Loading...
Menu
0 Cart

Spooky Setup
  • Menu
  • Home
  •  
  • Privacy Policy

Spooky Setup Privacy Policy

Last Updated: [October 16, 2025]

At Spooky Setup (“we,” “us,” or “our”), we are committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, store, share, and protect information about you when you visit our website (www.spookysetup.com), purchase our Halloween decor products, use our services, or interact with us online (collectively, the “Services”). By accessing or using our Services, you acknowledge that you have read, understood, and agree to the terms of this Privacy Policy, as well as our Terms of Service.

1. Information We Collect

We collect information about you to provide, improve, and personalize our Services, process your orders, and communicate with you. The information we collect falls into two categories: Personal Identifiable Information (PII) and Non-Personal Identifiable Information (Non-PII).

1.1 Personal Identifiable Information (PII)

PII is information that can be used to identify, contact, or locate you. We collect PII only when you voluntarily provide it to us, such as during account registration, checkout, or customer support interactions. This may include:

  • Contact information: Full name, email address, phone number, shipping address, billing address, and country/region.
  • Account information: Username, password (stored securely via encryption), and account preferences (e.g., favorite decor categories, notification settings).
  • Payment information: Credit/debit card details, PayPal or Apple Pay account information, and billing zip code. Note: We do not store full credit card numbers—this information is processed securely by our third-party payment processors (e.g., Stripe, PayPal) in compliance with PCI DSS standards.
  • Order-related information: Order history, product selections, and special requests (e.g., custom theme kit details).
  • Communication data: Content of emails, live chat messages, or phone calls you send to our customer support team (used to resolve issues and improve service).
1.2 Non-Personal Identifiable Information (Non-PII)

Non-PII is information that cannot be used to identify you individually. We collect this automatically when you use our Services, or through third-party tools, to optimize your experience and improve our website. This may include:

  • Browsing data: Pages you visit on our website, time spent on each page, links clicked, search queries (e.g., “outdoor pumpkin decor”), and referral sources (e.g., how you found our site—Google, social media, or a friend’s link).
  • Device information: Device type (e.g., smartphone, laptop), operating system (e.g., iOS, Windows), browser name (e.g., Chrome, Safari), IP address (used to approximate your location for shipping estimates), and unique device identifiers (e.g., cookies).
  • Usage data: Shopping cart activity (e.g., items added/removed), abandoned cart details, and product view history (used to personalize recommendations, such as suggesting “ghost string lights” if you viewed “halloween lighting”).
  • Aggregated data: Combined information about all users (e.g., “60% of users purchased outdoor decor in September”)—this data is anonymized and cannot be linked to any individual.
1.3 Cookies and Similar Technologies

We use cookies (small text files stored on your device) and similar technologies (e.g., web beacons, pixel tags) to collect Non-PII and enhance your experience. Cookies serve the following purposes:

  • Necessary cookies: Enable basic website functionality, such as remembering your shopping cart, logging you into your account, and processing checkout. These cookies cannot be disabled without breaking the Services.
  • Performance cookies: Track how you use our website (e.g., which pages load slowly) to fix errors and improve speed/functionality.
  • Functional cookies: Remember your preferences (e.g., language, shipping country) so you don’t have to re-enter them on future visits.
  • Marketing cookies: Personalize ads (e.g., showing Halloween decor ads on social media after you visit our site) and measure the effectiveness of our promotions.

You can manage cookie settings through your browser (e.g., Chrome: Settings > Privacy and security > Cookies and other site data). Disabling non-necessary cookies may limit some features (e.g., personalized recommendations or saved shopping carts).

