Free Delivery on Thousands of Items

Pre-Black Friday Event | Up to 40% Off

Privacy Policy

This Privacy Policy describes how Parc Decor (the “Site”, “we”, “us”, or “our”) collects, uses, and discloses your personal information when you visit or make a purchase from the Site. By using the Site, you agree to the collection and use of information in accordance with this Policy.

 

Contact

 

If you have any questions, need more information about our privacy practices, or would like to make a complaint, please contact us at privacy@parcdecor.com.

 

Collecting Personal Information

 

When you visit our Site or make a purchase, we collect certain information about you and your device. In this Privacy Policy, “Personal Information” means any information that identifies (or can reasonably identify) an individual. Below we explain what Personal Information we collect and why.

  • Device Information:

    • Purpose of collection: To load the Site properly for you and to perform analytics on Site usage so we can optimize our Site and marketing.

    • Source of collection: Collected automatically when you visit our Site using cookies, log files, web beacons, tags, or pixels (including those from third parties). This may include approximate geolocation based on your IP address (used for things like displaying local currency or content).

    • Disclosure for a business purpose: Shared with our processor Shopify (which hosts our store) and with analytics and advertising partners (explained further below).

    • Personal Information collected: IP address, web browser version, time zone, cookie identifiers, what sites or products you view, search terms, how you interact with the Site (e.g. pages visited, links clicked), and other technical data about your device and connection.

     

  • Order Information:

    • Purpose of collection: To fulfill our contract with you and provide you with products or services. This includes processing your payments, arranging shipping, providing invoices and order confirmations, communicating with you about your order, and screening orders for fraud. We also use this information to follow your preferences – for example, if you opt in, we may send you information or offers about our products or services.

    • Source of collection: Collected directly from you (you provide this information during checkout or account creation).

    • Disclosure for a business purpose: Shared with our processor Shopify (which powers our online store) and other service providers as needed to process payments (e.g. payment gateways), fulfill orders (e.g. warehouses or shipping carriers), and provide customer service.

    • Personal Information collected: Name, billing address, shipping address, payment information (e.g. credit card details or other payment token), email address, and phone number. We do not collect sensitive payment data directly – your payment is processed securely by our payment processor.

     

  • Customer Support Information:

    • Purpose of collection: To provide you with customer support and handle inquiries or complaints.

    • Source of collection: Collected from you when you contact us (such as via email, contact form, or phone).

    • Disclosure for a business purpose: Not routinely shared except as necessary to assist you (for example, we might share details with a shipping carrier to resolve an issue, or with Shopify if needed to troubleshoot a platform problem).

    • Personal Information collected: Name, contact information (such as email address or phone number), and any other Personal Information you choose to provide when you contact us (which could include order numbers, feedback, and the content of your communications).

     

  • User-Generated Content (Reviews and Feedback):

    • Purpose of collection: To enable you to share reviews, ratings, or other content about our products, and to display these to other customers. This helps us improve our products and provides useful information to other shoppers.

    • Source of collection: Collected from you when you voluntarily submit a product review, rating, comment, or any form of user-generated content on our Site or through our review platform.

    • Disclosure for a business purpose: Your reviews or comments may be published on our Site (along with any username or nickname you provide). They may also be shared in our marketing materials or on social media, but we will not publicly display your email, address, or other contact details. We may use third-party services or apps to manage reviews, in which case your content and any personal data in it will be shared with that service provider for the purpose of hosting the reviews.

    • Personal Information collected: Any information you choose to include in your submission. This typically includes the content of your review, rating, photos or videos you upload (if any), and a display name or nickname. It may also include optional details like your location or product preferences if you provide them.

     

We may also collect additional personal information if you participate in special features (for example, if you fill out a survey, enter a contest, or agree to receive SMS updates, we will collect the information you provide for those purposes). We will inform you at the time of collection if any additional personal information is requested and why.

Minors: Our Site is not intended for individuals under the age of 13. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@parcdecor.com to request deletion of that information.

 

Sharing Personal Information

 

We share your Personal Information with certain third parties (service providers and partners) to help us provide our services and fulfill our contracts with you, as described above. We do not sell your personal information for money to third parties. However, as explained in the “Behavioral Advertising” section, we may share your information with advertising partners to deliver personalized ads, which in some jurisdictions (like California) may be considered a “sale” or “sharing” of information. The categories of parties with whom we share data include:

  • Service Providers: We share information with companies that provide services on our behalf. For example, we use Shopify to power our online store, so any information you provide (like orders and site interactions) is stored on Shopify’s platform. You can read more about how Shopify handles personal information in Shopify’s Privacy Policy (available on Shopify’s website). We also share necessary details with payment processors (to charge you for your order), fulfillment and shipping partners (to deliver your products), and cloud storage or IT providers that help us manage our data securely. These service providers are given access only to the information needed to perform their functions and are contractually obligated to protect it and use it only for those purposes.

