Privacy – FanWear

Privacy Policy

By using FanWear, you acknowledge that you have read and understand the information in this Policy.

1. Introduction

FanWear, LLC (“FanWear”, “we”, “us”, or “our”) respects your privacy and is committed to protecting the Personal Data we process about you. FanWear operates an e-commerce platform at www.fanwear.vip (the “Site”) where customers may purchase collectible products, including creator-worn items, memorabilia, limited-edition merchandise, and related goods (“Products”). We also collaborate with creators (“Creators”) to produce, authenticate, or fulfill Products that may involve limited operational data exchange.

This Privacy Policy (“Policy”) explains in detail:

What Personal Data FanWear collects
How we use, disclose, store, and protect that Personal Data
Our lawful bases for processing (GDPR & UK GDPR)
Your rights under GDPR, UK GDPR, CCPA/CPRA, VCDPA, CPA, CTDPA, UCPA, & Nevada
How Personal Data may be shared with service providers (e.g., CCBill, shipping carriers, logistics systems, analytics platforms)
Data transfers outside your jurisdiction
Retention periods and data security measures
How to contact us or exercise your rights

This Policy applies to your interactions with FanWear, including:

Creating an account
Browsing the Site
Placing an order
Requesting support
Participating in creator collections
Interacting with our marketing or shipping operations
Using any functionality offered through FanWear

This Policy does not apply to websites, applications, or content linked from our Site unless expressly stated.

If you do not agree with this Policy, please do not use the Site or provide us with your Personal Data.

2. Age Requirement (18+)

FanWear is strictly intended for individuals 18 years of age or older.
By accessing or using the Site, you represent and warrant that you are:

at least 18 years old;
legally capable of entering a binding agreement; and
not prohibited from using our services under applicable law.

We do not knowingly process Personal Data from individuals under 18. If we learn that someone under 18 has used our Site, we will take reasonable steps to delete such Personal Data.

3. What is Personal Data?

Under GDPR, “Personal Data” means any information relating to an identified or identifiable natural person, including:

Name
Address
Email
Phone number
Payment or billing identifiers (tokenized)
Device data
IP address
Order history
Shipping details
Account credentials
Unique customer identifiers

Personal Data does not include information that has been anonymized or aggregated in a way that prevents identification of an individual.

4. What is “Processing”?

“Processing” includes any operation performed on Personal Data, such as:

Collection
Storage
Use
Disclosure
Transmission
Structuring
Modification
Deletion
Anonymization

When used in this Policy, “process” and its variants refer to any of the above activities.

5. Controller and Contact Information

For GDPR and UK GDPR purposes, FanWear, LLC is the Data Controller responsible for determining the purposes and means of processing your Personal Data.

FanWear, LLC
Email: support@fanwear.vip
Website: www.fanwear.vip

6. EU Representative

FanWear will appoint an EU Representative for GDPR compliance obligations. Once designated, this Policy will be updated accordingly.

7. UK Representative

FanWear will appoint a UK Representative for UK GDPR purposes. Once designated, this Policy will be updated accordingly.

8. Scope of This Policy

This Policy applies to the Personal Data of:

Customers
Visitors
Prospective customers
Creators
Individuals fulfilling creator-worn items
Individuals requesting support
Anyone interacting with FanWear systems, services, or communications

This Policy applies regardless of:

Device type
Operating system
Browser
Geographic location

9. Third-Party Links

Our Site may contain links to third-party websites or services.
We are not responsible for the privacy practices of these third parties.
Please review their privacy policies before providing them with any Personal Data.

10. Special Category Data Disclaimer

FanWear does NOT intentionally collect, process, or require any form of Special Category Data, including:

Biometric identifiers
Sexual orientation data
Health information
Racial or ethnic origin
Religious or philosophical beliefs
Political opinions
Trade union membership
Genetic data
Criminal offense data

If any Special Category Data is accidentally provided (e.g., through customer messages), we take steps to delete it unless processing is strictly required by law (e.g., fraud documentation for payment processors).

