Privacy Policy – NGUYEN THE LINH LLC

Our Commitment to Your Privacy

At NGUYEN THE LINH LLC, your privacy is not merely a legal compliance checkbox; it is a foundational principle of our business and a core expression of our respect for you as a customer and as a human being. We understand that when you engage with our website, ntlinh.store, and entrust us with your personal information—whether to create a custom-printed t-shirt, a personalized mug, or a decorative pillow—you are placing a profound degree of trust in our hands. We do not take this trust lightly. We have built our entire data handling infrastructure and crafted our internal policies around a single, unwavering principle: we will treat your data with the same rigorous care, security, and confidentiality that we demand for our own personal information.

This Privacy Policy is the comprehensive, transparent, and detailed document that explains exactly what information we collect, why we need it, how we use it, who we share it with, and the extensive measures we take to protect it. We have written this policy in plain, straightforward English, intentionally avoiding the dense legalese that often obscures meaning in such documents. Our goal is to fully inform you so that you can make educated decisions about your interaction with our brand. We are a United States-based company operating from our headquarters at 1209 MOUNTAIN ROAD PL NE STE R, ALBUQUERQUE, NM 87110, selling custom print-on-demand products to customers across the United States and internationally. The scope of this policy applies to all data collected through our website, through our order and production processes, through our customer service channels including email at thelinhng98@gmail.com and phone at +84362365830, and through any other interactions you may have with NGUYEN THE LINH LLC.

We want to emphasize upfront that we are a business that makes money solely by selling high-quality, custom-printed physical products. We are not in the business of selling, renting, or trading your personal data. Our revenue comes from your satisfaction with your custom apparel, drinkware, and pillows, not from monetizing your identity or behavior. This fundamental distinction separates us from many other online platforms, and it guides every data decision we make. We collect only the information necessary to fulfill your orders, provide you with excellent customer service, improve your shopping experience, and comply with legal obligations. Nothing more.

If, after reviewing this policy, you have any questions, concerns, or requests regarding your privacy or personal data, we encourage you to reach out to our dedicated team directly. You can contact us via email at thelinhng98@gmail.com, by phone at +84362365830, or by mail at our headquarters address above. We are committed to a dialogue of transparency.

The Scope of This Privacy Policy

This Privacy Policy applies to all information collected by NGUYEN THE LINH LLC through your use of our website, ntlinh.store, and any related services, including but not limited to placing an order, creating a customer account, signing up for a newsletter if we offer one, or communicating with our customer support team. It covers information collected automatically through cookies and similar technologies as well as information you provide voluntarily.

Please be aware that our website may contain links to third-party sites or services, such as social media platforms or the websites of our trusted partners like Stripe, our payment processor. This Privacy Policy does not govern the data practices of those third parties. We encourage you to review the privacy policies of any third-party service you interact with. For example, Stripe’s own privacy policy governs how Stripe handles the personal and financial data they process on our behalf during a payment transaction. We have chosen Stripe precisely because their privacy and security standards align with our own lofty expectations.

By using ntlinh.store, creating an account, or placing an order, you expressly consent to the collection, use, storage, processing, and disclosure of your information as described in this Privacy Policy. If you do not agree with this policy, please refrain from using our website or services.

Information We Collect

To effectively operate a global print-on-demand business and to deliver your custom creations with speed and accuracy, we must collect certain categories of information. We categorize this information based on how it is provided and its purpose. We are fully committed to the principle of data minimization: we only collect data that is necessary for a specific, legitimate business purpose.

Information You Provide Directly to Us

This is the information you actively and voluntarily give us when you interact with our site. It is the core data required to fulfill your orders and respond to your inquiries.

Order and Fulfillment Information: When you place an order on ntlinh.store, you are creating a custom product that is unique to you. To produce and deliver this product, we must collect your full name, a valid email address for order confirmations and tracking updates, your shipping address including the street, city, state and ZIP code, and your billing address if it differs from the shipping address. This information is passed to our production partners and shipping carriers for the sole purpose of fulfilling your order. Without it, we simply cannot get your custom-designed hoodie, mug, or pillow to you.

