Bespoke and Ready-Made Furniture

Privacy policy

LANGUAGE AND LOCALIZATION

As we primarily serve customers in the GCC region, we may collect information about your language preferences and location to provide localized content, pricing in local currency, and appropriate delivery options. This includes:

  • Your preferred language (Arabic or English)
  • Your country and city of residence
  • Your local currency preferences
  • Regional shipping preferences

We use this information to customize your shopping experience and provide content and services that are relevant to your location within the GCC region.

For our GCC customers, we offer various payment methods that are popular in the region, including:

  • Credit and debit cards
  • Bank transfers
  • Cash on delivery (where available)
  • Digital wallets and local payment methods

Payment processing for online transactions is handled securely by Shopify Payments and other payment processors. When you provide payment information, that information is transmitted using secure socket layer technology (SSL) and is encrypted. We do not store your complete credit card or payment details on our servers. Instead, that information is processed and stored by our payment processors who have committed to compliance with the Payment Card Industry Data Security Standard (PCI-DSS).

For cash on delivery transactions, our delivery personnel may collect payment information at the time of delivery in accordance with local regulations.

Last Updated: March 9, 2025

INTRODUCTION

This Privacy Policy describes how Haven Chateau (the "Site", "we", "us", or "our") collects, uses, and discloses your personal information when you visit, use our services, or make a purchase from havenchateau.co (the "Site") or otherwise communicate with us regarding the Site (collectively, the "Services"). Our website is hosted on Shopify Inc., an e-commerce platform that allows us to sell our products and services to you.

While our services are primarily directed to residents of the Gulf Cooperation Council (GCC) countries (Bahrain, Kuwait, Oman, Qatar, Saudi Arabia, and the United Arab Emirates), we welcome customers from around the world. This Privacy Policy applies to all users of our Services regardless of location, though certain provisions may be specifically relevant to GCC residents. For purposes of this Privacy Policy, "you" and "your" means you as the user of the Services, whether you are a customer, website visitor, or another individual whose information we have collected pursuant to this Privacy Policy.

Please read this Privacy Policy carefully. By using and accessing any of the Services, you agree to the collection, use, and disclosure of your information as described in this Privacy Policy. If you do not agree to this Privacy Policy, please do not use or access any of the Services.

CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time, including to reflect changes to our practices or for other operational, legal, or regulatory reasons. We will post the revised Privacy Policy on the Site, update the "Last updated" date and take any other steps required by applicable law. For significant changes, we will provide reasonable notice, such as through a prominent notice on our website or by sending you an email notification.

HOW WE COLLECT AND USE YOUR PERSONAL INFORMATION

To provide the Services, we collect personal information about you from a variety of sources, as set out below. The information that we collect and uses varies depending on how you interact with us.

In addition to the specific uses set out below, we may use information we collect about you to communicate with you, provide or improve the Services, comply with any applicable legal obligations, enforce any applicable terms of service, and to protect or defend the Services, our rights, and the rights of our users or others.

WHAT PERSONAL INFORMATION WE COLLECT

The types of personal information we obtain about you depends on how you interact with our Site and use our Services. When we use the term "personal information", we are referring to information that identifies, relates to, describes or can be associated with you. The following sections describe the categories and specific types of personal information we collect.

Information We Collect Directly from You

Information that you directly submit to us through our Services may include:

  • Contact details including your name, address, phone number, and email.
  • Order information including your name, billing address, shipping address, payment confirmation, email address, and phone number.
  • Account information including your username, password, security questions and other information used for account security purposes.
  • Customer support information including the information you choose to include in communications with us, for example, when sending a message through the Services.
  • Product preferences including favorite items, style preferences, room dimensions, and other information you provide to help us recommend suitable furniture.
  • Delivery preferences including special delivery instructions, preferred delivery times, and property access details relevant for furniture delivery.
  • Regional preferences such as language preferences (Arabic or English) and local currency selection.

Some features of the Services may require you to directly provide us with certain information about yourself. You may elect not to provide this information, but doing so may prevent you from using or accessing these features.

Information We Collect about Your Usage

We may also automatically collect certain information about your interaction with the Services ("Usage Data"). To do this, we may use cookies, pixels and similar technologies ("Cookies"). Additionally, Shopify collects technical information when you visit our website to ensure the proper functioning of our store. Usage Data may include information about how you access and use our Site and your account, including:

  • Device information (type of device, operating system, device identifier)
  • Browser information (browser type, settings)
  • Information about your network connection
  • Your IP address
  • Pages and products viewed
  • Shopping cart activity
  • Purchase history
  • Time spent on pages
  • Links clicked
  • Referring website
  • Other information regarding your interaction with the Services

This information helps us improve our website, deliver better and more personalized services, and ensure the security of our site.