11. If You Do Not Wish to Provide Personal Data

Certain Personal Data is required to:

Process your orders
Complete shipping
Detect and prevent fraud
Provide customer support
Comply with legal obligations
Operate your account
Authenticate purchases

If you choose not to provide required Personal Data:

You may be unable to make purchases
We may be unable to ship your order
We may decline account creation
We may restrict certain features

12. Updates to This Policy

We may update this Privacy Policy from time to time.
If changes are material, we will:

Post the revised Policy on the Site
Update the “Last Updated” date
Provide additional notice where legally required

Continued use of the Site after updates constitutes acceptance of the revised Policy.

13. Categories of Personal Data We Collect

FanWear processes several categories of Personal Data to operate our Site, fulfill orders, protect our platform from fraud, collaborate with creators, and comply with legal requirements. These categories apply to Customers, Creators, and Visitors, depending on your interaction with FanWear.

Below is the fully expanded, OF-style comprehensive breakdown.

13.1. User Data

We may collect the following User Data when you create an account, place an order, or interact with FanWear:

Full name
Email address
Shipping address
Billing address
Phone number (if provided)
Account username (if applicable)
Communication preferences
Support request history
Notes or messages you send to FanWear Support
Optional metadata submitted by you (e.g., personalized order notes)

This information is used for order fulfillment, customer service, operational communications, and fraud prevention.

13.2. Creator Data

If you are a Creator participating in FanWear products, we may collect:

Name or alias
Email address
Links to your public profiles
Postal address (for receiving/returning items)
Tax information needed for payouts (if Creators are compensated)
Verification or contractual information necessary to manage creator collaborations
Communication records between you and FanWear
Fulfillment metadata (e.g., confirmation of signed items, proof of item return)

FanWear does not collect biometric data, sexual content, or identity verification selfies — unlike platforms that require creator verification for adult content.

13.3. Order & Transaction Data

FanWear stores the minimal necessary information related to orders, including:

Date and time of purchase
Items purchased
Order number
Transaction status (completed, refunded, disputed, failed)
Shipping status
Carrier tracking numbers
Chargeback or dispute metadata (if applicable)
Payment processor transaction tokens

We do not store full credit/debit card numbers. Payments are processed by CCBill and/or other PCI-DSS compliant payment processors.

13.4. Payment Data

When you complete a purchase, a third-party processor collects:

Payment card details
Expiration date
CVV
Payment method type
Billing zip/postal code
Card issuer data
Fraud risk metadata

FanWear receives only:

A tokenized payment identifier
Last 4 digits of the card
Card type
Billing address
Transaction ID
Fraud review results (pass/fail)
Chargeback notices

FanWear never receives full card numbers or CVV codes.

13.5. Shipping & Fulfillment Data

To ship your order, we collect:

Shipping name
Shipping address
Phone number (if provided)
Email address (for tracking)
Delivery instructions
Carrier tracking numbers
Delivery confirmations
Returned-to-sender records

If a Creator fulfills or signs an item directly, they only receive the minimum data required for fulfillment — typically:

A shipping label (customer name + address)
Or an anonymized FanWear routing label (when possible)

Creators do NOT receive your email, phone number, order list, or full customer profile.

13.6. Device and Technical Data

When you visit FanWear, we automatically collect Technical Data, including:

IP address
Country-level geolocation
Browser type and version
Device type (mobile, desktop, tablet)
Operating system
Referring URLs
Pages viewed
Time spent on each page
Access timestamps
Interaction data (buttons clicked, items added to cart, etc.)
HTTP request information
Session identifiers
Error logs and diagnostic data

This information helps us:

Improve site performance
Detect security issues
Personalize user experience
Maintain platform reliability
Comply with fraud-prevention requirements of payment processors

13.7. Cookies, Tags, Pixels & Tracking Technologies

We use:

Essential cookies (required for login, checkout, cart)
Analytics cookies (Google Analytics, server logs)
Performance cookies (load balancing, caching)
Tracking pixels (only if you opt-in for marketing)
Session cookies (expire automatically)
Preference cookies (remember your site settings)

A full cookie breakdown is found in the Cookie Notice section later in this Policy.

