Privacy Policy
Privacy Policy — DODOSKIN EU
Last updated: [2026-03-18]
1. Introduction
DODOSKIN ("we," "us," or "our"), operated by LASOK, Inc., respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and share your personal information when you visit or make a purchase from dodoskin.eu (the "Website"), in accordance with the General Data Protection Regulation (EU) 2016/679 ("GDPR") and applicable data protection laws.
By using our Website, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with this policy, please do not use our Website.
2. Data Controller
The data controller responsible for your personal data is:
LASOK, Inc. [218 Machlin Ct.,STE F4, Walnut, CA, USA] Email: [cs@dodoskin.coom]
If you have any questions or concerns about how we handle your personal data, you may contact us using the details above.
3. What Personal Data We Collect
We collect different types of personal data depending on how you interact with our Website.
3.1 Information You Provide Directly
When you create an account, place an order, subscribe to our newsletter, or contact us, we may collect the following: your name, email address, shipping and billing address, telephone number, payment information (processed securely by our payment provider — we do not store full payment card details), account login credentials (email and password), and any other information you voluntarily provide through customer support inquiries or product reviews.
3.2 Information Collected Automatically
When you visit our Website, we automatically collect certain information through cookies and similar technologies, including your IP address, browser type and version, operating system, referring URL, pages viewed and time spent on pages, device identifiers, and your language and location preferences. For more details about cookies, please refer to our [Cookie Policy].
3.3 Information from Third Parties
We may receive information about you from third parties, such as payment processors (Shopify Payments), shipping carriers, and analytics providers (Google Analytics), but only to the extent necessary to fulfill the purposes described in this policy.
4. How and Why We Use Your Personal Data
We process your personal data only when we have a valid legal basis under the GDPR. The table below summarizes the purposes for which we use your data and the corresponding legal basis.
| Purpose | Legal Basis (GDPR) |
|---|---|
| Processing and fulfilling your orders (including payment, shipping, and delivery) | Performance of a contract (Art. 6(1)(b)) |
| Creating and managing your account | Performance of a contract (Art. 6(1)(b)) |
| Communicating with you about your orders, account, or customer service inquiries | Performance of a contract (Art. 6(1)(b)) |
| Sending marketing emails and newsletters | Your consent (Art. 6(1)(a)) |
| Displaying personalized advertisements through Meta Pixel, TikTok Pixel, and Google Ads | Your consent (Art. 6(1)(a)) |
| Analyzing website traffic and user behavior through Google Analytics | Your consent (Art. 6(1)(a)) |
| Preventing fraud and securing our Website | Legitimate interest (Art. 6(1)(f)) |
| Complying with legal obligations (e.g., tax and accounting records) | Legal obligation (Art. 6(1)(c)) |
| Improving our Website, products, and services | Legitimate interest (Art. 6(1)(f)) |
Where we rely on consent, you have the right to withdraw your consent at any time. Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.
Where we rely on legitimate interest, we have assessed that our interests do not override your fundamental rights and freedoms. You may contact us to learn more about these assessments.
5. Who We Share Your Personal Data With
We do not sell your personal data. We may share your personal data with the following categories of recipients, only to the extent necessary to fulfill the purposes described in this policy.
5.1 Service Providers
| Provider | Purpose | Location |
|---|---|---|
| Shopify | E-commerce platform, hosting, checkout, and payment processing | Canada / United States |
| Shopify Payments (Stripe) | Payment processing | United States |
| Google (Analytics, Ads) | Website analytics and advertising | United States |
| Meta Platforms (Facebook, Instagram) | Advertising and conversion tracking | United States |
| TikTok | Advertising and conversion tracking | United States / Singapore |
| Klaviyo | Email marketing and customer communication | United States |
| G-Translate | Website translation | United States |
| Shipping carriers (e.g., DHL, FedEx, EMS, UPS) | Order delivery and tracking | Various countries |
| Judge.me (or similar) | Product reviews | Various countries |
5.2 Legal and Regulatory Authorities
We may disclose your personal data to law enforcement agencies, courts, regulatory bodies, or other public authorities if required by law or to protect our legal rights.
5.3 Business Transfers
In the event of a merger, acquisition, or sale of our business, your personal data may be transferred to the new owner, subject to the same privacy protections described in this policy.