  • Advertising and Marketing Partners: As part of our marketing efforts, we may share limited personal information with third-party advertising platforms and social media networks to reach people who are likely to be interested in our products. For example, we might share your email address (in a hashed, privacy-protective format) with platforms like Facebook/Meta or Google to create “custom audiences” for our ads (so that we can show ads to our existing customers or others with similar interests). We also use advertising partners such as Google Ads, Facebook (Meta), TikTok, Snapchat, Pinterest, LinkedIn, Reddit and others to display ads to you on their platforms. We may upload customer information to these platforms or allow tracking technologies (like the Facebook Pixel, TikTok Pixel, etc.) on our Site, which will collect data about your visit (like pages viewed, items added to cart, etc.) and use it to target ads or measure ad effectiveness. These partners may use cookies or similar technologies to collect data for ad targeting and analytics. We only engage in such data sharing where we have a lawful basis to do so (for example, your consent to advertising cookies where required).

  • Analytics Providers: We use third-party analytics tools (such as Google Analytics) to understand how users find and use our Site. These tools may use cookies and similar technologies to collect information about your device and browsing actions (as described in “Device Information” above). The information shared with analytics providers is typically anonymized or aggregated (for example, Google Analytics will give us general statistics, not your individual browsing sessions). You can opt out of Google Analytics as described in the “Behavioral Advertising” section of this Policy.

  • Business Transfers: If we ever merge with, or are acquired by, another company, or if we sell some or all of our business assets, your personal information could be among the transferred assets. If such a transfer occurs, we will require the receiving party to respect your personal information in a manner consistent with this Privacy Policy.

  • Legal Compliance and Protection: We may disclose your personal information if required to do so by law or legal process. For instance, if we receive a subpoena, court order, or lawful request from authorities, or to protect and defend our rights or property, or the safety of our customers and others (for example, disclosing information to law enforcement to assist in fraud prevention or investigation).

 

We do not share your personal information with unrelated third parties for their own direct marketing purposes unless you have explicitly given us consent to do so.

 

Behavioral Advertising and Tracking


As described above, we use your personal information to provide you with targeted advertisements and marketing communications we believe may be of interest to you. This section provides more details on how that works and how you can opt out of certain types of advertising.

How we use data for targeted advertising: We collect or receive information about your online activities and purchases to learn what you might be interested in. For example, we use Google Analytics to understand how customers use our Site (you can read about how Google uses data in Google’s Privacy Policy). We also use data about your interactions with our Site and with our ads on other sites to tailor the advertising we show you. This might include information like your Site browsing history, what products you viewed or purchased, and demographic or preference information (if we have it). We may share this information directly with advertising partners or via technologies like cookies and pixels that track your behavior on our Site. This allows us to “retarget” you with ads on other platforms and also to reach new customers who have similar interests.

Example: If you browse our Site and look at a particular product, you might later see an ad for that product on Facebook or Google. This is made possible by a cookie or pixel (small code) that our Site and advertising partners use to recognize your device and link your browsing activity to an advertising platform.

For more information on how targeted advertising works generally, you can visit the Network Advertising Initiative’s educational page: How Does Online Advertising Work?

Advertising partners and your choices: We partner with several advertising networks and platforms. Each of these offers you the ability to opt out of targeted ads on their services. For example:

  • Facebook (Meta): You can adjust your ad preferences on Facebook to limit targeted ads. See Facebook Ad Settings to opt out of targeted ads on Facebook and Instagram.

  • Google: You can opt out of Google’s personalized ads by visiting Google Ads Settings.

  • Bing: To opt out of personalized ads on Bing (Microsoft), visit Microsoft Advertising opt-out.

  • Pinterest: You can adjust your preferences for Pinterest ads. See Pinterest’s guide on personalized ads for more information.

  • Other Platforms (TikTok, Snapchat, LinkedIn, Reddit, etc.): For platforms not listed above, please check the privacy or settings sections of those apps/websites. Many platforms allow you to opt out of targeted advertising via your user account settings or device privacy settings. For example, on TikTok or Snapchat, you can usually find options in your profile settings under privacy/ads to control personalized ads.


In addition to the above, you can generally opt out of some interest-based advertising by visiting the Digital Advertising Alliance’s opt-out portal at optout.aboutads.info. This tool allows you to opt out of many participating advertising networks’ targeted ads. Similarly, if you are in Europe, you can visit the European Interactive Digital Advertising Alliance (EDAA) opt-out site (YourOnlineChoices.eu) to manage preferences for European advertising cookies.

