Privacy Policy

StrataMoto Privacy Policy

Last updated: 31 October 2025

Thank you for choosing StrataMoto. We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, make a purchase (including pre‑orders), contact support, or otherwise interact with us.

If you do not agree with this policy, please do not use our Services. If you have questions, contact us at support@stratamoto.com.

1) Who we are

StrataMoto (the “Company,” “we,” “us,” or “our”).

  • Legal entity name: [Insert legal entity name, e.g., "StrataMoto S.R.L."]

  • Registered office: [Insert full postal address]

  • Email: support@stratamoto.com

  • Website: [Insert storefront URL]

For users in the European Economic Area (EEA), the United Kingdom (UK), and Switzerland, StrataMoto is the data controller of your personal data under the EU/UK GDPR. If we appoint an EU/UK representative or a Data Protection Officer (DPO), we will update this policy with their details.

2) Scope

This policy covers personal data processed when you:

  • Browse our website or storefront;

  • Create an account;

  • Place an order or pre‑order;

  • Request quotes for custom work;

  • Subscribe to marketing communications;

  • Contact customer support;

  • Engage with us on social media or participate in promotions.

It does not cover third‑party websites or services that we do not control.

3) Personal data we collect

A. Data you provide directly

  • Account & identity data: full name, email, password, phone, billing/shipping addresses.

  • Order & transaction data: products, services, pre‑order details, order notes, prices, taxes, currency, payment status.

  • Support & communications: messages, email content, attachments, preferences.

  • Custom/fitment information (optional): sizing, helmet model, artwork briefs, references you upload.

  • Marketing preferences: newsletter opt‑in/opt‑out, cookie choices.

B. Data collected automatically

  • Device & usage data: IP address, browser type, OS, device identifiers, pages viewed, referring/exit pages, timestamps, and clickstream.

  • Cookies & similar technologies: see Cookies & tracking below.

C. Data from third parties

  • Payment providers (e.g., Stripe, PayPal, Shop Pay): limited payment metadata (no full card numbers), transaction confirmations, fraud signals.

  • Fulfillment & carriers (e.g., DHL, UPS): tracking numbers, delivery status.

  • Anti‑fraud & security tools: risk scores, blocklists.

  • Advertising/analytics partners (if enabled): aggregated campaign performance data.

We do not intentionally collect special category data (e.g., health, religion) or data about children (see Children’s privacy).

4) Purposes & legal bases (GDPR/UK GDPR)

We process personal data only when we have a legal basis to do so:

Purpose Examples Legal basis
Provide our Services Process orders & pre‑orders, deliver products, manage accounts, provide support Contract (Art. 6(1)(b))
Payments & fraud prevention Authenticate payments, detect abuse, chargebacks Legitimate interests (Art. 6(1)(f)); Legal obligation (Art. 6(1)(c))
Communications Transactional emails (order updates, shipping), service notices Contract; Legitimate interests
Marketing Newsletters, promotions, product updates (where permitted) Consent (Art. 6(1)(a)) or Legitimate interests where applicable
Analytics & improvement Measure performance, fix bugs, improve UX Legitimate interests
Legal & compliance Tax, accounting, regulatory requests Legal obligation

Where we rely on consent, you may withdraw it at any time (see Your rights).

5) Payments

We use third‑party payment processors to handle payments securely. They receive your payment details directly and process them under their own privacy policies. We receive confirmation of payment, the last 4 digits of your card or masked wallet ID, and status (e.g., success/failed/refund). We do not store full card numbers.

6) Cookies & tracking

We use cookies and similar technologies to operate and improve our website.

Categories of cookies:

  • Strictly necessary: site security, cart/session, checkout.

  • Performance/analytics: traffic measurement, error diagnostics.

  • Functional: remember choices, language, region.

  • Advertising (if enabled): measure ad performance and deliver relevant ads.

You can manage preferences via our cookie banner (where available) and your browser settings. Blocking some cookies may impact site functionality.

7) Sharing & disclosure

We share personal data only as needed and with appropriate safeguards:

  • Service providers/processors: e‑commerce platform/hosting, payment processors, order‑management, printing/paint partners for custom jobs, customer support tools, email/SMS providers, analytics, and security vendors.

  • Logistics & customs: carriers, fulfillment centers, customs brokers for international shipments.

  • Business transfers: in connection with a merger, acquisition, or asset sale (we will notify you where required).

  • Legal & compliance: to comply with laws, enforce our terms, or protect rights, property, or safety.

We do not sell your personal information. If we engage in cross‑context behavioral advertising, we will provide opt‑out mechanisms as required by law.

8) International transfers

We may transfer, store, or process your data outside of your country. For EEA/UK users, where data is transferred to countries without an adequacy decision, we use appropriate safeguards such as the EU/UK Standard Contractual Clauses (SCCs) and supplementary measures as needed.

9) Data retention

We keep personal data only as long as necessary for the purposes described or as required by law (e.g., tax/accounting). Typical retention periods:

  • Orders & invoices: 10 years (or as required by local law).

  • Account & support records: while your account is active and up to 6 years thereafter.

  • Marketing data: until you unsubscribe or your consent is withdrawn, then we minimize/blacklist as required.

  • Device/analytics data: typically 14–26 months, depending on the tool configuration.

10) Your rights

Your rights depend on your location. Subject to conditions and exemptions, you may have the right to:

  • Access your personal data and get a copy;

  • Rectify inaccurate or incomplete data;

  • Erase data (right to be forgotten);

  • Restrict processing;

  • Object to processing (including direct marketing);

  • Portability of data you provided to us;

  • Withdraw consent where processing is based on consent;

  • Lodge a complaint with a supervisory authority.

EEA/Italy: You can lodge complaints with the Garante per la protezione dei dati personali (www.garanteprivacy.it). UK: the ICO (ico.org.uk). We will respond to verified requests within one month (or as permitted by law).

To exercise rights, email support@stratamoto.com with the subject line “Privacy Request” and specify your request and the email used on our site. We may ask for information to verify your identity.

11) Regional notices (US state laws)

For residents of California, Virginia, Colorado, Connecticut, and other states with privacy laws, you may have additional rights, including:

  • Right to know categories of personal information collected, sources, purposes, and disclosures;

  • Right to access, correct, delete, and opt‑out of sales or targeted advertising (we do not sell personal information, but if we engage in targeted ads, we will provide a clear opt‑out);

  • Right to non‑discrimination for exercising your rights.

If applicable, we will honor Global Privacy Control (GPC) signals for opt‑out of targeted advertising/sale.

12) Children’s privacy

Our Services are not directed to children under 16 (or the age required by local law). We do not knowingly collect personal data from children. If you believe a child has provided data, contact us and we will delete it.

13) Security

We implement technical and organizational measures designed to protect personal data (encryption in transit, access controls, backups). However, no method of transmission or storage is 100% secure.

14) Automated decision‑making

We do not engage in automated decision‑making or profiling that produces legal or similarly significant effects about you.

15) Changes to this policy

We may update this Privacy Policy from time to time. We will post the new version and update the “Last updated” date above. Significant changes may be communicated by email or site notice.

16) Contact us

If you have questions or requests about this policy or your personal data:

StrataMoto – Privacy
Email: support@stratamoto.com
Postal: [Insert complete postal address]

Summary (non‑legal)

  • We collect what we need to run the store, fulfill orders, and improve your experience.

  • We don’t sell your data. We share it only with trusted providers to process orders, payments, and shipping.

  • You can manage cookies, unsubscribe from marketing, and exercise privacy rights by emailing us.