Payment Information: Our checkout process is powered entirely by Stripe, an industry-leading payment processor. When you make a payment using a credit card, debit card, Apple Pay, or Google Pay, you are providing your payment details directly into Stripe’s secure, PCI DSS Level 1 certified interface. NGUYEN THE LINH LLC does not collect, receive, store, or have access to your full credit card number, CVC, or expiration date. The information we do receive and retain from Stripe is limited to a tokenized card identifier, the card type (e.g., Visa, Mastercard), the last four digits of the card number, and the card’s expiration date. This minimal information is retained exclusively for the purposes of processing refunds, verifying transactions for customer service purposes, and allowing you to identify which card you used for a given order. For a detailed explanation of how Stripe protects your transaction, please refer to our Payment Methods page.

Account Information: If you choose to create a customer account on ntlinh.store, we will store the name, email address, and a securely hashed password that you provide. Creating an account allows you to view your order history, save your shipping addresses for faster checkout, and manage your communication preferences. Your password is never stored in plain text; it is irretrievably scrambled using industry-standard cryptographic hashing algorithms.

Communication and Customer Service Data: When you reach out to us via email at thelinhng98@gmail.com, call us at +84362365830, or use the contact form on our website, we collect the information you provide during that communication. This includes your name, email address, phone number, the contents of your message, and any attachments you send us, such as photographs of a product issue or your custom design files. We use this data solely to investigate your inquiry, resolve your concern, and improve our service. Our phone system may log call records, but we do not record the audio of phone calls without your explicit consent.

Design Files and Custom Content: The very heart of our service is the artwork, photographs, and text you upload to create your custom products. These design files are uploaded to our secure servers and are used solely for the purpose of printing your order and conducting quality assurance. We treat your creative content with the respect of an intellectual property owner and do not claim any ownership over your designs, as detailed in our Terms and Conditions.

Information Collected Automatically

When you visit ntlinh.store, our web server and analytics systems automatically collect certain standard technical information. This is a universal practice for virtually all websites and is necessary for functionality, security, and improvement.

Technical Log Data: Our servers automatically record information sent by your browser whenever you visit our site. This includes your Internet Protocol (IP) address, the type and version of your browser, the operating system of your device, the date and time of your visit, the pages you access, the referring website that brought you to us, and basic diagnostic data like page load times. This log data is used for system administration, security monitoring (such as detecting and preventing fraudulent activity or cyber-attacks), and analyzing aggregate trends to improve our site’s performance and user experience.

Cookies and Similar Technologies: Like most e-commerce platforms, we use cookies and similar tracking technologies, such as web beacons and pixels, to make our website function correctly, remember your preferences, and understand how visitors use our site. Cookies are small text files placed on your device by your web browser at the request of our server. We use the following types of cookies:

Essential Cookies: These are strictly necessary for the operation of the website. They enable core functionality like maintaining the items in your shopping cart as you browse, navigating through the checkout process, and maintaining a secure, logged-in session if you have an account. The website cannot function correctly without these.
Functional Cookies: These cookies allow the website to remember choices you make, such as your preferred currency or the region you are in, and provide enhanced, more personalized features. They may also be used to remember previously set font choices and design tool preferences.
Analytics and Performance Cookies: We use cookies from trusted third-party analytics providers to collect information about how visitors use our site. This includes data like which pages are most frequently visited, the time spent on the site, and any error messages encountered. This information is aggregated and anonymized and is used solely to improve the design, layout, and performance of ntlinh.store. It helps us understand if our design tool is intuitive or where customers might drop off during the checkout process.
Marketing and Advertising Cookies (If Applicable): From time to time, we may use cookies to measure the effectiveness of our own advertising campaigns on external platforms. The primary purpose is to understand if a customer who saw an ad for our custom mugs later visited our site. We do not currently use third-party advertising networks that track your browsing across multiple unrelated websites to build a behavioral profile for re-targeting, but if this changes, we will update this policy and provide you with a clear opt-out mechanism.

You have control over cookies. Most web browsers allow you to accept or reject all cookies, or to accept only certain types of cookies. You can typically set your browser to notify you when you receive a cookie, giving you the chance to decide whether to accept it. Please be aware that if you choose to block essential cookies, the shopping cart and checkout functionality of our site will not work, and you will be unable to place an order.

How We Use Your Information

The information we collect is the lifeblood of our ability to serve you, but we use it within a strict ethical framework. Every use case for your data is tied directly to a legitimate business purpose. We do not engage in the speculative or exploitative use of personal information.