Please note: Opting out of targeted advertising does not mean you will no longer see ads; it means the ads you see will be less personalized to your interests. Also, if you clear your cookies or use a different browser/device, you may need to opt out again.

Shopify Audiences: We participate in Shopify Audiences, a program offered by Shopify to help merchants find new customers. This involves Shopify aggregating purchase information from participating merchants to create groups of consumers (audiences) with common interests or behaviors. We may share information about your purchases and your email (in hashed form) with Shopify Audiences. This information is combined with data from other merchants to create audience segments that are shared with advertising platforms (like Facebook or Google) to enable targeted campaigns. For example, if you bought home décor items from us, Shopify Audiences might add you to a “home décor interest” group which other Shopify merchants can target with their ads, and vice versa. No personal details (like your name or plain email) are revealed to other merchants. You can opt out of being included in Shopify Audiences by contacting us at any time, and we will ensure your data is excluded from future audience sharing.

Cookies and similar technologies: Many targeted advertising activities rely on cookies or pixels. For more details on how we use cookies on our Site and how you can control them, see the “Cookies” section of this Policy below.

 

Email and SMS Communications

 

If you subscribe to our marketing communications (such as newsletters, promotional emails, or SMS/text alerts), we will use your personal information (e.g. your email address or phone number) to send you updates about our products, services, and offers. We use a third-party service (for example, Klaviyo for emails) to manage our mailing list and send these messages. Your consent will be obtained where required (for instance, we only send marketing texts if you’ve explicitly opted in).

You can unsubscribe from marketing emails at any time by clicking the “unsubscribe” link in any email we send, or by contacting us at privacy@parcdecor.com with your request. Please note that it may take up to 7 business days to process your email unsubscribe request, during which you may still receive emails already in the queue. For SMS messages, you can typically reply “STOP” to any message to unsubscribe. Even if you opt out of marketing communications, we may still send you transactional messages about your orders or ongoing business with us (such as order confirmations or shipping updates).

 

Using Personal Information

 

We use the personal information we collect from you for a variety of business purposes, all aimed at providing and improving our services. This includes:

  • Providing and improving our services: Fulfilling your orders and transactions, processing payments, shipping products, and notifying you about order status. We also use data to personalize your experience (for example, remembering your preferences or items in your cart) and to improve the content and functionality of our Site.

  • Communicating with you: Sending you confirmations, invoices, technical notices, updates, security alerts, and support and administrative messages. We also respond to your inquiries, requests, or complaints through customer support channels.

  • Marketing and advertising: Sending you marketing communications (with your consent where required), showing you targeted advertisements as described in the Behavioral Advertising section, and measuring the effectiveness of our marketing campaigns.

  • Analytics and fraud prevention: Monitoring and analyzing usage of the Site so we can understand trends and user preferences, and detecting, investigating, and preventing fraudulent transactions or other illegal activities. For example, we use automated systems to screen orders for signs of fraud or suspicious activity.

  • Legal and compliance: Complying with applicable laws, regulations, and legal processes. For instance, keeping records for tax purposes, honoring your data subject rights requests, or disclosing information as required by law or court order.

  • Other purposes with your consent: We may use your information for any other purpose that you specifically consent to. If we ever need to use your personal data in a way not described in this Policy, we will explain and request your permission as required.

 

We will not use your personal information for purposes that are incompatible with those above without informing you and obtaining your consent if necessary.

 

Lawful Basis for Processing (EEA/UK Visitors)


If you are a visitor or customer from the European Economic Area (EEA) or the United Kingdom, we are required to inform you of the lawful bases on which we process your personal data under the General Data Protection Regulation (GDPR) and UK data protection law. We rely on the following legal justifications:

  • Performance of a Contract: We need to process your personal data to fulfill our contract with you. For example, when you place an order, we use your information to process payment and ship your items.

  • Your Consent: In certain cases, we ask for your consent to process your information, such as when you agree to receive marketing emails or when you accept non-essential cookies. You have the right to withdraw your consent at any time (for example, you can unsubscribe from emails or decline cookies through our cookie banner).

  • Legitimate Interests: We process certain data for our legitimate business interests, in a way that does not outweigh your rights and freedoms. For instance, it is in our legitimate interest to understand our customers (analytics), to improve our services, to secure our Site, and to carry out marketing in a responsible way. When we rely on this basis, we consider and balance any potential impact on you and your rights.

  • Legal Obligation: We process personal data where we are legally required to, such as retaining transaction records for tax audits or responding to lawful requests by public authorities.

  • Vital Interests: In rare cases, we might need to process data to protect someone’s life or safety. (This is unlikely to apply to an e-commerce context, but is included for completeness under GDPR.)

  • Public Interest: Similarly rare for us, but if ever necessary, we may process data in the public interest or for official purposes, as allowed by law.