2. How We Use Your Information

We use the information we collect for specific, legitimate purposes that align with our business goals and your needs as a customer. These purposes include:

2.1 Process and Fulfill Orders
  • Verify your identity to process payments securely.
  • Use your shipping address to deliver your Halloween decor (e.g., inflatable bats, pumpkin kits) via our third-party carriers (e.g., UPS, USPS).
  • Send order updates (e.g., “Your order has shipped!”) via email or SMS (if you opted in).
2.2 Provide Customer Support
  • Respond to your questions, concerns, or requests (e.g., helping you track a missing order, troubleshooting a damaged product, or assisting with returns).
  • Use your communication history (e.g., previous chat messages) to provide consistent, personalized support.
2.3 Personalize Your Experience
  • Recommend products based on your browsing and purchase history (e.g., showing “vintage Halloween kits” if you bought a “retro pumpkin lantern”).
  • Customize website content (e.g., highlighting seasonal decor—“Fall 2025 New Arrivals”—based on your location or time of year).
2.4 Communicate With You
  • Send transactional emails: Order confirmations, shipping notifications, return updates, and account-related alerts (e.g., password reset links). These are mandatory and cannot be unsubscribed from (as they relate to your purchases).
  • Send marketing communications: Promotions, discounts (e.g., “20% off outdoor decor this weekend”), new product announcements (e.g., “Introducing Solar-Powered Skull Lights”), and Halloween tips (e.g., “5 Ways to Decorate Your Porch”). You can opt out of these at any time by clicking the “Unsubscribe” link in the email, or updating your account preferences.
2.5 Improve Our Services
  • Analyze browsing and usage data to identify trends (e.g., “Users love mini pumpkin accents”) and update our product lineup.
  • Fix website bugs, optimize load times, and enhance user-friendly features (e.g., simplifying checkout).
  • Test new tools (e.g., a “Decor Visualizer” tool to preview products in your space) and gather feedback to refine them.
2.6 Comply With Legal Obligations
  • Store order and payment records to comply with tax laws (e.g., retaining invoices for 7 years in the U.S.).
  • Disclose information if required by law (e.g., responding to a court subpoena, preventing fraud, or protecting our legal rights).
3. How We Share Your Information

We do not sell, rent, or trade your PII to third parties for marketing purposes. We only share your information in the following limited circumstances:

3.1 Third-Party Service Providers

We work with trusted third parties to deliver our Services. These providers are contractually required to protect your information and only use it to perform the tasks we assign. Examples include:

  • Payment processors: Stripe, PayPal, or Apple Pay—process your credit card payments and do not store your PII beyond what is necessary for transaction security.
  • Shipping carriers: UPS, USPS, or FedEx—use your shipping address to deliver your order.
  • Customer support tools: Zendesk or LiveChat—store your support tickets to help our team resolve issues.
  • Analytics tools: Google Analytics—collects Non-PII (e.g., page views) to help us improve the website. We have disabled data sharing with Google’s advertising services.
  • Email marketing platforms: Mailchimp—sends our promotional emails (you can unsubscribe directly through Mailchimp).
3.2 Legal Requirements

We may share your information if:

  • We believe it is necessary to comply with a law, regulation, or court order.
  • We need to protect our rights, property, or safety, or the rights/safety of our users or the public (e.g., investigating fraud, such as a stolen credit card used to purchase decor).
3.3 Business Transfers

If Spooky Setup is acquired, merged, or sells all or part of its assets, your information may be transferred to the new owner. We will notify you via email or a prominent notice on our website before this transfer, and ensure the new owner adheres to this Privacy Policy.

3.4 With Your Consent

We will share your information with third parties only if you explicitly agree (e.g., allowing us to share your custom decor design with a local artisan to fulfill your order).

4. Your Rights Regarding Your Information

Under privacy laws (e.g., the EU’s GDPR, California’s CCPA/CPRA), you have certain rights regarding your PII. To exercise these rights, contact us at v73146180@gmail.com or use the “Privacy Requests” tool in your account settings.

4.1 Right to Access

You can request a copy of the PII we hold about you (e.g., your order history, email address, or shipping addresses). We will provide this in a portable format (e.g., CSV file) within 30 days.

4.2 Right to Correct

If your PII is inaccurate (e.g., a misspelled name or outdated address), you can request to update or correct it. Most changes can be made directly in your account settings; for other updates, contact our support team.