Order Fulfillment and Production: This is the most fundamental use of your data. We use your name, shipping address, and design files to manufacture your custom product and to dispatch it to your address via our shipping carrier partners. We use your email address to send you your order confirmation, your tracking number, and any critical updates about your order’s status. We use the tokenized payment information to settle the transaction for the exact amount you authorized.

Customer Service and Support: When you contact us, we use the information you provide and our existing records of your orders to diagnose issues, answer your questions, process your returns and refunds in accordance with our Refund and Return Policy, and provide you with the empathetic, efficient support that defines our brand. We maintain a history of these interactions so that we can provide continuous, contextual service and ensure that recurring problems are systematically addressed.

Website Improvement and Personalization: We analyze aggregated, anonymized data from our analytics systems to understand how visitors navigate ntlinh.store. This allows us to identify confusing parts of the design tool, optimize the mobile checkout experience, and ensure that product information is easy to find. This process does not involve making manual decisions based on your individual browsing behavior.

Security and Fraud Prevention: We use technical data, including your IP address and browser characteristics, alongside advanced machine-learning fraud detection tools provided by Stripe, to prevent fraudulent transactions and protect our business and your payment security. This processing is essential for our legitimate interest in maintaining a secure e-commerce platform.

Legal and Regulatory Compliance: We may use and retain your data as necessary to comply with our legal obligations under applicable laws, such as tax reporting requirements, accounting standards, and responding to lawful requests by government authorities with appropriate jurisdiction.

Communication (Transactional and Promotional): We use your email address to send you transactional communications indispensable to your purchase, such as order confirmations and shipping notifications. If you explicitly opt in, we may also send you promotional emails about new products, special offers, or creative inspiration, from which you can unsubscribe instantly at any time using the link at the bottom of each email. We do not send unsolicited marketing without your consent.

How We Share and Disclose Your Information

We share your information strictly on a need-to-know basis with a limited set of trusted third-party service providers who are essential to the operation of our business. We never sell your personal data. Our contracts with all service providers obligate them to use your data only as directed by us, to maintain standards of security and confidentiality at least as stringent as our own, and to never use your data for their own independent purposes.

Service Providers Essential to Our Business

Stripe (Payment Processing): As we have emphasized throughout our website, Stripe is our exclusive payment gateway. When you initiate a payment, your card details are shared directly with Stripe, not with us. Stripe processes your payment, manages the authorization and capture flow, and handles payouts. Stripe’s privacy policy, available on their website, governs their handling of your financial data. We share your order total and billing ZIP code with Stripe as necessary for fraud verification and transaction processing.

Production and Print Fulfillment Partners: To create your custom product, we must transmit your shipping address, the product specifications you selected (size, color, blank type), and the exact design file you uploaded to our secure, trusted production partners. These partners operate a network of print facilities. They are contractually bound to use this data exclusively for printing, quality control, and packaging your specific order. They are prohibited from using your artwork for any other purpose and are required to purge production files from their active systems on a regular schedule.

Shipping Carriers and Logistics Partners: We share your name, shipping address, and sometimes your email address or phone number with carriers such as USPS, UPS, FedEx, DHL, and their local delivery partners. This is strictly to enable them to transport your package to you and to provide tracking updates and delivery notifications.

Website Hosting and Cloud Infrastructure: Our website ntlinh.store is hosted on secure cloud servers provided by a leading infrastructure-as-a-service vendor. Our databases, customer records, and design files reside on these encrypted servers. Our hosting provider has no access to our application-level data and is bound by stringent physical and network security protocols.

Email Delivery and Communication Platforms: We may use a trusted third-party email service to handle the delivery of our high volume of transactional emails, such as order confirmations and tracking updates. We share your email address and the content of these specific messages with this provider solely for the purpose of reliable delivery.

Other Limited Circumstances of Disclosure

Legal and Law Enforcement Requests: We may disclose your information to government authorities, courts, or law enforcement agencies if we believe in good faith that such disclosure is required to comply with a legal obligation, a valid court order, a subpoena, or other legal process. We will make reasonable efforts to notify you before such a disclosure unless notification is legally prohibited or would compromise an urgent safety matter.

Business Transfers: In the unlikely event that NGUYEN THE LINH LLC, or substantially all of its assets, is acquired by or merged with another entity, your personal data would be one of the business assets transferred to the new owner. You will be notified via a prominent notice on our website and by email before your data becomes subject to a different privacy policy.

