Welcome to blockpalettekit (www.blockpalettekit.com). We value your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and purchase our website design templates and custom layout frameworks.

Our operations are fully aligned with the General Data Protection Regulation (GDPR) for our users in Europe and the Personal Data Protection Act (PDPA) of Singapore.

1. Data Controller

blockpalettekit operates on a strictly self-managed, independent brand model. For the purposes of the GDPR and other applicable data protection laws, the Data Controller responsible for your personal data is:

  • Brand Name: blockpalettekit
  • Operating Address: 38 BEACH ROAD #23-11 SOUTH BEACH TOWER, SINGAPORE 189767
  • Official Support Email: website@blockpalettekit.com

As the Data Controller, we manage, process, and protect your data directly to ensure the highest standards of privacy security.

2. Personal Data We Collect

We collect information that you provide directly to us when making a purchase, creating an account, or communicating with us, including:

  • Identity & Contact Data: Name, email address, billing address, and phone number.
  • Technical & Usage Data: IP address, browser type, time zone setting, and website usage patterns collected via essential cookies (strictly used to optimize your website experience).

3. Secure Payment Processing

All financial transactions on our website are processed with the highest level of security. blockpalettekit does not store, collect, or have access to your credit card numbers or financial account credentials.

  • Third-Party Payment Processors: All payments are securely handled through industry-leading, PCI-DSS compliant primary payment gateways.
  • Data Transfer for Payment: When you purchase a design asset, your billing details and contact information are passed directly to our secure payment gateway provider via encrypted protocols (SSL/TLS) to complete the transaction and prevent fraud.
  • Gateway Privacy Policies: These payment institutions operate under strict international financial regulations. For details on how your payment details are handled, please refer to the privacy terms provided on the secure checkout page.

4. Age Restriction & Protection of Minors

Our website and digital design products are not intended for children.

  • Minimum Age Requirement: You must be at least 18 years of age to purchase products from this website.
  • Compliance Procedure: By completing a transaction, you confirm that you are at least 18 years old. If we discover that we have inadvertently collected personal data from a minor under 18 without verified parental consent, we will promptly deactivate the account, delete the associated personal data, and issue a corresponding refund for any unfulfilled or voided digital performance in accordance with our terms.

5. Data Retention Period

We only retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including satisfying any legal, accounting, tax, or fraud-prevention requirements.

  • Transaction and Billing Records: Customer names, billing addresses, and payment logs associated with purchases are retained for 7 years to comply with standard legal financial auditing and statutory tax regulations.
  • Customer Support Logs: Email communications and support inquiries are retained for 2 years after the resolution of the ticket to ensure continuity of service and protect against potential consumer disputes.
  • Account Data: If you create a user profile, your data is retained as long as your account remains active. You may request the deletion of your account at any time.

6. Data Transfers Outside the EEA

As our brand is headquartered in Singapore and primarily focuses on serving clients within Europe, your personal data will be securely transferred from the European Economic Area (EEA) to Singapore. Singapore provides a comprehensive, high-standard legal framework via the PDPA. We implement strict technical and organizational safeguards (including Standard Contractual Clauses where applicable) to ensure your data receives an equivalent level of protection as mandated within Europe.

7. Your Legal Rights (GDPR)

If you are located in the European Union or European Economic Area, you possess the following statutory rights under the GDPR regarding your personal data:

  • Right of Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Request correction of any inaccurate or incomplete data.
  • Right to Erasure (“Right to be Forgotten”): Request deletion of your personal data, provided it does not conflict with our regulatory obligations to retain financial and tax records.
  • Right to Restrict or Object to Processing: Object to or restrict certain types of data processing.

To exercise any of these rights, please contact us directly at website@blockpalettekit.com. We will review and respond to your request within 30 days.