 

 

Retention of Personal Information

 

We retain your personal information only for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.

  • Order and Account Information: If you make a purchase, we will keep your order information in our records unless and until you ask us to delete it. This is both for our business records and to support customer service (for example, if you need proof of purchase or order history). Note that we may be required by law to keep certain information for a specified period (for instance, financial records for tax purposes). In general, we retain transaction records for at least the minimum period required by applicable law (which can be 7 years or more under some regulations).

  • Marketing Information: If you have subscribed to our marketing communications, we retain your contact information for as long as you remain subscribed. If you unsubscribe, we will stop sending you messages, but may keep your contact details on a suppression list to ensure we honor your opt-out going forward. We also keep records of consents (e.g. when and how you opted in) as required by law.

  • Analytics Data: Analytics data collected via cookies and similar technologies may be retained as long as is necessary for analytical purposes. Some analytics cookies (like Google Analytics) have their own retention settings, which we configure to align with our needs. We generally review aggregated analytics data over time but do not hold personally identifiable analytics data indefinitely.

  • User-Generated Content: If you post a review or other content on our Site, it may remain visible until you ask us to remove it (assuming it’s within our control to remove – for example, we can remove reviews posted on our own site, but if you posted content on a social media page we operate, you would need to delete it or request our assistance).

  • Deletion: When we have no ongoing legitimate business need or legal requirement to retain your personal information, we will either delete it or anonymize it (so it can no longer be associated with you). For example, we may aggregate data so it’s no longer linked to you and use it for business analytics.

 

If you ever wish to close your account or request that we delete your personal information, please contact us at privacy@parcdecor.com. We will process such requests in accordance with the laws applicable to your information (see the “Your Rights” section below for more on deletion rights).

 

Automated Decision-Making and Profiling

 

Automated decision-making refers to decisions made solely by algorithms or computers, without human involvement, that have a legal or similarly significant effect on individuals. Profiling means analyzing personal data to evaluate certain things about a person (like their preferences or behavior).

We do not engage in fully automated decision-making that has a legal or significant effect on you without human review. In other words, no computer-only decisions are made about you that would seriously affect your rights (such as creditworthiness or similar).

However, we do use some automated processes as part of our services, particularly for fraud prevention and advertising:

  • Fraud Prevention: Our e-commerce platform (Shopify) automatically performs limited fraud screening on orders. For example, it may temporarily flag or block certain transactions if they appear highly suspicious (such as a pattern of failed payment attempts or if an order appears to be from a high-risk IP address). These measures help protect us and our customers from fraudulent activity. These automated tools do not permanently refuse transactions without human intervention; if your order is flagged, our team will review it manually to make a final decision.

  • Personalized Advertising Profiles: As described in the Behavioral Advertising section, we use automated analysis to create advertising audiences or to decide which ad to show you. For instance, an automated system might determine that you are interested in “home décor” based on your browsing and purchase history, and you may then see more home décor ads. This profiling is not used for any purpose that would produce legal effects on you; it only affects the marketing content you see.


Your rights regarding automated decision-making: If you are in the EEA or UK, you have the right not to be subject to a decision based solely on automated processing (including profiling) if it produces a legal effect or similarly significantly affects you. In practice, our automated processing is limited to the uses described above (fraud screening and ad personalization). If you believe we have applied an automated decision about you that is unfair or incorrect, you have the right to contact us and have a person review the decision.

 

“Do Not Sell or Share My Personal Information” (Notice for California Residents)

 

We do not sell your personal information for monetary compensation to third parties. However, the term “sell” under the California Consumer Privacy Act (CCPA) (as amended by the California Privacy Rights Act, CPRA) is defined broadly to include sharing of personal information for advertising or other benefits. Some of the data sharing we engage in (for example, with advertising partners via cookies and pixels) may be considered a “sale” or “sharing” of personal information under California law.

Categories of personal information disclosed for advertising that may be considered a “sale/share” under California law: Identifiers (like cookie IDs or IP address), internet or network activity information (like browsing history or interactions with our Site and ads), and in some cases contact information (like an email hashed and shared for audience matching).

Opt-out rights: If you are a California resident, you have the right to direct us not to sell or share your personal information with third parties for valuable consideration or for cross-context behavioral advertising. We honor Global Privacy Control (GPC) signals – if our Site detects a GPC signal from your browser indicating “Do Not Sell or Share”, we will treat that as an opt-out of sale/sharing for the device or browser you are using. Alternatively, you (or an authorized agent acting on your behalf) can request to opt out by contacting us at privacy@parcdecor.com. There is no charge, and we will not discriminate against you for exercising this right.

Once you opt out, we will, as applicable, stop the “sale” or “sharing” of your personal information. This may mean that certain personalized features (like tailored ads) will stop on our Site and associated services, as they often rely on such data sharing.