Information We Obtain from Third Parties

Finally, we may obtain information about you from third parties, including from vendors and service providers who may collect information on our behalf, such as:

  • Shopify: As our e-commerce platform provider, Shopify collects and processes information about your shopping session, IP address, order details, and browsing behavior on our site.
  • Shopify Payments or other payment processors: Who collect payment information (e.g., bank account, credit or debit card information, billing address) to process your payment in order to fulfill your orders and provide you with products or services you have requested, in order to perform our contract with you.
  • Shopify apps and plugins: We may use additional Shopify apps that collect information to provide specific functionality like reviews, loyalty programs, or marketing tools.
  • Email service providers: When you open or click on emails we send you.
  • Marketing and advertising partners: When you interact with our advertisements.

Any information we obtain from third parties will be treated in accordance with this Privacy Policy. We also require our third-party partners to comply with applicable laws regarding your personal information. Also see the section below, Third Party Websites and Links.

HOW WE USE YOUR PERSONAL INFORMATION

·         Providing Products and Services. We use your personal information to provide you with the Services in order to perform our contract with you, including to process your payments, fulfill your orders, to send notifications to you related to your account, purchases, returns, exchanges or other transactions, to create, maintain and otherwise manage your account, to arrange for shipping, facilitate any returns and exchanges and other features and functionalities related to your account.

·         Marketing and Advertising. We may use your personal information for marketing and promotional purposes, such as to send marketing, advertising and promotional communications by email, text message or postal mail, and to show you advertisements for products or services. This may include using your personal information to better tailor the Services and advertising on our Site and other websites. We will obtain your consent for these activities where required by applicable law.

·         Security and Fraud Prevention. We use your personal information to detect, investigate or take action regarding possible fraudulent, illegal or malicious activity. If you choose to use the Services and register an account, you are responsible for keeping your account credentials safe. We highly recommend that you do not share your username, password, or other access details with anyone else. If you believe your account has been compromised, please contact us immediately.

·         Communicating with You and Service Improvement. We use your personal information to provide you with customer support and improve our Services. This is in our legitimate interests in order to be responsive to you, to provide effective services to you, and to maintain our business relationship with you.

COOKIES

Like many websites, we use Cookies on our Site. Since our website is hosted on Shopify, many of the cookies used on our site are set by Shopify to help our store function properly. For specific information about the Cookies that Shopify uses, see https://www.shopify.com/legal/cookies.

In addition to Shopify's cookies, we use Cookies for the following purposes:

·         Essential Cookies: These are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms.

·         Performance and Analytics Cookies: These allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

·         Functional Cookies: These enable the website to provide enhanced functionality and personalization. They may be set by us or by third-party providers whose services we have added to our pages.

·         Targeting Cookies: These may be set through our site by our advertising partners. They may be used to build a profile of your interests and show you relevant advertisements on other sites.

Most browsers automatically accept Cookies by default, but you can choose to set your browser to remove or reject Cookies through your browser controls. Please keep in mind that removing or blocking Cookies can negatively impact your user experience and may cause some of the Services, including certain features and general functionality, to work incorrectly or no longer be available. Additionally, blocking Cookies may not completely prevent how we share information with third parties such as our advertising partners.

Cookie Management: You can manage your cookie preferences by:

  • Adjusting your browser settings to reject or delete cookies
  • Using our cookie consent management tool available on our website
  • Opting out of targeted advertising via industry-standard opt-out tools

DATA RETENTION

We retain your personal information for as long as necessary to fulfill the purposes for which we collected it, including:

·         Account Information: We retain account information for as long as your account is active, plus a retention period after account closure to comply with legal obligations.

·         Order Information: We retain order information for a minimum of 7 years for tax, accounting, and warranty purposes.

·         Customer Service Communications: We retain these communications for 2 years after your last interaction with us.

·         Marketing Preferences: We retain these until you opt-out or request deletion.

We may retain certain information for longer periods if required by legal, tax, accounting, or regulatory obligations, or for legitimate business purposes.

HOW WE PROTECT YOUR INFORMATION

We implement reasonable and appropriate technical and organizational measures to protect your personal information. As our store is hosted on Shopify, many aspects of data security are handled by Shopify's security infrastructure. Shopify is PCI DSS compliant and maintains high security standards.

In addition to Shopify's security measures, we implement the following:

  • Secure account access with password protection
  • Limited employee access to personal information
  • Regular training for our employees on data protection and security
  • Careful selection and monitoring of third-party service providers
  • Physical security measures for our facilities in Bahrain

For our GCC customers, we ensure compliance with local data protection regulations where applicable, including the Bahrain Personal Data Protection Law, the UAE Federal Decree-Law on Personal Data Protection, and similar regulations in other GCC countries.