13.8. Creator Fulfillment Data

FanWear sometimes collaborates with creators for:

Signed merchandise
Creator-worn items
Limited co-branded releases
Third-party certification of items

In such cases, FanWear may provide the Creator only:

A shipping label (name + address)
OR an anonymized ID with FanWear handling shipment on their behalf
OR fulfillment confirmation metadata (e.g., “Item #4421 signed”)
OR packaging/handling instructions

Creators never receive full customer profiles, emails, account history, phone numbers, or order history.

This fulfills requirement:
Option B — “Creators ONLY receive what’s necessary for fulfillment.”

13.9. Marketing & Communication Data

If you opt into marketing messages, we may collect:

Email marketing preferences
Newsletter sign-ups
SMS consent (if used)
Past engagement data (opens, clicks)
Unsubscribe requests
Promotional campaign ID tracking

You can opt out at any time.

13.10. Support Communications

When you contact FanWear Support, we may process:

Email address
Support ticket content
Attachments you send
Internal notes
Resolution history
Device logs (if troubleshooting)

We retain this data for:

Quality control
Legal compliance
Fraud prevention
Future support reference

13.11. Automatically Generated Logs

These include:

Security logs
Authentication logs
Server access logs
Payment processor callbacks
System integrity logs

These logs help maintain:

Platform security
Fraud detection
Dispute resolution
Compliance with legal obligations

13.12. Data We Collect From Third Parties

We may receive:

Fraud signals from payment processors
Shipping status from carriers
Analytics from service providers
Creator collaboration confirmations
Legal requests from authorities (if applicable)

FanWear does not purchase third-party data sets or profile users.

14. How and Why We Use Personal Data

FanWear processes Personal Data only when we have a lawful basis to do so.
These lawful bases depend on the nature of your interaction with the Site, the type of Personal Data involved, and the purpose of processing.

We collect and process Personal Data for the following overarching reasons:

To fulfill customer orders
To manage shipping and logistics
To process payments through CCBill or other PCI-compliant providers
To authenticate transactions and prevent fraud
To comply with legal obligations (e.g., tax, accounting, age restriction enforcement, consumer protection)
To operate the FanWear website and maintain platform security
To carry out creator collaborations (signings, limited fulfillment, authentication)
To improve user experience, site performance, and our product offerings
To send optional marketing communications
To comply with GDPR, UK GDPR, CCPA/CPRA, VCDPA, CPA, CTDPA, UCPA, and Nevada requirements
To respond to legal requests and protect FanWear and its users

Below is the fully expanded GDPR-style table of Purposes, Categories of Personal Data, and Lawful Bases (Articles 6 & 9).

This table alone spans multiple pages in the final document — this is the full version, not a shortened one.

15. Purposes for Processing & Lawful Bases

Below is the professionally written, long-form, enterprise-grade lawful-basis table.

15.1. Account Creation & Site Access

Purpose / Activity	Categories of Data	Legal Basis (GDPR/UK GDPR)	Additional Notes
Creating and managing a FanWear account	User Data, Contact Data, Credentials	Contract (Art. 6(1)(b))	Necessary to provide access to the Site and allow purchases.
Maintaining login, authentication, security	Credentials, Device Data, Technical Data	Legitimate Interests (Art. 6(1)(f))	Security, fraud prevention, platform integrity.
Age restriction enforcement (18+)	Technical Data, Device Data, User-Provided Info	Legal Obligation (Art. 6(1)(c))	Ensures compliance with age restrictions.

15.2. Processing and Fulfilling Orders

Purpose	Categories	Legal Basis	Notes
Processing customer purchases	User Data, Order Data, Payment Tokens	Contract	Required to fulfill your order.
Shipping orders	Shipping Data, Order Data	Contract	Necessary to deliver items.
Printing labels & logistics	Shipping Data	Legitimate Interests	Operational fulfillment.
Handling returns/exchanges	Order Data, Shipping Data	Contract	Resolving customer support issues.
Creator collaboration fulfillment (e.g., signed items)	Minimal Fulfillment Data	Legitimate Interests	Only essential data shared; creators do NOT receive full profiles.

