized recommendations based on your purchase patterns

2.6 Website Improvement and Analytics

• Analyze site traffic, user behavior, and engagement metrics
• Identify popular products and optimize product offerings
• Test new features and improve website functionality
• Troubleshoot technical issues and enhance site performance
• Conduct market research and competitive analysis

2.7 Advertising and Remarketing

• Display targeted advertisements on our website and third-party platforms
• Retarget visitors with relevant ads after they leave our website
• Measure the effectiveness of advertising campaigns
• Build lookalike audiences for marketing purposes

2.8 Security and Fraud Prevention

• Detect, prevent, and investigate fraudulent transactions and activity
• Monitor for unauthorized access or security breaches
• Verify age compliance and enforce age restrictions
• Protect against spam, abuse, and other harmful activities

2.9 Legal Compliance and Protection

• Comply with applicable laws, regulations, and legal obligations
• Respond to legal requests, court orders, and government inquiries
• Enforce our Terms of Service and other policies
• Protect our rights, property, and safety, as well as those of our users and the public
• Maintain records for auditing and compliance purposes

We do not sell, rent, or trade your personal information to third parties for their own marketing purposes. However, we may share your information with trusted third-party service providers and partners under the following circumstances:

3.1 Service Providers and Business Partners

We work with third-party companies that help us operate our business and provide services to you. These service providers are contractually obligated to use your information only as necessary to perform services on our behalf and are prohibited from using it for their own purposes.

E-Commerce Platform:

• Shopify - hosts our online store, processes orders, and manages customer data
• Third-party apps and plugins - enhance website functionality (e.g., product reviews, live chat)

Payment Processors:

• High-risk payment processors - securely process credit card and other payment transactions
• Fraud detection services - assess transaction risk and prevent chargebacks

Shipping and Logistics:

• Shipping carriers (e.g., USPS, UPS, FedEx, DHL) - deliver your orders
• Fulfillment centers - store inventory and prepare shipments

Marketing and Communications:

• Email service providers (e.g., Klaviyo, Mailchimp) - send marketing emails and newsletters
• SMS messaging platforms (e.g., Nextiva) - deliver text message notifications and promotions
• Customer relationship management (CRM) systems - manage customer interactions

Analytics and Advertising:

• Google Analytics - analyze website traffic and user behavior
• Advertising networks - deliver targeted ads and measure campaign performance
• Social media platforms - track conversions and enable social sharing

3.2 Legal and Regulatory Compliance

We may disclose your information if required to do so by law or in response to valid legal processes, including:

• Subpoenas, court orders, or legal proceedings
• Government or regulatory requests
• Law enforcement investigations
• Compliance with tax, customs, or import/export regulations

3.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred to the acquiring entity. We will notify you of any such change in ownership or control of your personal information.

3.4 Protection of Rights and Safety

We may disclose your information when we believe in good faith that disclosure is necessary to:

• Protect our rights, property, or safety, or that of our users or the public
• Detect, prevent, or address fraud, security, or technical issues
• Enforce our Terms of Service or other agreements
• Investigate potential violations of law or policy

3.5 With Your Consent

We may share your information with third parties when you have given us explicit consent to do so, such as when you authorize us to share information with a referral partner or social media platform.

4.1 SMS Text Messaging

If you opt in to receive SMS text messages from us, we will use your mobile phone number to send you:

• Transactional messages - order confirmations, shipping notifications, and delivery updates
• Promotional messages - sales announcements, exclusive offers, and new product alerts
• Account notifications - password resets, security alerts, and important account updates
• Loyalty program updates - points balance, rewards redemption, and member benefits

SMS Consent and Opt-In:

• You must explicitly opt in to receive SMS messages by providing your mobile phone number and checking the SMS opt-in box
• Consent is not a condition of purchase - you can make purchases without opting in to SMS
• Message frequency may vary depending on your activity and promotions
• Standard message and data rates from your carrier may apply

How to Opt Out:

• Reply STOP to any SMS message to unsubscribe from all future marketing messages
• Reply HELP for assistance or more information
• Update your SMS preferences in your account settings

Please note that you may still receive transactional SMS messages related to your orders even if you opt out of marketing messages.

4.2 Email Communications

If you provide your email address, we may send you:

• Transactional emails - order confirmations, shipping updates, and receipts
• Marketing emails - newsletters, promotional offers, and product recommendations (with your consent)
• Account-related emails - password resets, security notifications, and policy updates
• Customer service emails - responses to your inquiries and support requests

How to Unsubscribe:

• Click the "Unsubscribe" link at the bottom of any marketing email
• Update your email preferences in your account settings
• Contact our customer support team to opt out

You may still receive transactional and account-related emails even if you unsubscribe from marketing emails, as these are necessary for order fulfillment and account management.

4.3 TCPA Compliance

We comply with the Telephone Consumer Protection Act (TCPA) and related regulations governing SMS and email marketing. We will not sell, rent, or share your phone number or email address with third parties for their marketing purposes without your explicit consent. By opting in to SMS or email communications, you consent to receive automated marketing messages from Emerald Lantern LLC doing business as HerbanVault.

We take the security of your personal information seriously and implement reasonable technical, administrative, and physical safeguards to protect your data from unauthorized access, use, disclosure, alteration, or destruction. Our security measures include:

• Encryption - SSL/TLS encryption for data transmitted between your browser and our servers
• Secure payment processing - PCI-DSS compliant payment processors handle all credit card transactions
• Access controls - restricted access to personal information on a need-to-know basis
• Password protection - encrypted storage of account passwords
• Regular security audits - periodic reviews of our systems and practices
• Firewalls and intrusion detection - network security measures to prevent unauthorized access
• Employee training - staff education on data privacy and security best practices

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials and for any activity that occurs under your account.

