Privacy Policy

Last updated: March 12, 2026

REIM ("we", "us", or "our") operates the website reimleather.com. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website or place an order for our handmade leather belts.

1. Information We Collect

We collect personal information that you voluntarily provide to us when you create an account, place an order, or contact us. This includes:

• Account information: Name, email address, and password (or Google account data if you sign in via Google).
• Shipping information: Postal address, city, country, postal code, and phone number.
• Payment information: Payment details are collected and processed directly by Stripe. We do not store your full credit card number, CVV, or other sensitive payment data on our servers.
• Order information: Products ordered, order total, and order history.
• Communications: Any messages you send us via our contact form or email.

2. Google Authentication

If you choose to sign in using Google, we receive your name, email address, and profile picture from your Google account. We use this information solely to create and manage your REIM account. We do not access any other data from your Google account.

3. Local Storage

We use your browser's localStorage to store:

• Cart data: The items you have added to your shopping cart, so they persist between visits.
• Authentication tokens: Session tokens to keep you signed in between visits.
• Language preference: Your selected language for the website interface.

This data is stored only in your browser and is not transmitted to third parties. You can clear this data at any time through your browser settings.

4. Third-Party Services

We use the following third-party services to operate our website and process orders:

• Stripe: For secure payment processing. Stripe collects and processes your payment information under its own privacy policy. See stripe.com/privacy.
• Google: For account authentication (Google Sign-In) and address autocomplete (Google Maps Places API). See Google's Privacy Policy.
• Resend: For transactional emails such as order confirmations and shipping notifications. See Resend's Privacy Policy.

5. How We Use Your Information

We use the information we collect to:

• Process and fulfill your orders.
• Create and manage your account.
• Send order confirmations, shipping updates, and other transactional emails.
• Respond to your enquiries and provide customer support.
• Improve our website and products.
• Comply with legal obligations.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with our services. Order records are kept for a minimum of 5 years to comply with Norwegian accounting and tax regulations. If you delete your account, we will remove your personal data within 30 days, except where retention is required by law.

7. Data Sharing

We do not sell, trade, or rent your personal information to third parties. We share your data only with the third-party service providers listed above, and only to the extent necessary to operate our services (e.g., sharing your shipping address with our logistics partners to deliver your order).

8. Your Rights Under GDPR

As we are based in Norway and serve customers in the European Economic Area, you have the following rights under the General Data Protection Regulation (GDPR):

• Right of access: You can request a copy of the personal data we hold about you.
• Right to rectification: You can ask us to correct any inaccurate or incomplete data.
• Right to erasure: You can request that we delete your personal data ("right to be forgotten").
• Right to data portability: You can request your data in a structured, commonly used, machine-readable format.
• Right to restrict processing: You can ask us to limit how we use your data.
• Right to object: You can object to us processing your data for certain purposes.

To exercise any of these rights, please contact us at the address below. We will respond to your request within 30 days.

9. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. All data transmitted between your browser and our servers is encrypted using TLS/SSL. Payment processing is handled entirely by Stripe, which is PCI DSS Level 1 certified.

10. Cookies

Our website uses essential cookies and localStorage for basic functionality (cart, authentication, language preferences). We do not use tracking cookies or advertising cookies.

11. Children's Privacy

Our website is not intended for children under 16 years of age. We do not knowingly collect personal information from children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this page periodically.

13. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact us:

• Email: contact@reimleather.com
• Website: reimleather.com