15.3. Payment Processing

Purpose	Categories	Legal Basis	Notes
Processing payments via CCBill	Payment Data (tokenized), Billing Address	Contract	Payments are handled by PCI-compliant processors.
Fraud detection & chargeback response	Payment Token, IP, Device Data	Legitimate Interests	Required to protect FanWear and customers.
Dispute documentation	Order Data, Payment Data	Legal Obligation	Required under consumer protection laws.

15.4. Customer Support & Communications

Purpose	Categories	Legal Basis	Notes
Responding to customer support requests	User Data, Support Communications	Contract	Necessary to assist with orders.
Internal quality control	Support logs	Legitimate Interests	Used to improve service.
Fraud or abuse investigation	Logs, Communications, Technical Data	Legitimate Interests	Protects platform integrity.

15.5. Platform Security, Debugging & Monitoring

Purpose	Categories	Legal Basis	Notes
Detecting and preventing fraud	Technical Data, Device Data	Legitimate Interests	Security-critical.
Maintaining system performance	Technical Data, Logs	Legitimate Interests	Ensuring uptime and functionality.
Intrusion detection & threat monitoring	IP address, logs	Legal Obligation	Required for legal/security compliance.

15.6. Marketing & Personalization

Purpose	Categories	Legal Basis	Notes
Sending marketing emails	Email, Preferences	Consent (Art. 6(1)(a))	Only if you opt in.
Personalizing content	Cookies, Analytics	Consent	Non-essential cookies require consent.
Tracking email performance	Engagement metrics	Consent	For marketing analytics.

You may withdraw consent at any time.

15.7. Analytics & Site Improvement

Purpose	Categories	Legal Basis	Notes
Analyzing site performance	Device Data, Cookies, Analytics Data	Legitimate Interests	Helps us improve product offerings.
A/B testing pages	Cookies, Technical Data	Legitimate Interests	UX optimization.

15.8. Legal & Regulatory Compliance

Purpose	Categories	Legal Basis	Notes
Tax reporting	Transaction Data	Legal Obligation	Required by law.
Responding to legal requests	Any relevant Personal Data	Legal Obligation	Courts, regulators, law enforcement.
Recordkeeping for disputes	Order Data, Payment Tokens	Legal Obligation	Maintained for statutory timeframes.

15.9. Mergers, Acquisitions & Corporate Transactions

Purpose	Categories	Legal Basis	Notes
Evaluating or executing a business transaction	User Data, Transaction Data	Legitimate Interests	Standard in corporate operations.
Transferring assets in a sale	Relevant Personal Data	Legitimate Interests / Legal Obligation	Subject to contractual protections.

15.10. No Automated Decision-Making

FanWear does not perform:

Automated decision-making
Automated profiling
Decisions with legal/similar significant effects

as defined by GDPR Articles 22(1) and 22(4).

Fraud signals may be generated by CCBill’s automated systems, but they do not make binding decisions without human review.

15.11. No Sale or Sharing of Personal Data

FanWear does NOT:

Sell Personal Data
Share Personal Data for cross-context behavioral advertising
Use Personal Data for targeted advertising without opt-in

This includes California, Virginia, Colorado, Connecticut, and Utah.

16. How We Obtain Personal Data

FanWear collects Personal Data from three primary sources:

16.1. Directly From You

You provide Personal Data when you:

Create an account
Place an order
Enter shipping or billing details
Contact customer support
Participate in creator merchandise events
Opt into marketing
Submit information through forms or checkout
Leave voluntary notes or instructions during purchase
Return items
Communicate with FanWear or our staff

This includes data such as:

Name
Email
Shipping address
Billing address
Payment information (via CCBill tokenization)
Support messages
Account preferences
Creator collaboration confirmations (if you are a Creator)

16.2. Automatically From Your Device

When you interact with the Site, we automatically collect:

IP address
Browser type/version
Operating system
Device type
Referring URL
Session activity
Cookies and tracking IDs
Analytics events
Error logs
Bot-detection signatures
Time spent on pages
Purchase funnel progression (anonymous unless logged in)

These logs are critical for:

