Privacy Policy
We are committed to protecting your personal data and respecting your privacy rights under GDPR and applicable international data protection regulations.
Table of Contents
This Privacy Policy applies to all personal data processed by our company in connection with our pet poop bag export business, including data collected through our website, inquiry forms, email correspondence, and business partnerships. We operate as an international B2B exporter serving clients primarily in the European Union and North America, and we comply with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws.
Data Controller
For the purposes of the GDPR and applicable data protection legislation, the data controller responsible for your personal data is our company. As a B2B exporter of sustainable pet waste products, we determine the purposes and means of processing personal data received from business contacts, website visitors, and prospective or existing trade partners.
Controller Details
Company
PetEco Global Trade Co., Ltd.
Business Type
Pet Waste Products Exporter
Primary Markets
European Union, North America
Data Protection Contact
If you are located in the European Union, you have the right to lodge a complaint with your local supervisory authority. For EU representatives and DPO inquiries, please contact us using the details provided in Section 12.
Data We Collect
As a B2B export company, the personal data we collect is primarily related to business contacts and commercial interactions. We do not sell consumer products directly to individuals. The categories of personal data we may collect include:
Business Contact Information
Full name, job title, company name, business email address, phone number, business mailing address, country of operation.
Inquiry & Transaction Data
Product inquiry details, order history, quotation records, procurement requirements, preferred product specifications, volume and pricing discussions.
Communication Data
Email correspondence, messages submitted via contact forms, meeting notes, and other communications related to business inquiries or ongoing partnerships.
Website Usage Data
IP address, browser type and version, operating system, pages visited, time spent on pages, referral URLs, and other technical data collected via cookies and analytics tools. See Section 8 for more details.
Note: We do not intentionally collect sensitive personal data (special categories under GDPR Article 9), financial account details, or personal data from individuals under the age of 16. Our services are directed exclusively at business professionals and trade buyers.
Legal Basis for Processing (GDPR)
For individuals located in the European Economic Area (EEA), we process personal data only where we have a valid legal basis under Article 6 of the GDPR:
Contractual Necessity
Processing required to enter into or perform a contract with you or your organization (e.g., processing a trade order or partnership agreement).
Art. 6(1)(b)
Legitimate Interests
Processing necessary for our legitimate business interests, such as responding to inquiries, maintaining business relationships, and improving our services, provided these interests are not overridden by your rights.
Art. 6(1)(f)
Legal Obligation
Processing required to comply with applicable legal obligations, including export regulations, customs requirements, tax and accounting laws, and trade compliance standards.
Art. 6(1)(c)
Consent
Where you have provided explicit consent, such as subscribing to our trade newsletter or accepting non-essential cookies. You may withdraw consent at any time without affecting prior lawful processing.
Art. 6(1)(a)
How We Use Your Data
We use the personal data we collect solely for defined, legitimate business purposes. We do not sell, rent, or trade personal data to third parties for marketing purposes.
Responding to Business Inquiries
Processing and responding to requests for product information, samples, quotes, or partnership discussions submitted through our website or email.
Order Fulfilment & Export Operations
Managing trade orders, coordinating logistics, preparing export documentation, and facilitating customs clearance for shipments to EU and North American markets.
Partner Relationship Management
Maintaining long-term business relationships with wholesale buyers, retailers, and distribution partners, including account management and follow-up communications.
OEM & Custom Branding Services
Coordinating private label design, packaging customization, and brand specification requirements for clients requesting bespoke product solutions.
Legal & Regulatory Compliance
Fulfilling obligations under international trade law, export control regulations, anti-money laundering requirements, and applicable tax laws in relevant jurisdictions.
Website Analytics & Improvement
Analyzing website usage patterns to improve user experience, optimize content for our target B2B audience, and measure the effectiveness of our online presence.
Trade Communications (with consent)
Sending product updates, sustainability reports, new material announcements, and relevant industry information to business contacts who have opted in to receive such communications.
Data Sharing & International Transfers
We do not sell personal data. We may share personal data with third parties only in the following circumstances, and only to the extent necessary:
Logistics & Freight Partners
Shipping companies, freight forwarders, and customs brokers require certain contact and shipment data to process international deliveries to EU and North American destinations.
Technology Service Providers
Cloud hosting providers, CRM systems, email platforms, and website analytics tools that process data on our behalf under data processing agreements (DPAs) ensuring equivalent data protection standards.