4.3 Right to Delete (“Right to Be Forgotten”)

You can request that we delete your PII, except in cases where we are required to retain it (e.g., order records for tax compliance). We will confirm deletion within 45 days, and notify any third parties we shared your information with to delete it as well.

4.4 Right to Withdraw Consent
You can withdraw consent for non-essential uses of your information (e.g., opting out of marketing emails, disabling cookies). Withdrawing consent will not affect the legality of how we used your information before the withdrawal.
4.5 Right to Restrict Processing

You can ask us to limit how we use your PII (e.g., stopping us from using your browsing history for recommendations) if you believe the information is inaccurate or the use is unnecessary.

4.6 Right to Data Portability

You can request to transfer your PII to another service provider (e.g., exporting your order history to a different shopping platform). We will provide this data in a machine-readable format (e.g., JSON) to facilitate the transfer.

5. How We Protect Your Information

We use industry-standard security measures to protect your PII from unauthorized access, use, or disclosure. These measures include:

  • Encryption: We use SSL (Secure Sockets Layer) technology to encrypt data transmitted between your device and our website (look for the “https://” and padlock icon in your browser).
  • Secure Storage: PII is stored on encrypted servers managed by our cloud provider (AWS), which uses firewalls and access controls to prevent breaches.
  • Payment Security: We comply with PCI DSS (Payment Card Industry Data Security Standard) requirements to ensure safe payment processing—our third-party processors handle all credit card data, so we never store full card numbers.
  • Employee Training: Our team receives regular training on data privacy and security (e.g., recognizing phishing scams, avoiding unauthorized data access).
  • Regular Audits: We conduct annual security audits to identify and fix vulnerabilities in our website and systems.

While we take all reasonable steps to protect your information, no online service is 100% secure. You can help protect your account by:

  • Using a strong, unique password for your Spooky Setup account.
  • Not sharing your account credentials with others.
  • Enabling two-factor authentication (2FA) if we offer it in the future.
  • Logging out of your account when using public devices.
6. Data Retention

We retain your information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as required by law. specific retention periods include:

  • PII (Account & Order Data): We retain your account information (name, email, address) until you request deletion. Order records (invoices, shipping details) are retained for 7 years to comply with U.S. tax laws.
  • Marketing Data: We retain your email address for promotional purposes only until you unsubscribe or request deletion.
  • Non-PII: Browsing and device data is retained for 1 year, then anonymized into aggregated data (no longer linked to you).
  • Legal Requirements: We may retain information longer if required by a court order, subpoena, or regulatory obligation.
7. Children’s Privacy

Our Services are not intended for children under the age of 13. We do not knowingly collect PII from children under 13. If we learn that we have collected PII from a child under 13 (e.g., a parent reports their child created an account), we will delete the information immediately and notify the parent. If you believe your child under 13 has provided us with PII, contact us at v73146180@gmail.com.

8. Third-Party Links

Our website may contain links to third-party websites or services (e.g., social media platforms like Facebook, Instagram, or Pinterest; or partner sites selling complementary products like Halloween costumes). This Privacy Policy does not apply to these third parties—we are not responsible for their privacy practices. We recommend reviewing the privacy policies of any third-party sites you visit.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our business practices, technology, or legal requirements. When we make changes:

  • We will revise the “Last Updated” date at the top of this page.
  • We will notify you via email (if you have an account) or a prominent banner on our website (for 30 days after the update).
  • For material changes (e.g., new ways we share your information), we may ask for your explicit consent before the changes take effect.

We encourage you to review this Privacy Policy regularly to stay informed about how we protect your information.

10. How to Contact Us

If you have questions, concerns, or requests related to this Privacy Policy or your information, please contact us:

  • Email: v73146180@gmail.com

We will respond to your inquiry within 30 days (or 45 days for complex requests, such as data deletion).

By using Spooky Setup’s Services, you confirm that you have read and understood this Privacy Policy, and agree to our collection, use, and sharing of your information as described herein.