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Our data retention practices include:

• Account information - retained for the duration of your account and until you request deletion
• Order history - retained for business operations, tax compliance, and warranty purposes
• Age verification data - retained in accordance with legal requirements and compliance obligations
• Marketing data - retained until you withdraw consent or request deletion
• Customer support records - retained for quality assurance and dispute resolution purposes
• Analytics data - retained in aggregated or anonymized form for business insights

When your information is no longer needed, we will securely delete or anonymize it in accordance with our data retention schedule and applicable laws. If you request deletion of your account or personal information, we will process your request in accordance with Section 9 (Your Privacy Rights).

If you are under the minimum legal age, you are prohibited from:

• Accessing or using our website
• Creating an account
• Making a purchase
• Providing any personal information to us

If we become aware that we have inadvertently collected personal information from an individual who does not meet the minimum age requirement, we will promptly delete such information from our systems. If you believe we have collected information from an underage individual, please contact us immediately using the contact information provided in Section 13.

Our website may contain links to third-party websites, services, or applications that are not owned or controlled by HerbanVault. This Privacy Policy applies only to our website and services. When you click on a third-party link or interact with a third-party service, you will be subject to that third party's privacy policy and terms of use.

We are not responsible for the privacy practices, content, or security of third-party websites or services. We encourage you to read the privacy policies of any third-party sites you visit before providing your personal information.

Third-party services we may integrate with include:

• Social media platforms (Facebook, Instagram, Twitter, TikTok)
• Payment processors
• Shipping carriers
• Customer review platforms
• Advertising networks

Depending on your location, you may have certain rights regarding your personal information. We are committed to honoring these rights and providing you with control over your data.

9.1 General Privacy Rights

You have the following rights with respect to your personal information:

• Right to Access - request a copy of the personal information we hold about you
• Right to Correction - request correction of inaccurate or incomplete information
• Right to Deletion - request deletion of your personal information (subject to certain exceptions)
• Right to Restrict Processing - request that we limit how we use your information
• Right to Data Portability - request a copy of your information in a structured, machine-readable format
• Right to Object - object to certain types of processing, such as direct marketing
• Right to Withdraw Consent - withdraw consent for processing based on consent (e.g., marketing communications)

9.2 California Residents (CCPA/CPRA Rights)

If you are a California resident, you have additional privacy rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

Right to Know:

You have the right to request information about the categories and specific pieces of personal information we have collected, the sources from which we collected it, the purposes for which we use it, and the categories of third parties with whom we share it.

Right to Delete:

You have the right to request deletion of your personal information, subject to certain exceptions (e.g., when we need to retain information to complete a transaction, comply with legal obligations, or detect fraud).

Right to Opt-Out of Sale:

HerbanVault does not sell your personal information to third parties. However, you have the right to opt out if our practices change in the future. You can exercise this right by submitting a request through the "Do Not Sell My Personal Information" link on our website.

Right to Limit Use of Sensitive Personal Information:

You have the right to limit the use and disclosure of sensitive personal information (such as precise geolocation, health data, or financial information) to only what is necessary to provide our services.

Right to Correct:

You have the right to request correction of inaccurate personal information.

Right to Non-Discrimination:

You have the right to exercise your CCPA/CPRA rights without receiving discriminatory treatment, such as being denied goods or services, charged different prices, or provided a different level of service.

How to Exercise Your California Rights:

To exercise any of your California privacy rights, please contact us using the methods described in Section 13. We will verify your identity before processing your request. You may also designate an authorized agent to make a request on your behalf.

9.3 How to Exercise Your Rights

To exercise any of your privacy rights, you may:

• Log in to your account and update your preferences or information
• Contact our customer support team via email or website contact form
• Submit a request through our privacy request portal (if available)
• Opt out of marketing communications by clicking "Unsubscribe" in emails or replying STOP to SMS messages

We will respond to your request within the timeframe required by applicable law (typically 30-45 days). In some cases, we may need to verify your identity or request additional information to process your request. We reserve the right to deny requests that are excessive, repetitive, or manifestly unfounded.

Emerald Lantern LLC operates exclusively within the United States and ships only to U.S. addresses in states where legally permitted. Your personal information is stored and processed on servers located in the United States.

Some of our third-party service providers (such as Shopify, Google Analytics, or payment processors) may store or process your information on servers located outside the United States. By using our services, you consent to the transfer of your information to the United States and other jurisdictions where our service providers operate.

We may use automated systems and algorithms to:

• Detect and prevent fraudulent transactions
• Personalize product recommendations and marketing content
• Analyze user behavior and optimize website performance
• Determine eligibility for promotions or loyalty rewards

These automated processes help us improve your experience and protect our business. However, we do not make solely automated decisions that significantly affect you without human review. You have the right to request human intervention or contest an automated decision by contacting our customer support team.

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or business operations. When we make material changes, we will:

• Post the updated Privacy Policy on our website with a new effective date
• Notify you via email or prominent notice on our website (for significant changes)
• Provide you with an opportunity to review the changes before they take effect (where required by law)

Your continued use of our services after the effective date of the updated Privacy Policy constitutes your acceptance of the changes. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We will respond to your inquiries and requests within a reasonable timeframe in accordance with applicable law.

By using our website or services, creating an account, making a purchase, or providing your personal information to us, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, disclosure, and retention of your information as described herein.

If you do not agree with this Privacy Policy, please do not use our services or provide your personal information to us.