1. General Provisions

This Privacy Policy defines how DavaLeather (the “Operator”) collects, stores, and processes personal data received through the website davaleather.com.

The policy applies to all information the Operator may receive from visitors and customers through website forms, booking workflows, and communication channels linked from the site.

2. Key Terms Used in This Policy

Personal Data: any information relating to an identified or identifiable user.
Processing: any operation with personal data, including collection, storage, use, transfer, update, deletion, and destruction.
User: any person who visits davaleather.com or submits data through forms.
Operator: DavaLeather, which determines the purposes and means of data processing.
Cookies: technical identifiers used for site functionality, analytics, and service quality improvements.

3. Personal Data the Operator May Process

Name and contact details (phone number, email address).
Service request details (selected service, notes, preferred time/date, ZIP and address details where applicable).
Media files submitted by the user (photos or videos of damage for estimate review).
Communication metadata related to booking, rescheduling, cancellation, and support.
Depersonalized technical data, including cookies and analytics events.

4. Purposes of Personal Data Processing

Reviewing service requests and preparing estimates.
Scheduling, confirming, rescheduling, and managing appointments.
Contacting users regarding requested services and support actions.
Improving site usability, booking flow quality, and service operations.
Sending service-related notifications and offers where permitted by law.

5. Legal Bases for Processing

The Operator processes personal data when the user voluntarily submits data through site forms or otherwise initiates communication with DavaLeather.

User consent provided by submitting forms on the website.
Performance of pre-contractual and contractual service-related actions requested by the user.
Compliance with applicable legal obligations.

6. Collection, Storage, Transfer, and Protection

The Operator applies organizational and technical safeguards to protect personal data against unauthorized access, alteration, disclosure, or destruction.

Access to personal data is limited to authorized personnel and service providers involved in request processing and operations.
Data may be shared with infrastructure, communication, analytics, and hosting vendors only to the extent necessary to provide services and maintain the website.
The Operator keeps data for as long as needed for service purposes, legal compliance, dispute resolution, and operational records, then deletes or anonymizes it where appropriate.

7. Cross-Border Data Transfers

If technical infrastructure or vendors process data outside the user’s country, the Operator uses reasonable measures to ensure adequate data protection and lawful transfer conditions.

8. User Rights and Contact

Users may request access, correction, update, or deletion of personal data, and may withdraw consent where processing is based on consent.

For privacy requests, contact: service@davaleather.com.

9. Policy Updates

The Operator may update this Privacy Policy from time to time. The current version is always published on this page: /privacy.