Please be aware that no security measures are perfect or impenetrable, and we cannot guarantee "perfect security." In addition, any information you send to us may not be secure while in transit. We recommend that you do not use insecure channels to communicate sensitive or confidential information to us.

HOW WE DISCLOSE PERSONAL INFORMATION

In certain circumstances, we may disclose your personal information to third parties for legitimate purposes and other reasons subject to this Privacy Policy. Such circumstances may include:

·         Service Providers: With vendors or other third parties who perform services on our behalf (e.g., IT management, payment processing, data analytics, customer support, cloud storage, fulfillment and shipping).

·         Business Partners: With business and marketing partners to provide services and advertise to you. Our business and marketing partners will use your information in accordance with their own privacy notices.

·         At Your Direction: When you direct, request us or otherwise consent to our disclosure of certain information to third parties, such as to ship you products or through your use of social media widgets or login integrations, with your consent.

·         Corporate Affiliates: With our affiliates or otherwise within our corporate group, in our legitimate interests to run a successful business.

·         Business Transitions: In connection with a business transaction such as a merger, acquisition, sale of assets, or bankruptcy.

·         Legal Obligations: To comply with any applicable legal obligations (including to respond to subpoenas, search warrants and similar requests), to enforce any applicable terms of service, and to protect or defend the Services, our rights, and the rights of our users or others.

We disclose the following categories of personal information and sensitive personal information about users for the purposes set out above in "How we Collect and Use your Personal Information" and "How we Disclose Personal Information":

Category

Categories of Recipients

Identifiers such as basic contact details and certain order and account information

·         Vendors and third parties who perform services on our behalf (such as Internet service providers, payment processors, fulfillment partners, customer support partners and data analytics providers)

·         Business and marketing partners

·         Affiliates

·         Law enforcement when required by law

Commercial information such as order information, shopping information and customer support information

·         Payment processors

·         Fulfillment and shipping providers

·         Customer service providers

·         Affiliates

Internet or other similar network activity, such as Usage Data

·         Analytics providers

·         Marketing partners

·         Advertising networks

·         Affiliates

Geolocation data such as locations determined by an IP address or other technical measures

·         Analytics providers

·         Marketing partners

·         Affiliates

We do not use or disclose sensitive personal information without your consent or for the purposes of inferring characteristics about you.

INTERNATIONAL DATA TRANSFERS

Our primary operations are based in Bahrain, and we primarily serve customers in the GCC region. However, please note that we may transfer, store and process your personal information outside the GCC. Since our website is hosted on Shopify, your data will be processed and stored on Shopify's servers, which are primarily located in the United States and Canada.

In addition to Shopify's processing, your data may be transferred to and processed in:

  • The United States
  • Canada
  • The GCC countries (Bahrain, Kuwait, Oman, Qatar, Saudi Arabia, and the United Arab Emirates)
  • European Union member countries
  • The United Kingdom

When we transfer your personal information to countries outside the GCC, we will take steps to ensure that your privacy rights continue to be protected in accordance with this Privacy Policy and applicable law.

Your personal information is also processed by staff and third-party service providers and partners in these countries.

If we transfer your personal information from Europe or the UK to countries not deemed to provide an adequate level of data protection, we will implement appropriate safeguards such as:

  • European Commission's Standard Contractual Clauses
  • UK International Data Transfer Agreements
  • Binding Corporate Rules
  • Other legally approved transfer mechanisms

You can request more information about the specific safeguards applied to the export of your personal information by contacting us using the details provided below.

THIRD PARTY WEBSITES AND LINKS

Our Site may provide links to websites or other online platforms operated by third parties. If you follow links to sites not affiliated or controlled by us, you should review their privacy and security policies and other terms and conditions. We do not guarantee and are not responsible for the privacy or security of such sites, including the accuracy, completeness, or reliability of information found on these sites. Information you provide on public or semi-public venues, including information you share on third-party social networking platforms may also be viewable by other users of the Services and/or users of those third-party platforms without limitation as to its use by us or by a third party. Our inclusion of such links does not, by itself, imply any endorsement of the content on such platforms or of their owners or operators, except as disclosed on the Services.

CHILDREN'S DATA

The Services are not intended to be used by children under the age of 16, and we do not knowingly collect any personal information about children under 16. If you are the parent or guardian of a child who has provided us with their personal information, you may contact us using the contact details set out below to request that it be deleted.

Shopify, our e-commerce platform, also does not direct its services to individuals under the age of 16 and does not knowingly collect personal information from them.