 

Your Rights

 

Depending on where you live, you may have certain legal rights regarding your personal information. We are committed to honoring these rights and have outlined the key rights below:

 

Rights of Individuals in the EEA/UK (GDPR)


If you are located in the European Economic Area or the United Kingdom, you have the following rights under GDPR (subject to certain limitations and exceptions):

  • Right to Access: You have the right to request a copy of the personal data we hold about you, as well as information about how we use it. This is sometimes called a “data subject access request.”

  • Right to Rectification: You have the right to request that we correct any inaccuracies in your personal information or complete information that is incomplete.

  • Right to Erasure: You have the right to request that we delete your personal information. This right is also known as the “right to be forgotten.” We will honor deletion requests unless we are required to retain the data by law or for legitimate business needs (for example, we might retain limited information to comply with a legal obligation or to resolve disputes).

  • Right to Restrict Processing: You can ask us to restrict or “pause” the processing of your personal data if you contest its accuracy, our use is unlawful, or you need us to preserve it for legal claims, or while you object to processing (see below).

  • Right to Object: You have the right to object to our processing of your personal information when we rely on legitimate interests as the legal basis. If you lodge an objection, we will no longer process that personal data unless we have compelling legitimate grounds that override your rights or we need to continue processing for the establishment, exercise or defense of legal claims. You also have the right to object at any time to processing of your data for direct marketing purposes – if you object, we will stop using your data for marketing.

  • Right to Data Portability: You have the right to request that we provide your personal data to you or to another company in a structured, commonly used, machine-readable format, where technically feasible. This typically applies to information you provided to us and that we process by automated means based on your consent or a contract with you.

  • Right not to be subject to Automated Decisions: As noted in the automated decision-making section, you have the right not to be subject to a decision based solely on automated processing (including profiling) that significantly affects you, unless it is necessary for a contract, authorized by law, or based on your explicit consent. We do not engage in such processing without human oversight, as explained above.


If you wish to exercise any of these rights, please contact us at privacy@parcdecor.com. We may request additional information to verify your identity before fulfilling your request (this is to protect your data from unauthorized access). We will respond to your request within the time frame required by law (typically within one month for most requests under GDPR). Please note that these rights are not absolute – there are some situations where we may be unable to fulfill a request (for example, we cannot provide information we don’t have, and we might need to retain certain data if required by law), but we will explain any such situation to you in our response.

Data Transfers: Personal information that you provide through our Site may be processed in countries outside of Europe (including in Canada and the United States where our company and some of our service providers are based). We take steps to ensure that appropriate safeguards are in place when transferring data internationally. For example, Shopify stores EEA/UK customer data initially on servers in Ireland, and then may transfer it to the U.S. and Canada. These transfers are protected by Standard Contractual Clauses or other approved transfer mechanisms as described in Shopify’s GDPR Whitepaper. By using our Site or submitting your information, you understand that your personal data may be transferred to our facilities and those third parties with whom we share it as described in this Policy.

 

Rights of California Residents (CCPA/CPRA)

 

If you are a resident of California, you have specific rights under the California Consumer Privacy Act (as amended by the CPRA):

  • Right to Know: You have the right to request that we disclose the personal information we have collected, used, disclosed, and (if applicable) sold or shared about you over the past 12 months. This includes the categories of personal information, the categories of sources, the business or commercial purposes for collecting it, the categories of third parties we share it with, and the specific pieces of personal information we hold about you.

  • Right to Delete: You have the right to request that we delete personal information we collected from you and retained, subject to certain exceptions. For example, we may retain information needed to complete the transaction for which it was collected, to provide a good or service you requested, to detect security incidents, to comply with legal obligations, or other reasons allowed by law.

  • Right to Correct: You have the right to request that we correct inaccurate personal information that we maintain about you.

  • Right to Opt-Out of Sale or Sharing: As detailed in the section “Do Not Sell or Share My Personal Information,” you have the right to opt out of the sale or sharing of your personal information to third parties. We do not sell data for money, but we do share data for advertising which you can opt out of.

  • Right to Limit Use of Sensitive Personal Information: We typically do not collect or process “sensitive personal information” as defined by California law (such as precise geolocation, Social Security numbers, driver’s license numbers, financial account passwords, etc.) outside of what is necessary for the core transaction (e.g., payment card info for a purchase, which we handle securely). In any case, California residents have the right to limit the use or disclosure of sensitive personal information if we were to use it for purposes beyond what is necessary to provide the goods or services. We do not use or disclose sensitive information for unrelated purposes.

