Privacy Policy — Wenrexa Digital S… - Wenrexa Digital Store™
Privacy Policy
7 March 2026

1. Introduction

This Privacy Policy describes how Wenrexa Digital Store (hereinafter "Wenrexa", "we", "the platform"), operated by IE Epifantsev Denis Igorevich, collects, uses, stores, and protects information from users of wenrexa.com.

Wenrexa operates in compliance with applicable data protection laws and adheres to internationally recognized principles of data protection, including data minimization, purpose limitation, and respect for user rights.

By using the platform, you agree to this Policy. If you do not agree, please discontinue use.

2. Data We Collect

2.1. Data You Provide

  • Account data: email address, username, display name, password (stored encrypted), country of residence
  • External authentication data: when signing in via Google — name, email, and profile identifier provided by your Google account
  • Seller data (additional): legal name, tax identification number, bank details — for payout processing
  • Content: products, images, descriptions, and other materials published on the platform

2.2. Automatically Collected Data

  • IP address and approximate location (GeoIP)
  • Browser type, operating system, screen resolution
  • Pages viewed, visit duration, referral source
  • Cookies and session data (see Section 5)

3. How We Use Your Data

We process data solely for the following purposes:

  • Account creation, management, and authentication
  • Payment processing and seller payouts
  • Security and fraud prevention
  • Platform improvement based on usage analytics
  • Sending notifications (which you may opt out of)
  • Compliance with legal obligations

4. Third-Party Services

We use trusted third-party services to operate the platform:

  • Payment processors — for secure payment handling. We do not store buyers' card details
  • Authentication — Google OAuth 2.0 for signing in and registering via a Google account. We only receive the name and email from your Google profile
  • Analytics — Google Analytics for understanding site usage
  • Social media — Pinterest and other platforms for public content promotion
  • Email services — for transactional and informational communications

Each service has its own privacy policy. We share only the minimum data necessary for each service to function.

4.1. Automated Product Promotion

Public product information (title, image, description, link) may be automatically shared on third-party platforms such as Pinterest for promotional purposes. Only information that sellers have made publicly available is shared. No personal user data is transmitted in this process.

4.2. Google OAuth — Data Security and Limited Use

When signing in via Google, we only receive your name, email address, and profile identifier. This data is used exclusively for:

  • Creating and managing your account on the platform
  • Providing platform functionality (authentication, notifications)
  • Compliance with legal obligations

We do not sell, rent, or share data obtained through Google with any third parties for any purpose other than operating the platform. Google data is not used for:

  • Targeted advertising or marketing profiling
  • Credit decisions or insurance risk assessment
  • Building consumer profiles for discriminatory purposes
  • Any other commercial purposes unrelated to platform functionality

Upon account deletion, all data obtained through Google OAuth is removed from our servers within 30 days. Our use of Google API data complies with the Google API Services User Data Policy, including the Limited Use requirements.

5. Cookies and Tracking Technologies

We use the following categories of cookies:

  • Essential — authentication, shopping cart, language preferences, CSRF protection
  • Analytics — Google Analytics
  • Functional — remembering preferences (theme, timezone)

You can manage cookies through your browser settings. Disabling essential cookies may cause the platform to malfunction.

For more details on cookies, see the Cookie Policy.

6. Data Storage and Security

  • Data is stored on secure servers with encryption
  • Passwords are hashed and not accessible even to administrators
  • Access to personal data is restricted on a need-to-know basis
  • All connections use HTTPS encryption

7. International Data Transfers

Servers and third-party services we use may be located in various jurisdictions. When transferring data outside the user's country, we ensure an adequate level of protection in accordance with applicable law.

8. Your Rights

You have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Delete your account and associated data (via profile settings or by request)
  • Withdraw consent for data processing
  • Opt out of marketing communications

Upon account deletion, data becomes inaccessible immediately. Complete removal from backups occurs within 30 days. Purchase transaction records may be retained for accounting and legal purposes.

9. Changes to This Policy

We may update this Policy. The current version is always available at wenrexa.com/Legal. Continued use of the platform after changes constitutes acceptance of the updated Policy.

10. Contact

For privacy inquiries: support@wenrexa.com