6. International Data Transfers
LASOK, Inc. is based in the United States, and your personal data is processed and stored in the United States and South Korea. Some of our service providers are also located outside the European Economic Area (EEA).
When your personal data is transferred outside the EEA, we ensure that appropriate safeguards are in place to protect your data, including Standard Contractual Clauses (SCCs) approved by the European Commission (Art. 46(2)(c) GDPR), and adequacy decisions by the European Commission, where applicable (Art. 45 GDPR). The European Commission has recognized the EU-U.S. Data Privacy Framework as providing adequate protection for personal data transferred to certified organizations in the United States.
You may request a copy of the safeguards in place by contacting us at [TBD email].
7. How Long We Keep Your Personal Data
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law.
| Data Type | Retention Period |
|---|---|
| Account information | Until you delete your account, plus up to 30 days for full deletion |
| Order and transaction records | 5 years from the date of the transaction (for tax and legal compliance) |
| Customer support communications | 3 years from the date of the last communication |
| Marketing consent records | Until you withdraw consent, plus a record of the withdrawal |
| Website analytics data | Up to 26 months (as configured in Google Analytics) |
| Cookie data | Varies by cookie — see our [Cookie Policy] |
After the retention period expires, your personal data will be securely deleted or anonymized.
8. Your Rights Under the GDPR
As a data subject in the EEA, you have the following rights under the GDPR. You may exercise these rights at any time by contacting us at [TBD email] or by contacting our EU Representative.
Right of Access (Art. 15): You have the right to request a copy of the personal data we hold about you.
Right to Rectification (Art. 16): You have the right to request correction of inaccurate or incomplete personal data.
Right to Erasure / Right to Be Forgotten (Art. 17): You have the right to request deletion of your personal data, subject to certain legal exceptions (e.g., if we need to retain it for legal compliance).
Right to Restriction of Processing (Art. 18): You have the right to request that we limit the processing of your personal data under certain circumstances.
Right to Data Portability (Art. 20): You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit it to another data controller.
Right to Object (Art. 21): You have the right to object to the processing of your personal data based on our legitimate interests. You also have the right to object to direct marketing at any time.
Right to Withdraw Consent (Art. 7(3)): Where processing is based on your consent, you may withdraw consent at any time without affecting the lawfulness of processing carried out before the withdrawal.
Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority. If you are located in Poland, the relevant authority is the President of the Personal Data Protection Office (Prezes Urzędu Ochrony Danych Osobowych, UODO) at https://uodo.gov.pl. You may also contact the supervisory authority in your own EU member state.
We will respond to your request within one month of receiving it. In certain cases, this period may be extended by two additional months, depending on the complexity of the request.
9. Automated Decision-Making and Profiling
We may use automated tools for fraud prevention purposes during the checkout process (e.g., Shopify's built-in fraud analysis). These processes do not produce legal effects or similarly significant effects on you. If you believe an automated decision has been made about you incorrectly, you may contact us to request human review.
We do not engage in profiling that produces legal or similarly significant effects.
10. Marketing Communications
We may send you marketing emails about our products, promotions, and news if you have given us your explicit consent (e.g., by subscribing to our newsletter or opting in at checkout).
You can unsubscribe at any time by clicking the "Unsubscribe" link at the bottom of any marketing email, or by contacting us at [TBD email]. Unsubscribing from marketing emails does not affect transactional emails related to your orders.
11. Children's Privacy
Our Website is not intended for children under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16 without verified parental consent, we will take steps to delete that information as soon as possible. If you believe we have collected data from a child, please contact us at [TBD email].
12. Security
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include SSL/TLS encryption for data transmitted between your browser and our Website, secure payment processing through Shopify Payments (PCI-DSS compliant), restricted access to personal data on a need-to-know basis, and regular monitoring for potential security vulnerabilities.
While we strive to protect your personal data, no method of transmission over the Internet or method of electronic storage is 100% secure. We cannot guarantee absolute security.
13. Third-Party Links
Our Website may contain links to third-party websites. We are not responsible for the privacy practices or content of those websites. We encourage you to read the privacy policy of any website you visit.
14. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. When we make material changes, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically.
15. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or the processing of your personal data, please contact us at:
LASOK, Inc. [218 Machlin Ct.,STE F4, Walnut, CA, USA] Email: [cs@dodoskin.coom]