  • Right of Non-Discrimination: We will not discriminate against you for exercising any of these rights. This means we won’t deny you goods or services, charge you a different price, or provide a different level of quality because you exercised your rights. (However, please note that if you ask us to delete your data, and that data is necessary to provide you with a service, we may not be able to continue providing that service. For example, if you ask us to delete all your account information, we would no longer be able to maintain your account. This is considered a consequence of deletion, not discrimination.)


Exercising Your California Rights: To make a request under the CCPA/CPRA, you (or your authorized representative) can contact us at privacy@parcdecor.com with the subject line “California Rights Request” and let us know what you wish to do (e.g., see your data, delete your data, etc.). We will need to verify your identity to process certain requests, which may involve asking you to provide information that matches our records (for instance, verifying your email address or a recent order number). Authorized agents must provide proof of authorization. We aim to respond to verifiable requests within 45 days as required by law (or inform you if we need an extension). For opt-out of sale/sharing requests, we will act on those as soon as possible and at most within 15 business days.

 

Other State or International Rights


Privacy laws in other jurisdictions (such as other U.S. states or countries) may provide their residents with similar rights to access, delete, or correct personal information, and/or to opt out of certain data processing activities. We will honor valid requests received from individuals to exercise applicable privacy rights in accordance with the laws that apply to us. For example:

  • Residents of certain U.S. states (such as Colorado, Virginia, Connecticut, Utah, etc.) have rights similar to those of California residents regarding access, deletion, correction, and opt-out of targeted advertising or sales. If you are a resident of one of these states, you can exercise your rights by contacting us, as described above, and we will process your request in accordance with applicable state law.

  • Residents of Canada have the right to access personal information we hold about them and to request corrections for inaccuracies, under Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA) or other provincial laws. Canadian individuals can contact us to make such requests.

  • Residents of Australia, New Zealand, Brazil (under the LGPD), and other countries may also contact us to inquire about their rights. We will do our best to accommodate requests regarding personal information in line with the principles of applicable laws.


In summary, no matter where you are located, we believe you should have control over your personal information. If you have a question or request about your data, please reach out to us at privacy@parcdecor.com, and we will be happy to assist you.

 

Cookies and Tracking Technologies

 

A cookie is a small piece of data (text file) that is downloaded to your device when you visit a website. Cookies are widely used by online services to, for example, make websites work or to work more efficiently, as well as to provide reporting information and enable personalization. We use several types of cookies on our Site, including necessary cookies, performance/analytics cookies, advertising cookies, and social media/content cookies. We also use related technologies like web beacons (pixel tags), tracking scripts, and local storage for similar purposes.

Why we use cookies: Cookies help improve your browsing experience by allowing the website to remember your actions and preferences (such as login status, cart contents, and region selection) so you don’t have to re-enter information every time you navigate between pages or return to the Site. Cookies also provide information on how people use the website (for instance, whether it’s a first-time visit or a return visitor, and which pages are most visited).

Cookies and data collected: Below is a summary of the cookies that may be set on your device when you use our Site, and why we use them.

 

Cookies Necessary for the Functioning of the Store

 

These cookies are essential for the basic functioning of our online store. Without them, the website would not work properly, and certain core features would not be available (like adding items to your cart or proceeding through checkout). Because they are necessary for the site to operate, they are generally used without requiring consent.

Name

Function

Duration

_ab

Used in connection with access to the admin area of our website (Shopify platform). Helps maintain admin login session for store administrators.

2 years

_secure_session_id

Used in connection with navigation through the storefront. Ensures your browsing session is recognized as you navigate the site (for example, maintaining your session state).

24 hours

_shopify_country

Used in connection with checkout; stores the country you’re shopping from (or that you selected) to help localize checkout and site content.

During session

_shopify_m

Used for managing customer privacy settings. Stores your preferences for marketing cookies (if applicable).

1 year

_shopify_tm

Used for managing customer privacy settings (e.g., tracking consent).

30 minutes

_shopify_tw

Used for managing customer privacy settings.

2 weeks

_storefront_u

Used to facilitate updating customer account information. (For example, if you update your profile, this cookie might help handle that process securely.)

1 minute

_tracking_consent

Stores tracking preferences (cookie consent tracking).

1 year

c

Used in connection with checkout (e.g., to remember your cart or checkout state between pages).

1 year

cart

Used in connection with the shopping cart. Remembers the items in your cart.

2 weeks

cart_currency

Used in connection with the shopping cart; remembers the currency you are using for your cart.

2 weeks

cart_sig

Used in connection with checkout; helps verify the integrity of the cart data when transitioning to checkout.

2 weeks

cart_ts

Used in connection with checkout; contains a timestamp for the cart.

2 weeks

cart_ver

Used in connection with the shopping cart (cart version).

2 weeks

checkout

Used in connection with checkout; holds checkout information as you proceed (such as an encrypted token of your checkout ID).