Legal & Financial Advisors
Legal counsel, accountants, and auditors who are bound by professional confidentiality obligations and require access to certain data to provide their services.
Regulatory & Government Authorities
Customs authorities, tax agencies, and other government bodies in connection with export compliance, where disclosure is required by law or official request.
International Data Transfers (GDPR Chapter V)
As an international export company, data may be transferred to and processed in countries outside the EEA, including China and North America. For transfers to countries without an EU adequacy decision, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission, or other appropriate safeguards under GDPR Article 46. You may request a copy of the applicable transfer mechanism by contacting us at the details in Section 12.
Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable law. Our retention periods are guided by the following principles:
| Data Category | Retention Period | Basis |
|---|---|---|
| Business contact & inquiry data | 3 years from last interaction | Legitimate interests |
| Active trade partner data | Duration of relationship + 5 years | Contractual necessity |
| Order & export transaction records | 7 years | Legal obligation (tax & trade law) |
| Marketing communications (consent-based) | Until consent is withdrawn | Consent |
| Website analytics data | 26 months | Legitimate interests |
Upon expiry of the applicable retention period, personal data is securely deleted or anonymized. Where data must be retained for legal purposes, it is restricted from active use.
Your Privacy Rights
Depending on your location, you may have the following rights regarding your personal data. We are committed to honoring these rights promptly and without charge, within the timeframes required by applicable law.
Right of Access
Request a copy of the personal data we hold about you (GDPR Art. 15 / CCPA).
Right to Rectification
Request correction of inaccurate or incomplete personal data (GDPR Art. 16).
Right to Erasure
Request deletion of your personal data ("right to be forgotten") where no overriding legal basis exists (GDPR Art. 17 / CCPA).
Right to Restrict Processing
Request that we limit how we use your data in certain circumstances (GDPR Art. 18).
Right to Data Portability
Receive your personal data in a structured, machine-readable format for transfer to another controller (GDPR Art. 20).
Right to Object
Object to processing based on legitimate interests or for direct marketing purposes at any time (GDPR Art. 21).
How to Exercise Your Rights
To exercise any of the above rights, please submit a written request to [email protected]. We will respond within 30 days (extendable to 90 days for complex requests under GDPR). We may need to verify your identity before processing your request.
EU residents also have the right to lodge a complaint with their national data protection authority. A list of EU supervisory authorities is available at edpb.europa.eu.
Security Measures
We implement appropriate technical and organizational security measures to protect personal data against unauthorized access, accidental loss, destruction, or disclosure. Our security practices include:
SSL/TLS encryption for all data in transit
Encryption of personal data at rest
Access controls and role-based permissions
Regular security assessments and staff training
Data Processing Agreements with all third-party processors
Incident response procedures for data breach notification
In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and, where required, inform affected individuals without undue delay, in accordance with GDPR Article 33-34.
Children's Privacy
Our website and services are directed exclusively at business professionals, wholesale buyers, retailers, and trade procurement personnel. We do not knowingly collect, process, or store personal data from individuals under the age of 16 (or the applicable age of digital consent in their jurisdiction). If we become aware that we have inadvertently collected data from a minor, we will promptly delete such data. If you believe we may have collected data from a child, please contact us immediately at [email protected].
California Privacy Rights (CCPA/CPRA)
If you are a California resident, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) grants you additional rights regarding your personal information. Please note that our services are B2B in nature; however, to the extent CCPA applies:
Right to Know
You have the right to request disclosure of the categories and specific pieces of personal information we have collected about you, the sources, our business purposes, and the categories of third parties with whom we share it.
Right to Delete
You have the right to request deletion of personal information we have collected, subject to certain exceptions for legal compliance, security, and business operations.
Right to Opt-Out of Sale or Sharing
We do not sell or share personal information for cross-context behavioral advertising. You may still submit an opt-out request to [email protected].
Non-Discrimination
We will not discriminate against you for exercising any of your CCPA rights, including by denying services, charging different prices, or providing a different level of service quality.
To submit a verifiable consumer request under CCPA, please contact us at [email protected] with the subject line "CCPA Privacy Request." We will respond within 45 days, extendable by an additional 45 days when reasonably necessary.
Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact our privacy team. We aim to respond to all privacy-related inquiries within 5 business days.
Policy Updates
We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or business operations. We will notify significant changes via email to active business contacts or by posting a prominent notice on our website. The "Last Updated" date at the top of this page indicates the most recent revision.
This Privacy Policy was last reviewed and updated on January 1, 2025. It supersedes all previous versions.