As of the Effective Date of this Privacy Policy, we do not have actual knowledge that we "share" or "sell" (as those terms are defined in applicable law) personal information of individuals under 16 years of age.

YOUR RIGHTS

As we primarily serve customers in the GCC region, this section focuses on rights relevant to GCC residents. However, depending on where you live, you may have some or all of the rights listed below in relation to your personal information. These rights are not absolute, may apply only in certain circumstances and, in certain cases, we may decline your request as permitted by law.

For GCC residents, your rights regarding personal information are governed by applicable local data protection laws, which may include:

  • The Bahrain Personal Data Protection Law (PDPL)
  • The Qatar Personal Data Privacy Law
  • The UAE Federal Decree-Law on Personal Data Protection
  • The Saudi Arabia Personal Data Protection Law (PDPL)

Please note that when you submit a request to exercise your rights, both Haven Chateau and Shopify (as our data processor) may need to verify and respond to your request, as Shopify maintains much of the data for our online store.

·         Right to Access / Know: You may have a right to request access to personal information that we hold about you, including details relating to the ways in which we use and share your information.

·         Right to Delete: You may have a right to request that we delete personal information we maintain about you.

·         Right to Correct: You may have a right to request that we correct inaccurate personal information we maintain about you.

·         Right of Portability: You may have a right to receive a copy of the personal information we hold about you and to request that we transfer it to a third party, in certain circumstances and with certain exceptions.

·         Restriction of Processing: You may have the right to ask us to stop or restrict our processing of personal information.

·         Withdrawal of Consent: Where we rely on consent to process your personal information, you may have the right to withdraw this consent.

·         Right to Object: You may have the right to object to our processing of your personal information where we process it on the basis of our legitimate interests.

·         Appeal: You may have a right to appeal our decision if we decline to process your request. You can do so by replying directly to our denial.

·         Managing Communication Preferences: We may send you promotional emails, and you may opt out of receiving these at any time by using the unsubscribe option displayed in our emails to you. If you opt out, we may still send you non-promotional emails, such as those about your account or orders that you have made.

You may exercise any of these rights where indicated on our Site or by contacting us using the contact details provided below. We aim to respond to all valid requests within 30 days.

We will not discriminate against you for exercising any of these rights. We may need to collect information from you to verify your identity, such as your email address or account information, before providing a substantive response to the request. In accordance with applicable laws, you may designate an authorized agent to make requests on your behalf to exercise your rights. Before accepting such a request from an agent, we will require that the agent provide proof you have authorized them to act on your behalf, and we may need you to verify your identity directly with us. We will respond to your request in a timely manner as required under applicable law.

COMPLAINTS

If you have complaints about how we process your personal information, please contact us using the contact details provided below.

For GCC residents:

  • In Bahrain, you may file a complaint with the Personal Data Protection Authority
  • In Saudi Arabia, you may file a complaint with the Saudi Data & Artificial Intelligence Authority (SDAIA)
  • In UAE, you may file a complaint with the UAE Data Office
  • In Qatar, you may file a complaint with the Qatar Financial Centre Regulatory Authority
  • In Kuwait and Oman, please contact the relevant consumer protection authorities

For non-GCC residents:

  • For EU/EEA residents, you have the right to lodge a complaint with your national data protection authority
  • For UK residents, you can lodge a complaint with the Information Commissioner's Office (ICO)
  • For US residents, depending on your state of residence, you may have specific rights under state laws

If you are not satisfied with our initial response to your complaint, you may have the right to appeal our decision by contacting us using the contact details set out below.

CALIFORNIA PRIVACY RIGHTS

While we primarily serve customers in the GCC region, we recognize that we may have customers from California. California residents may have additional rights regarding their personal information under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA). If you are a California resident, please contact us for more information on how to exercise these rights.

CONTACT

Should you have any questions about our privacy practices or this Privacy Policy, or if you would like to exercise any of the rights available to you, please contact us through one of the following methods:

  • Email: havenchateau25@gmail.com
  • Postal Address: Office 28, Building 45, Road 14, Block 913, Riffa, Bahrain
  • Phone and WhatsApp: +973 32200988
  • Shopify Store Contact: You can also contact us through our Shopify store by clicking the "Contact" button on our website.

Our customer service team is fluent in Arabic and English to better serve our GCC customers.

For questions specifically related to how Shopify processes your data, you may visit Shopify's Privacy Policy at https://www.shopify.com/legal/privacy.

We will make every effort to respond to your request in a timely manner.

 

Big Discounts

Use HC10 code to get a %10 discount on your first order.

Fast Free Shipping

Get free shipping on all orders

Customer service

Don't hesitate to contact us if you have any question on mind

Secure payment

Your payment information is processed securely
© 2026 Haven Chateau. Powered by Shopify