Security
Fraud detection
Debugging
Performance optimization
Payment processor verification
Ensuring compliance with 18+ restrictions

16.3. From Third Parties

We may also receive Personal Data from:

16.3.1. Payment Processors

These may provide us:

Transaction tokens
Fraud review results
Payment method info (type, last 4 digits)
Chargeback notices
Billing verification status
Risk scores (no biometrics or sensitive data)

16.3.2. Shipping Carriers

We receive:

Tracking updates
Delivery confirmations
Returned-to-sender notifications
Loss/damage claims data
Fraudulent-address alerts

16.3.3. Analytics Providers

We may receive:

Aggregated metrics
Performance diagnostics
Funnel analytics
Traffic source data

None of this identifies you individually unless you are logged in.

16.3.4. Creators

Creators may provide:

Confirmation that an item was signed
Confirmation that an item was worn as advertised
Confirmation that items were returned to FanWear
Packaging records
Quality control notes

They do not transmit customer identities back to FanWear.

16.3.5. Legal Authorities

We may receive lawful requests for:

Records
Preservation notices
Fraud investigations
Cybersecurity intelligence
Chargeback documentation

We only disclose what is legally required.

FanWear does not sell Personal Data.

We may share Personal Data with the following categories of recipients:

17.1. Verified Service Providers

We use reputable third-party processors to help operate the FanWear platform, including:

Payment Processors

CCBill (primary)
Other PCI-DSS compliant processors if used in the future

They receive:

Payment card numbers (we do NOT)
Billing information
Fraud indicators
Payment method metadata

Shipping & Logistics Providers

USPS, UPS, FedEx, DHL
Fulfillment centers
Packaging/labeling partners

They receive:

Shipping name
Shipping address
Tracking email
Optional phone number

IT & Infrastructure Providers

Website hosting
Content delivery networks
DDoS protection services
Email delivery services

These may access:

IP addresses
Traffic data
System logs

Analytics Providers

Aggregated traffic data
Device/browser information
Non-identifying cookies

Customer Support Platforms

If we use external ticketing systems, they may hold:

Customer emails
Support messages
Attachments

17.2. Creators

Creators ONLY receive what is necessary to fulfill their obligations in creator-worn or signed merchandise.

Creators may receive:

Shipping label ONLY if they are shipping directly
Anonymized reference IDs
Packaging instructions
Item authentication info

Creators do NOT receive:

Customer emails
Customer phone numbers
Customer order history
Customer payment information
Customer analytics
Customer profiles
Any unnecessary personal information

This strictly follows your selected option:

✔ B — Creators ONLY receive what’s necessary for fulfillment.

17.3. Professional Advisors

We may share Personal Data with:

Legal counsel
Accountants
Auditors
Tax advisors
Compliance specialists

This occurs only when necessary for:

Legal compliance
Tax reporting
Contractual obligations
Fraud investigations

17.4. Corporate Transactions

If FanWear engages in:

Merger
Acquisition
Asset sale
Financing round
Bankruptcy
Business restructuring

Personal Data may be disclosed to:

Potential buyers
Investors
Financial institutions

This is always subject to:

Confidentiality obligations
Data protection requirements
Compliance with applicable law

17.5. Legal Authorities & Government Requests

We may disclose Personal Data:

To comply with subpoenas, warrants, preservation requests
To respond to government or law enforcement requests
To investigate fraud or illegal conduct
To protect FanWear’s legal rights
To protect the rights, safety, or property of others

We evaluate each request to ensure it is:

Lawful
Specific
Proportionate

We do not provide data beyond what is legally required.

18. International Transfers

FanWear is a U.S.-based company.
If you are in the EU, EEA, or UK, your Personal Data may be transferred to the United States.

To comply with GDPR international transfer requirements, we rely on:

18.1. Standard Contractual Clauses

For transfers from the EEA.

18.2. UK International Data Transfer Addendum

For transfers from the United Kingdom.