4 weeks

checkout_token

Used in connection with checkout; a token that facilitates secure checkout once you’ve initiated the process.

1 year

dynamic_checkout_shown_on_cart

Used in connection with checkout; indicates if a dynamic checkout (like accelerated checkout options) was shown.

30 minutes

hide_shopify_pay_for_checkout

Used in connection with checkout; if set, it hides the Shopify Pay option for the session (usually based on certain conditions).

Session (while browser is open)

keep_alive

Used in connection with buyer localization; keeps the user’s locale or region information active (especially for multi-region shops).

2 weeks

master_device_id

Used in connection with merchant login (Shopify admin login device identifier). Not directly applicable to customers, more for shop owner security.

2 years

previous_step

Used in connection with checkout; remembers the last step completed in checkout, to resume or redirect appropriately.

1 year

remember_me

Used in connection with checkout; if you select “remember me” (e.g., for Shop Pay or other expedited checkout), this stores that preference.

1 year

secure_customer_sig

Used in connection with customer login; a secure token that identifies a customer account after they log in. Helps keep you logged in on the storefront securely.

20 years (persistent)

shopify_pay

Used in connection with checkout; supports Shop Pay payment method for returning customers.

1 year

shopify_pay_redirect

Used in connection with checkout; manages redirection during the Shop Pay login and payment process. Duration can vary (30 minutes, 3 weeks, or 1 year) depending on circumstances.

Varies (30 min to 1 year)

storefront_digest

Used in connection with customer login; stores a digest of your password if the storefront is password-protected (e.g., if the site is in preview mode), allowing you to remain logged in during that session.

2 years

tracked_start_checkout

Used in connection with checkout; notes that a checkout process was started, for analytics or conversion tracking purposes.

1 year

checkout_one_experiment

Used in connection with checkout; related to testing and optimizing the checkout experience (A/B testing).

Session

checkout_session_lookup

Used in connection with checkout; helps look up your checkout session data on subsequent visits (for example, if you return to complete a checkout).

3 weeks

checkout_session_token_<token>

Used in connection with checkout; a tokenized reference to your checkout session.

3 weeks

identity-state

Used in connection with customer authentication (Shopify “Identity” service); indicates the state of a customer’s identity/session.

24 hours

identity-state-<token>

Used in connection with customer authentication; works with the above to maintain your session state.

24 hours

identity_customer_account_number

Used in connection with customer authentication; an identifier for your customer account used by Shopify’s identity service.

12 weeks

 

Reporting and Analytics Cookies


These cookies collect information about how visitors use our Site, which pages are popular, or if there are error messages on certain pages. They don’t collect information that directly identifies a visitor; instead, they provide aggregated data that helps us improve how the Site works and understand user behavior. Some of these are first-party cookies (set by our domain), and some may be third-party (set by analytics services like Google Analytics).

Name

Function

Duration

_landing_page

Tracks the landing page that a visitor arrives on (so we can see which page a user first visited during a session). Useful for marketing analytics to know what pages draw people in.

2 weeks

_orig_referrer

Tracks the original referrer for a visitor (the site or source that referred the visitor to our Site). Helps us understand where our traffic is coming from.

2 weeks

_s

Shopify analytics cookie, used to analyze site usage on a per-session basis (short term analytics).

30 minutes

_shopify_d

Shopify analytics cookie, used for analytics related to Shopify.

Session (while browser is open)

_shopify_s

Shopify analytics cookie for session tracking (similar to _s).

30 minutes

_shopify_sa_p

Shopify analytics relating to marketing and referrals. The “_sa_p” likely stands for something like “session analytics – marketing/paid”. It tracks how you interact with marketing (e.g., if you came via an ad or referral link).

30 minutes

_shopify_sa_t

Shopify analytics for marketing/referrals, possibly tracking similar info as _shopify_sa_p but could be specific to certain types of campaigns (the “t” might stand for a different channel).

30 minutes

_shopify_y

Shopify analytics cookie for tracking user behavior. This one typically persists longer to recognize returning visitors.

1 year

_y

Same as _shopify_y – an analytics cookie used by Shopify to persist the unique identifier for a visitor.

1 year

_shopify_evids

Shopify analytics cookie for events tracking (e.g., clicks, page views). “evids” may stand for “event IDs.” It collects data on user interactions for analysis.

Session

_shopify_ga

Shopify and Google Analytics cookie. This indicates integration between Shopify analytics and Google Analytics, possibly to ensure Google Analytics can capture e-commerce events.

Session

customer_auth_provider

Shopify analytics cookie related to customer accounts (authentications). It might log which method a customer used to log in or sign up (for instance, email/password vs. a social login if available).

Session

customer_auth_session_created_at

Records the time a customer session was created (likely when a user logs in or account is created). Used for analytics or security tracking.

