CWPChildrenswear.Platform

Last updated: May 2026

Privacy Policy

This privacy notice describes how Childrenswear Platform ("we", "us") processes personal data of people who use our website, supplier panel, admin panel and buyer mobile app (collectively, the "Service"). It applies to wholesale buyers, suppliers and visitors. The Service is intended for businesses; we do not knowingly collect data from anyone under 18.

Who we are

Childrenswear Platform is a B2B marketplace that connects wholesale buyers with verified manufacturers and consolidates shipments. The platform is operated by Samir, based in Yiwu, China. You can reach us at [email protected].

Data we collect

Account data — name, email address, phone number, password (stored as a one-way hash for email/password accounts; Google sign-in accounts have no password stored on our side). Business profile — company name, business address, country, tax/VAT identifier where applicable. Order data — products, variants, quantities, prices, shipping address, billing notes. Payment data — uploaded payment receipt images, bank-transfer reference, amount paid. We do not store credit-card numbers; we do not process card payments. Communications — messages you send us via in-app chat, email or support forms. Device & technical data — IP address, device model, operating system, app version, language preference, push-notification token. Diagnostics — crash reports and basic performance metrics, aggregated where possible.

How we use your data

To operate your account (sign-up, sign-in, approval, password reset). To process orders end-to-end (cart, sub-order split, payment verification, supplier notification, shipment tracking, delivery confirmation). To deliver consolidated shipments (sharing your shipping address with our consolidation hub and the outbound courier only — never with individual suppliers). To send transactional notifications (order status, payment verified, shipment dispatched). To translate product information into your selected language. To prevent fraud, abuse and unauthorised access. To comply with tax, accounting and legal obligations. To improve the Service via aggregated, non-identifying analytics. We do not sell personal data, and we do not use it for behavioural advertising.

Legal bases (EEA / UK users)

We rely on: (a) contract — to provide the Service you signed up for; (b) legitimate interests — to keep the platform secure, prevent fraud and improve features; (c) legal obligation — to keep tax and accounting records; (d) consent — for optional features such as push notifications, which you can switch off in your device settings at any time.

Third-party services we rely on

Firebase Authentication (Google LLC) — sign-in and identity verification. Firebase Cloud Messaging — push notifications. Google Cloud / Hetzner — hosting and database. Gemini API (Google LLC) — automated translation of product descriptions (no buyer personal data is sent to Gemini). Courier and logistics partners — to deliver your shipments. Each of these providers acts as a processor under our instructions and is bound by appropriate data-protection terms.

Where your data is stored

Personal data is stored on servers operated by our infrastructure providers, primarily in the European Union. Some operational data (e.g. authentication, push notifications, automated translation) may be processed via Google's global infrastructure under standard contractual clauses. Backups are retained for up to 30 days.

How long we keep data

Account data — for as long as your account is active, plus up to 30 days after closure for safety against accidental deletion. Order, invoice and payment-receipt data — kept for the period required by applicable tax and accounting law (typically up to 10 years). Diagnostics and logs — up to 90 days. Marketing communications — until you opt out.

Your rights

You can ask us to: access the data we hold about you; correct it if it is wrong; delete it (right to be forgotten, subject to legal retention periods); export it in a portable format; restrict or object to certain processing; withdraw consent for any processing based on consent. To exercise any of these rights, email [email protected] from the address registered on your account. We respond within 30 days. EEA/UK users have the right to lodge a complaint with their local data-protection authority.

Security

We protect your data with industry-standard measures: TLS encryption for all traffic, password hashing (bcrypt), restricted access for staff on a need-to-know basis, and audit logs for sensitive admin actions. No system is perfectly secure, but if we ever become aware of a breach affecting your personal data, we will notify you and the relevant authorities as required by law.

Children

The Service is a B2B platform for wholesale buyers and suppliers. It is not directed at children. We do not knowingly collect personal data from anyone under 18. If you believe a child has provided us data, contact us and we will delete it.

Updates to this policy

We may update this notice to reflect changes in our practices or in the law. Material changes will be communicated by email or via the app. The "Last updated" date at the top of this page always reflects the current version.

Contact

Questions, requests or complaints about this policy or your personal data: [email protected]. We answer in English, Turkish, Russian and Azerbaijani.