18.3. Processor Contracts

All third-party processors receiving EU/UK data are:

Bound by SCCs or equivalent protections
Required to use adequate security measures
Prohibited from selling or misusing data
Subject to audit and compliance obligations

18.4. Additional Safeguards

We implement:

Encryption
Data minimization
Access control
Logging and monitoring
Security reviews

18.5. Your Rights

You may request:

A copy of the transfer mechanism
More information about data transfers

(contact details provided later in the Policy)

19. Data Flow Map

This is the long-form, enterprise-grade version.

Below is a descriptive “map” of how Personal Data flows through FanWear systems.

19.1. Customer → FanWear

Data flowing to FanWear:

Account information
Order details
Shipping information
Support messages
Interaction data
Cookies and device data

19.2. FanWear → Payment Processor

Sent:

Billing address
Tokenized transaction data
Order amount
IP address (for fraud detection)

Received:

Payment token
Status (approved/declined)
Fraud review results

FanWear does not receive full card numbers or CVV.

19.3. FanWear → Shipping Carrier

Sent:

Name
Shipping address
Package weight
Tracking email or SMS (if provided)

Received:

Tracking updates
Delivery confirmations
Return notifications

19.4. FanWear → Creator

Creators receive minimum necessary data, which may include:

A shipping label if fulfilling directly
Or an anonymized internal ID for items shipped by FanWear
Instructions for signing or authenticating items

Creators do NOT receive:

Customer email
Customer phone number
Payment information
Profile data

19.5. FanWear → Analytics Providers

Sent:

Pseudonymized usage data
Device/browser information
Session metrics

Received:

Aggregated performance insights
Traffic patterns
Error diagnostics

19.6. FanWear Internal Systems

Internal FanWear systems process:

Order management
Label generation
Support tools
Fraud detection
Account protection
Access logs

All employees follow strict access controls.

If you are located in the European Economic Area (EEA), European Union (EU), or United Kingdom (UK), you have the following rights regarding your Personal Data.

Each right is expanded in full legal detail.

20.1. Right to Access (Art. 15 GDPR)

You have the right to request:

Confirmation of whether we process your Personal Data
A copy of your Personal Data
Information about how we process it

We will provide:

Processing purposes
Categories of Personal Data
Recipients or categories of recipients
Data retention periods
Existence of your rights
Source of data (if not collected from you)
Details of automated decision-making (FanWear performs none)

20.2. Right to Rectification (Art. 16 GDPR)

You may request correction of inaccurate Personal Data or completion of incomplete data.

20.3. Right to Erasure (“Right to be Forgotten”) (Art. 17 GDPR)

You may request deletion of your Personal Data when:

It is no longer necessary for its purpose
You withdraw consent (if consent was the basis)
You object to processing and no overriding interests exist
Processing is unlawful
Required by local law

We may decline deletion if:

We must comply with legal obligations (e.g., tax records)
The data is necessary for disputes or chargebacks
Fraud or abuse prevention requires retention

20.4. Right to Restriction of Processing (Art. 18 GDPR)

You may request restricted processing if:

You contest the accuracy of the data
Processing is unlawful
We no longer need the data but you require it for legal claims
You have objected and verification is pending

Restricted data will not be processed except:

With your consent
For legal claims
For public interest
To protect another person

20.5. Right to Data Portability (Art. 20 GDPR)

You may request a copy of your Personal Data in a structured, commonly used, and machine-readable format.

You may also request that we transmit this data to another controller when feasible.

20.6. Right to Object (Art. 21 GDPR)

You may object at any time to processing based on:

Legitimate Interests
Public Interest
Direct marketing (FanWear sends marketing only with consent)

We will stop processing unless:

We demonstrate compelling legitimate grounds that override your interests, or
Processing is needed for legal claims

20.7. Rights Regarding Automated Decision-Making (Art. 22 GDPR)

FanWear does not engage in automated decision-making or profiling that produces legal or similarly significant effects.

This includes:

No automated eligibility decisions
No behavioral profiling
No automated marketing segmentation

20.8. Right to Withdraw Consent

Where consent is the lawful basis, you may withdraw it at any time.