Session

Third-Party Cookies: In addition to the cookies listed above (which are primarily set by our Site or by Shopify on our behalf), we use third-party services that may set their own cookies. For example, when we embed a Facebook pixel or Google Analytics script, those services may set cookies like _fbp (Facebook) or _ga (Google Analytics) to collect data about your device and browsing behavior. Similarly, advertising partners like TikTok, Snapchat, Pinterest, etc., may set cookies or use other tracking technologies when you interact with content on our Site (like viewing an embedded video or if you click a link that directs to their platform). These third-party cookies are controlled by the third parties, not by us, and their use is governed by the third parties’ own privacy/cookie policies.

Cookie duration: Some cookies are session cookies, which mean they expire once you close your browser. Others are persistent cookies, meaning they remain on your device after your browsing session ends until they reach their set expiration or you clear them. In the tables above, we’ve listed the typical duration. Generally, persistent cookies on our Site have durations ranging from about 30 minutes up to 2 years. Note that any cookie with a very long duration (like 20 years for secure_customer_sig) is usually a safeguard value; in practice, such cookies may be cleared or rotated sooner by the service for security.

Managing and disabling cookies: You have the right to control how cookies are used on your device:

  • Cookie Consent Banner: When you first visit our Site, you may see a cookie banner or pop-up if required by your jurisdiction. This banner allows you to consent to or reject non-essential cookies (like analytics and advertising cookies). You can always adjust your preferences later by contacting us or using any “Cookie Settings” tool on our Site (if available).

  • Browser Settings: Most web browsers let you control cookies through their settings preferences. You can typically find these options under the “Privacy” or “Security” settings of your browser. There you may have options to block all cookies, only accept first-party cookies, or clear cookies when you close the browser. Each browser is different, so consult your browser’s help documentation (or websites like allaboutcookies.org which provide guidance) for instructions on how to manage your cookie settings.

  • Opt-Out Tools: As mentioned in the Behavioral Advertising section, you can use industry opt-out sites like the DAA’s optout.aboutads.info or the Network Advertising Initiative’s opt-out page to opt out of many advertising cookies at once. Keep in mind, this typically works by placing an “opt-out cookie” on your device, so if you clear all cookies, you may need to do it again.

 

Please note that if you disable or reject certain cookies, some features of our Site may not function properly. For example, you may not be able to add items to your cart, proceed to checkout, or use login/account features. Also, blocking cookies will not entirely prevent all data collection; for instance, some information may still be collected by passive means or when you explicitly provide it.

“Do Not Track” signals: Some browsers offer a “Do Not Track” (DNT) feature that can send a signal to websites indicating you do not want to be tracked. However, there is currently no universal standard for how websites should respond to DNT signals. As a result, we do not alter our Site’s data collection or usage practices when we detect a Do Not Track signal from your browser. We continue to adhere to the privacy practices described in this policy. You can manage tracking largely through the cookie and opt-out methods described above.

 

Data Security


We take the security of your personal information seriously. We implement a variety of technical and organizational measures to protect your data from unauthorized access, misuse, alteration, or destruction. For example, the Site is hosted on secure servers, data is transmitted via secure protocols (HTTPS), and sensitive information (like payment details) is encrypted. Our service providers, such as Shopify and payment processors, also maintain robust security measures (including Payment Card Industry Data Security Standard compliance for payment processing).

While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. Therefore, we cannot guarantee absolute security. We encourage you to also take precautions, such as using unique and strong passwords for your accounts and not sharing your account information with others.

In the unlikely event of a data breach that affects your personal information, we will notify you and the appropriate authorities as required by applicable law. We have a breach response plan in place to quickly address such situations, should they occur.

 

Changes to this Privacy Policy

 

We may update or modify this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other operational reasons. When we make changes, we will post the updated Policy on this page and adjust the “Last updated” date at the end of this Policy. If the changes are significant, we may also provide a more prominent notice (such as a banner on our website or an email notification).

Your continued use of our Site after any changes to the Privacy Policy constitutes your acceptance of the updated terms (to the extent permitted by law). We encourage you to review this Policy periodically to stay informed about how we are protecting your information.

 

Complaints or Questions

 

If you have any concerns or complaints about our privacy practices, you can contact us at privacy@parcdecor.com, and we will do our best to address them. We take privacy complaints seriously and will investigate any issue and respond to you within a reasonable time.

If you are in the EEA, UK, or another jurisdiction with a data protection authority, you also have the right to lodge a complaint with the supervisory authority in your country. For example, in the UK you can contact the Information Commissioner’s Office (ICO), and in France the CNIL, in Canada the OPC, etc. We would, however, appreciate the chance to address your concerns before you approach a regulator, so please consider reaching out to us first.

 

Last updated: November 4, 2025