Privacy Policy

Last Updated: May 3, 2025

1. Introduction

This Privacy Policy describes how Everest Herbals ("we," "our," "us") collects, uses, processes, and discloses your information, including personal information, in conjunction with your access to and use of our website (everestherbals.com) and services. By accessing or using our website, you signify that you have read, understood, and agree to our collection, storage, use, and disclosure of your personal information as described in this Privacy Policy.

2. Information We Collect

We collect the following categories of information:

  • Contact Information: Name, email address, mailing address, phone number
  • Transaction Information: Products purchased, order value, shipping details, payment method (but not payment card details)
  • Account Information: Username, password (stored in encrypted format)
  • Communications: Messages you send to us through contact forms or email
  • Device and Usage Information: IP address, browser type, operating system, referring URLs, pages viewed, links clicked, and other similar information

Important Notice: We do NOT collect or store Protected Health Information (PHI) as defined by the Health Insurance Portability and Accountability Act (HIPAA). We do NOT collect Personally Identifiable Information (PII) beyond what is strictly necessary to process your orders and provide our services. We do NOT collect information about your medical conditions, health status, or treatment history.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Process and fulfill your orders, including shipping and delivery
  • Communicate with you about your orders, products, and services
  • Respond to your inquiries and customer service requests
  • Improve our website, products, and customer experience
  • Send marketing communications (with your consent and subject to applicable laws)
  • Detect, investigate, and prevent fraudulent transactions and other illegal activities
  • Comply with our legal obligations

We process your information for these purposes based on our legitimate business interests, the fulfillment of our contract with you, compliance with our legal obligations, and/or your consent.

4. Information Security

We implement appropriate technical and organizational security measures designed to protect your personal information from accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures include:

  • Encryption of sensitive data at rest and in transit
  • Regular security assessments and testing
  • Access controls and authentication requirements
  • Secure data storage practices
  • Employee training on data security

However, please note that no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. By using our website, you acknowledge and accept these inherent risks.

5. Third-Party Service Providers

We engage third-party service providers to perform functions on our behalf. These providers have access to your personal information only to perform these tasks on our behalf and are contractually obligated not to disclose or use it for any other purpose. Our third-party service providers include:

  • Hosting Services: We use third-party hosting providers to store and serve our website
  • Payment Processors: Stripe, Square, and PayPal process all payment transactions
  • Shipping and Fulfillment: Carriers and logistics providers to deliver your orders
  • Email Service Providers: To send order confirmations and marketing communications
  • Analytics Services: To help us understand website usage and improve our services

Payment Information: We do not collect, store, or process your payment card information. All payment transactions are processed through our secure payment processors (Stripe, Square, and PayPal), who maintain PCI-DSS compliance. These payment processors may collect, store, and process your payment information in accordance with their own privacy policies and terms of service.

We are not responsible for the privacy practices of these third-party services. We encourage you to review their privacy policies to understand how they collect, use, and share your information.

6. Cookies and Tracking Technologies

We use cookies, web beacons, pixels, and similar tracking technologies to collect information about your browsing activities and to distinguish you from other users of our website. These technologies help us:

  • Keep track of your shopping cart and preferences
  • Understand how you use our website
  • Improve our website and your experience
  • Measure the effectiveness of our marketing campaigns

You can control cookies through your browser settings and other tools. However, if you block certain cookies, you may not be able to register, login, or access certain parts or make full use of the website.

7. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information. These may include:

  • Access: You can request a copy of the personal information we hold about you
  • Correction: You can request that we correct inaccurate or incomplete information
  • Deletion: You can request that we delete your personal information
  • Restriction: You can request that we restrict the processing of your information
  • Data Portability: You can request a copy of your information in a structured, commonly used, and machine-readable format
  • Objection: You can object to our processing of your information
  • Withdrawal of Consent: You can withdraw any consent you previously provided

To exercise these rights, please contact us at info@everestherbals.com. We will respond to your request within the timeframe required by applicable law. We may need to verify your identity before fulfilling your request.

Please note that some of these rights may be limited where we have compelling legitimate grounds or legal obligations to process your personal information.

8. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process it, and applicable legal requirements.

9. Children's Privacy

Our website is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us at info@everestherbals.com. If we become aware that we have collected personal information from children without verification of parental consent, we will take steps to remove that information from our servers.

10. International Data Transfers

Your personal information may be transferred to, and processed in, countries other than the country in which you reside. These countries may have data protection laws that are different from the laws of your country. Specifically, our website servers are located in the United States. However, we take appropriate safeguards to require that your personal information will remain protected in accordance with this Privacy Policy.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time in response to changing legal, technical, or business developments. When we update our Privacy Policy, we will take appropriate measures to inform you, consistent with the significance of the changes we make. We will obtain your consent to any material Privacy Policy changes if and where this is required by applicable data protection laws.

You can see when this Privacy Policy was last updated by checking the "Last Updated" date displayed at the top of this Privacy Policy.

12. Contact Us

If you have any questions or concerns about this Privacy Policy or our privacy practices, or if you wish to exercise your rights regarding your personal information, please contact us at:

Everest Herbals
Teaneck, New Jersey, USA
Email: info@everestherbals.com
Phone: +1 (551) 322-0077