A vibrant world, a myriad of exquisite items, all here.

0
×

Login


RMDEA Mall operates legally in the United States and prioritizes the security of user data and privacy protection. We strictly comply with relevant federal and state data security regulations, including the California Consumer Privacy Act (CCPA) and others. We are committed to fully safeguarding your personal data generated during your shopping experience, ensuring your legal rights are protected. This statement will provide you with detailed information about our data protection principles, related measures, and consultation channels to give you peace of mind while shopping.

1. Data Security Commitment

We solemnly promise to process your personal data provided during your use of our services and purchase of products in compliance with the principles of data minimization, lawful use, and secure storage. We will not collect, disclose, sell, or misuse your personal information without authorization. All data processing actions will be conducted in accordance with relevant U.S. laws and regulations, fully protecting your data ownership and right to information.

2. Scope of Data Collection and Use

To provide you with smooth shopping, delivery, and consultation services, we only collect the necessary data required for your shopping experience, including your name, delivery address, contact details, payment information, and order information (including order number, product details, payment records, etc.).

The data will only be used for the following purposes and will not exceed the necessary scope:

  1. Order Processing and Delivery: To complete product preparation, shipment, and delivery follow-up, ensuring your order is shipped within 1-3 business days and delivered within 12-14 business days.
  2. Customer Service Response: To address your inquiries, complaints, and after-sales needs, ensuring our customer service team can efficiently respond to your requests.
  3. Compliance Retention: In accordance with U.S. regulations, we will reasonably retain necessary data, and after the retention period expires, it will be securely destroyed to prevent any risks of data leakage.

3. Data Security Protection Measures

We adopt leading industry security technologies and management systems to build a comprehensive data security protection mechanism for the entire data lifecycle, fully preventing data leakage, tampering, and loss risks. Specific measures include:

  1. Encryption Protection: Your personal data (especially sensitive information such as payment details and delivery addresses) is protected using AES-256 static encryption and TLS 1.3 transmission encryption technology, ensuring data security during collection, transmission, and storage.
  2. Access Control: Following the "least privilege principle," we strictly limit internal personnel's access to user data and establish multi-factor authentication mechanisms. All data access actions are logged, traceable, and verifiable.
  3. Secure Operations: Regular security vulnerability checks and fixes are conducted, with the deployment of Data Loss Prevention (DLP) tools, Web Application Firewalls (WAF), and a comprehensive risk alert and emergency response system to ensure quick and appropriate handling of any security incidents.
  4. Compliance Audits: Quarterly internal data security compliance audits are conducted, and an annual security evaluation is entrusted to a third-party organization to ensure continuous compliance with U.S. laws, including the CCPA's consumer data rights protection requirements.

4. User Data Rights

Under U.S. data security laws, you have the following rights regarding your data, and we will fully cooperate with you to exercise these rights:

  1. Right to Know: You have the right to inquire about the specific scope, purpose, and retention period of the personal data we collect and use.
  2. Right to Correct: If you find any errors in the personal data we have retained, you have the right to request timely correction.
  3. Right to Delete: Under applicable laws and business needs, you have the right to request that we delete your personal data (except for special retention scenarios).
  4. Right to Complain: If you believe our data processing activities are non-compliant or suspect data security threats, you have the right to file a complaint.

5. Consultation and Complaints Channels

If you have any questions about data security, personal data inquiries, corrections, deletions, or related complaints, you can contact us through the following official channels, and we will promptly respond and resolve your concerns during customer service working hours:

Official Service Email: service@mail.rmdea-mall.com

Customer Service Hours: Monday to Friday, 9:00 AM - 6:00 PM (UTC+8:00 )

Friendly Reminder: When sending consultation or complaint emails, please include your contact information and specific request to help us quickly verify your identity and efficiently address your issue.

6. Additional Notes

  1. We will not disclose or sell your personal data to any unrelated third parties without your explicit consent, except when required by laws, regulations, or judicial orders.
  2. Order data (including shipping and delivery-related information) will be retained as service proof for a reasonable period, in compliance with U.S. regulations. During the retention period, strict security protection measures will be enforced.
  3. We will continuously optimize data security protection measures based on updates to U.S. data security laws and technological advancements, and regularly update this data security statement to ensure reliable data security for you.

RMDEA Mall remains committed to the highest standards of data security. We thank you for your understanding, support, and trust, and we will continue working hard to provide you with a secure and reassuring shopping environment!