Privacy Policy

Trishoolin House LLC (“we”, “us”) operates Trishoolin House USA, an online bookstore serving customers in United States. This Privacy Policy explains what personal information we collect when you use the site, why we collect it, who we share it with, and your rights under California Consumer Privacy Act of 2018 (CCPA) and CPRA amendments and Federal Trade Commission Act and CAN-SPAM Act of 2003.

1. What we collect

• Account information — your name, email, phone number, shipping and billing addresses. Used to fulfil orders and contact you about them.
• Order & payment information — items purchased, prices, payment method (we do not store full card numbers; payments are processed by our PCI-compliant payment partners).
• Browsing data — pages viewed, products searched, IP address, device type, browser. Used to operate the site, prevent fraud, and improve search relevance. Cookies are limited to those strictly necessary unless you opt in to analytics.
• Communications — emails you send us, transcripts of customer-support chats. Retained for up to 24 months for service quality.

2. Why we collect it

• To process orders, payments, and refunds.
• To send order confirmations, shipping updates and customer-support replies.
• To prevent fraud, abuse, and chargeback disputes.
• To improve the site (anonymised aggregate analytics only).
• To send you marketing emails — only if you opt in. You can unsubscribe at any time via the link at the bottom of every marketing email.

3. Who we share it with

We share personal information only with parties strictly necessary to operate the site:

• Payment processors (Stripe, Razorpay) for transaction processing.
• Shipping carriers (Australia Post, USPS, Royal Mail, India Post, Aramex, etc.) for delivery.
• Order management providers (ShipStation, Shiprocket) to print labels and fetch tracking.
• Email delivery providers for transactional and (opt-in) marketing email.

We never sell your personal information. We may disclose information to law-enforcement agencies if compelled by valid legal process, and only to the extent strictly required.

4. Your rights

• Access — request a copy of the personal data we hold about you.
• Correction — ask us to correct inaccurate data.
• Deletion — ask us to delete your account and data, subject to records we are required to keep for tax / accounting purposes (typically 7 years for invoices).
• Portability — request your data in a machine-readable format.
• Object — object to processing for marketing purposes at any time.
• Complain — lodge a complaint with the California Privacy Protection Agency (CPPA) if you believe we have mishandled your data.

To exercise any of these rights, email support-us@trishoolinhouse.com. We respond within 30 days.

5. Data retention

We keep order records for 7 years (tax compliance), customer accounts until you ask us to delete them, and browsing-log records for 90 days. Backups roll off within 35 days of the live deletion.

6. Where your data is stored

Data is stored on encrypted servers in the cloud (PostgreSQL on managed infrastructure, Redis cache, object storage for images). We use providers in regions appropriate for the marketplace; specifically:

• Trishoolin House USA order data is stored in Delaware, USA-region cloud servers.
• Payment data is held by our processor and never reaches our systems beyond a token reference.

7. Children

The site is not directed at children under 13 (or 16 in the UK and EU). If you believe a child has provided us their data, contact us and we will delete it.

8. Changes to this policy

We may update this policy from time to time. The “Effective” date at the top records the most recent revision. Material changes are also surfaced on the site for 30 days before they take effect.

9. Contact

Questions about this policy? support-us@trishoolinhouse.com.