FREE SHIPPING ON ORDERS OVER $139

Privacy Policy

Protecting your personal information is our priority. This policy explains what we collect, why we collect it, and how you can control it.

Effective date: April 15, 2026

Information We Collect

We collect personal information only when you actively provide it to us or when it is automatically generated as part of normal site operation. The categories below reflect the data we store in our database.

Account Information

When you create an account, we store your full name, email address, and a securely hashed password. We also record account security metadata such as failed login attempts, account lock timestamps, and optional two-factor authentication settings to protect your account.

Order & Payment Information

To fulfill purchases we collect your name, email, phone number, and shipping address (street, city, postal code). We record a payment method identifier (e.g., "stripe") and a payment intent reference provided by Stripe. We do not store full credit card numbers, CVV codes, or raw card data — all card processing is handled directly by Stripe.

Contact & Newsletter

If you send us a message through the contact form we collect your name, email, subject, and message body. If you subscribe to our newsletter we store your email address along with a secure method that allows you to unsubscribe at any time.

Product Reviews

When you submit a review, we store a display name, star rating, and comment text. If you are logged in, the review is linked to your account to verify purchase authenticity.

Returns & Refunds

If you request a return we record the related order and item identifiers, your stated reason (e.g., wrong size, defective), any additional details you provide, and the status and amount of any refund issued.

Automatically Collected Information

When you visit or interact with our site, we automatically collect limited technical and behavioral data to operate, improve, and secure the service.

  • Session identifier: A randomly generated ID used only to keep your session working during your visit.
  • Device & browser type: A classification of your device (mobile, tablet, desktop) and a user-agent string used to detect incompatibilities.
  • Approximate location: Country and city derived from general network information. We do not store your precise IP address.
  • Pages & products viewed: Which pages you visit, which products you view, and items you add to or remove from your cart or wishlist.
  • Referring URL: The URL of the page or ad that brought you to our site, including UTM marketing parameters (source, medium, campaign).
  • Search queries: Terms you type into our on-site search bar and whether you clicked a result.

How We Use Your Information

We use the information we collect for the following purposes:

  • Processing and fulfilling your orders, including shipping and refunds.
  • Sending order confirmations, shipping updates, and customer support responses.
  • Maintaining and securing your account (password resets, 2FA, login protection).
  • Sending newsletter emails to subscribers who have opted in.
  • Analysing site usage to improve product offerings and user experience.
  • Detecting and preventing fraudulent or abusive activity.
  • Understanding how visitors find and use our site.
  • Pursuing our nonprofit mission of supporting autism families and research.

Sharing Information with Third Parties

We do not sell, rent, or trade your personal information to any third party for their own marketing purposes.

We share data only with the trusted service providers necessary to operate our business:

  • Stripe – payment processing (governed by Stripe's own Privacy Policy).
  • Email service providers (e.g., Resend) – for transactional and marketing emails.
  • Cloudflare – hosting, CDN delivery, and database (Cloudflare D1).
  • PayPal – payment processing (governed by PayPal's own Privacy Policy).

Each provider is contractually required to use your data solely to provide services on our behalf and to maintain appropriate security measures. We may also disclose your information when required by law or to protect the rights and safety of our customers or the public.

Cookies & Session Tracking

Our site uses cookies and similar technologies to keep you signed in, remember your cart, and understand how visitors use the site. These include:

  • Authentication cookies – required to keep you logged in securely.
  • Session cookies – a temporary identifier that links your activity within one visit.
  • Analytics cookies – help us understand which pages and products are most popular. These do not track you across other websites.

You can configure your browser to block or delete cookies. Doing so may affect your ability to log in or use cart features.

Security of Your Information

We apply multiple layers of security to protect your personal data:

  • Passwords are stored as one-way cryptographic hashes — we cannot read your password.
  • All data transmitted between your browser and our servers is encrypted via TLS/HTTPS.
  • Accounts are automatically locked after repeated failed login attempts.
  • Payment data is processed directly by Stripe or PayPal and never stored on our servers.

No online system can be guaranteed to be 100% secure. If you believe your account has been compromised, please contact us immediately.

Your Rights & Data Deletion

You have the right to:

  • Request correction of inaccurate information.
  • Request deletion of your account and associated personal data.
  • Unsubscribe from marketing emails at any time via the unsubscribe link in any email.
  • Opt out of non-essential tracking technologies.

To exercise any of these rights, please email us at support@bksstudioshop.com. We will respond within 30 days. Note that we may be unable to delete data that is legally required for completed transactions or fraud prevention.

Children Under 13

Our site is intended for adults, such as parents or guardians, who may be shopping on behalf of their families. We do not knowingly collect personal information directly from children under the age of 13. If you believe a child has provided us with their information, please contact us and we will promptly delete it.

Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us:

B&K's Studio

Email: support@bksstudioshop.com

Website: https://bksstudioshop.com

Changes to this Policy. We may update this Privacy Policy from time to time. When we do, we will revise the effective date at the top of this page. Continued use of B&K's Studio after changes are posted means you acknowledge the updated policy.