Withdrawal does not affect:

Lawfulness of processing performed before withdrawal
Processing performed under other lawful bases

20.9. Right to Lodge a Complaint (Art. 77 GDPR)

You may lodge a complaint with:

Your local supervisory authority
The EU Data Protection Authority where you reside
The UK Information Commissioner’s Office (ICO) if you are in the UK

You may also contact FanWear directly to resolve issues more efficiently.

21. Your Rights Under U.S. State Privacy Laws

This section includes full disclosures required by:

California Consumer Privacy Act (CCPA/CPRA)
Virginia Consumer Data Protection Act (VCDPA)
Colorado Privacy Act (CPA)
Connecticut Data Privacy Act (CTDPA)
Utah Consumer Privacy Act (UCPA)
Nevada Privacy Law (NRS 603A)

FanWear provides the highest applicable standard across all users.

21.1. Right to Know (California)

You may request:

Categories of Personal Data collected
Specific pieces of Personal Data
Sources of collection
Purposes for use
Categories of third-party recipients
Whether your Personal Data was sold or shared (it was NOT)

21.2. Right to Delete

You may request deletion of Personal Data subject to legal exceptions such as:

Completing transactions
Fraud prevention
Debugging and security
Compliance with legal obligations (tax, accounting)
Internal uses aligned with expectations

21.3. Right to Correct

You may request correction of inaccurate Personal Data.

21.4. Right to Opt Out of:

FanWear does not engage in:

Selling Personal Data
Sharing Personal Data for cross-context behavioral advertising
Targeted advertising without consent

Thus, there are no opt-outs needed for these specific categories.

21.5. Right to Access & Data Portability

You may request a structured copy of your Personal Data.

21.6. Right to Non-Discrimination

We will not discriminate against you for exercising your privacy rights.

This means:

No higher prices
No reduced service quality
No restricted access
No penalty fees

21.7. Right to Appeal (Virginia, Colorado, Connecticut)

If FanWear denies your privacy rights request, you may appeal the decision.

If your appeal is denied, you may contact your state Attorney General.

21.8. Nevada Opt-Out Rights

We do not sell Personal Data under Nevada law, but Nevada residents may submit opt-out requests using the contact information at the end of this Policy.

FanWear uses cookies and similar technologies to:

Keep your cart active
Maintain site functionality
Authenticate sessions
Enable checkout
Improve performance
Analyze site usage
Remember preferences

We use:

22.1. Essential Cookies

Required for:

Login
Checkout
Cart persistence
Security
Infrastructure load balancing

These cannot be disabled.

22.2. Analytics Cookies

Used for:

Understanding traffic
Diagnosing errors
Improving site performance

We use Google Analytics or comparable tools.

22.3. Optional Cookies (with Consent)

Including:

Marketing
Personalization
Tracking pixels

You may withdraw consent at any time.

23. Data Retention

We retain Personal Data only as long as necessary for:

Fulfilling orders
Legal obligations (e.g., tax)
Fraud prevention
Chargeback defense
Security
Business operations

Below are standard retention periods:

Category	Retention Period
Order Data	7 years (tax/accounting laws)
Shipping Data	3–7 years
Support Communications	2–5 years
Analytics Data	26 months (Google default)
Payment Tokens	Duration permitted by CCBill (for future transactions)
Cookies	As defined in cookie banner
Creator Fulfillment Data	Minimum necessary period (usually < 1 year)

When retention is no longer required, Personal Data is securely deleted or anonymized.

24. Security Measures

FanWear employs administrative, technical, and physical safeguards, including:

SSL/TLS encryption
PCI-DSS compliant payment processing (via CCBill)
Access controls and authentication
Firewalls and DDoS protection
Intrusion detection
Log monitoring
Encrypted storage for sensitive fields
Data minimization
Secure development practices
Regular security reviews
Employee confidentiality agreements

Despite these measures, no online system is 100% secure.

25. Exercising Your Rights

You may exercise applicable rights by contacting:

FanWear, LLC
Email: support@fanwear.vip

Requests must:

Provide sufficient information to verify identity
Specify the right being exercised
Allow reasonable time for response

If identity cannot be verified, FanWear may request additional verification or decline the request.

Last Updated: November 2025