Your privacy and the security of your personal information are of paramount importance to us. This policy explains how we collect, use, and protect your data.

 

Last Updated: February 2026

BirkinVault is committed to protecting your privacy. This policy describes how we collect, use, share, and protect your personal information in accordance with applicable privacy laws including GDPR and CCPA.

Information We Collect

What data we gather and why we need it

1. Information You Provide to Us

  • Account Information: Name, email address, phone number, billing and shipping addresses, date of birth
  • Payment Information: Credit card details, billing information (processed securely through encrypted payment providers)
  • Purchase History: Records of products purchased, transaction amounts, order details
  • Communications: Your inquiries, customer service requests, survey responses, feedback
  • Preferences: Product preferences, wishlist items, notification settings
  • Identity Verification: Government-issued ID or passport (for high-value purchases over $50,000)

2. Information Collected Automatically

  • Device Information: IP address, browser type, operating system, device identifiers
  • Usage Data: Pages viewed, products browsed, time spent on site, referral sources
  • Cookies & Tracking: Session cookies, analytics cookies, preference cookies
  • Location Data: General geographic location based on IP address

3. Information from Third Parties

  • Payment Processors: Transaction verification and fraud prevention data
  • Authentication Services: Bag authentication reports and certificates
  • Shipping Carriers: Delivery status and tracking information

How We Use Your Information

The purposes for which we process your data. We use your personal information for the following purposes:

1.Order Processing & Fulfillment

To process your purchases, arrange authentication, coordinate shipping, handle returns, and provide customer support

2.Account Management

To create and maintain your account, manage your profile, save preferences, and track order history

3.Communication

To send order confirmations, shipping updates, respond to inquiries, provide customer service, and send important account notifications

4.Marketing (With Your Consent)

To send newsletters, promotional offers, new collection announcements, and personalized recommendations (you may opt-out at any time)

5.Fraud Prevention & Security

To detect and prevent fraud, verify identity for high-value transactions, protect against unauthorized access, and ensure platform security

6.Analytics & Improvement

To analyze site usage, improve user experience, enhance our services, and develop new features

7.Legal Compliance

To comply with applicable laws, regulations, legal processes, and government requests

How We Share Your Information

Third parties who may receive your data

We do not sell your personal information. We may share your data with:

Service Providers

Payment processors, shipping carriers, authentication services, email providers, cloud hosting services, analytics platforms. These providers are contractually obligated to protect your information.

Authentication Partners

Professional authenticators who verify the authenticity of Hermès bags. They receive only the information necessary to perform authentication services.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

Legal Requirements

When required by law, subpoena, court order, or to protect our rights, property, or safety, or that of our users or the public.

With Your Consent

We may share your information with third parties when you have given us explicit permission to do so.

Data Security

How we protect your personal information

We implement industry-standard security measures to protect your personal information from unauthorized access, disclosure, alteration, and destruction.

Our Security Measures Include:

  • SSL/TLS Encryption: All data transmitted between your browser and our servers is encrypted
  • Secure Payment Processing: Payment information is processed through PCI-DSS compliant providers
  • Database Encryption: Personal information is encrypted at rest in our databases
  • Access Controls: Strict employee access policies and authentication requirements
  • Regular Security Audits: Periodic security assessments and vulnerability testing
  • Fraud Monitoring: Advanced fraud detection systems to protect your account

Important: While we implement robust security measures, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security but are committed to protecting your information to the best of our ability.

 

Your Privacy Rights

Control over your personal information

Depending on your location, you may have the following rights regarding your personal information:

Right to Access

Request a copy of the personal information we hold about you

Right to Correct

Request correction of inaccurate or incomplete information

Right to Delete

Request deletion of your personal information (subject to legal obligations)

Right to Object

Object to certain processing activities, including marketing

Right to Portability

Receive your data in a structured, machine-readable format

Right to Withdraw Consent

Withdraw consent for data processing at any time

How to Exercise Your Rights

To exercise any of these rights, please contact us at privacy@birkinvault.com or through your account settings. We will respond to your request within 30 days.

California Residents (CCPA)

California residents have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected, used, shared, or sold
  • Right to opt-out of the sale of personal information (we do not sell personal information)
  • Right to non-discrimination for exercising your CCPA rights

European Residents (GDPR)

If you are located in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR), including those listed above. Our legal basis for processing your data includes contract performance, legal obligations, legitimate interests, and your consent.

Cookies & Tracking Technologies

How we use cookies on our website

BirkinVault uses cookies and similar tracking technologies to enhance your browsing experience, analyze site traffic, and personalize content.

Essential Cookies

Required for the website to function properly. These cannot be disabled. They include session cookies, authentication cookies, and security cookies.

Analytics Cookies

Help us understand how visitors interact with our website by collecting and reporting information anonymously. We use this data to improve site performance.

Preference Cookies

Remember your preferences and settings, such as language preference, currency selection, and saved search filters.

Marketing Cookies

Used to deliver relevant advertisements and track campaign effectiveness. These cookies may be set by third-party advertising partners.

Managing Cookies: You can control cookie settings through your browser preferences. Note that disabling certain cookies may affect website functionality. Visit your browser's help section for instructions on managing cookies.

Additional Information

Other important privacy details

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, resolve disputes, and enforce our agreements. Account information is retained while your account is active and for a reasonable period thereafter.

Children's Privacy

BirkinVault is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. When we transfer data internationally, we implement appropriate safeguards to protect your information in accordance with this policy.

Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of significant changes by posting the updated policy on our website with a new "Last Updated" date. Your continued use of our services after changes take effect constitutes acceptance of the updated policy.

Questions About Privacy?

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, we're here to help.

Data Protection Officer

Email: privacy@birkinvault.com

Mailing Address

BirkinVault Privacy Department
123 Madison Avenue, Suite 500
New York, NY 10016
United States

Response Time

We will respond to all privacy inquiries within 30 days

Last Updated: February 2026 | Effective Date: February 1, 2026