Protection of Rights: We may disclose your information when we believe it is necessary to investigate, prevent, or take action regarding potential violations of our Terms and Conditions, illegal activities, suspected fraud, or to protect the rights, property, or safety of NGUYEN THE LINH LLC, our customers, our employees, or the public.

Data Retention: How Long We Keep Your Information

We adhere to the principle that personal data should be retained only for as long as it serves the legitimate purpose for which it was collected, or as required by law. Our retention practices are as follows:

Order Fulfillment Data: Information directly related to an order, including your name, shipping address, and product details, is retained for a minimum period of seven years to comply with our tax, accounting, and financial reporting obligations.
Payment Token Data: The tokenized reference to your payment method held in our Stripe dashboard is retained as long as your customer account is active or as required for financial record-keeping, and then purged.
Design Files: Your uploaded artwork files are retained on our secure servers for a period of time to facilitate any necessary reprints or to resolve disputes on that specific order. They are generally purged from active production servers within 90 days of fulfillment completion, though archival backups may retain them for longer.
Customer Account Data: If you hold an account with us, we retain your account information as long as your account remains active. You may request deletion of your account at any time by contacting us at thelinhng98@gmail.com. We will fulfill the request subject to any legal retention requirements for underling order data.
Analytics and Technical Log Data: Anonymized analytics data is retained indefinitely for historical trend analysis. Server logs containing IP addresses are retained for a limited period, typically 30 to 90 days, for security monitoring, after which they are automatically rotated and deleted.

When data is no longer required for its stated purpose and all legal retention obligations have been met, we will securely delete, destroy, or irreversibly anonymize it.

Data Security: How We Protect Your Information

The security of your personal data is a top priority, and we have implemented a multi-layered technical and organizational security architecture designed to protect it against accidental, unauthorized, or unlawful access, disclosure, alteration, loss, or destruction.

Encryption in Transit: The entirety of ntlinh.store is served exclusively over HTTPS, utilizing modern TLS 1.2 and TLS 1.3 encryption protocols with strong cipher suites. This encrypts all data traffic between your browser and our server, protecting your information from eavesdropping on public Wi-Fi networks.

Encryption at Rest: All databases and file storage systems that house your personal data and design files are encrypted at rest using industry-standard AES-256 encryption. This ensures that even in the highly improbable event of unauthorized physical access to a storage drive, the data is unreadable without the proper cryptographic keys.

Network Security: Our web application is protected by a robust Web Application Firewall (WAF) that screens incoming traffic and blocks common web-based attacks, such as SQL injection and cross-site scripting. We conduct regular proactive vulnerability scanning of our infrastructure.

Access Control: Access to your personal data within our organization is strictly limited, using the principle of least privilege. Only those employees and contractors who have a specific, documented business need—such as a customer service agent resolving a shipping issue—are granted access. All access is authenticated through multi-factor authentication where possible, and every query is logged for audit trails.

Payment Security Specialization: We have deliberately removed ourselves from the chain of custody for sensitive payment card data. By outsourcing payment processing entirely to Stripe, a PCI DSS Level 1 certified service provider, we ensure that your full cardholder data environment is protected by the highest industry standards, which are continuously audited. We cannot lose what we do not possess. For more details on Stripe’s security posture, please visit Stripe’s official security page.

Organizational Policies: All employees and contractors are trained on data privacy and security practices and are bound by written confidentiality agreements. Any breach of data security protocols is grounds for immediate disciplinary action and termination.

Despite our exhaustive efforts, no method of transmission over the internet or electronic storage is 100% impenetrable. If we become aware of a data breach that compromises your personal information, we will investigate promptly, take immediate corrective action, and notify you and any relevant regulatory authorities as required by applicable law.

Your Rights and Choices Regarding Your Data

We are committed to providing you with meaningful access and control over your personal information. While specific legal rights vary depending on your jurisdiction, we strive to offer a consistent baseline of privacy rights to all our customers worldwide.

For Residents of the European Economic Area (EEA), United Kingdom, and Switzerland (GDPR)

If you are located in the EEA, the UK, or Switzerland, the processing of your personal data is governed by the General Data Protection Regulation and its local implementations. Under the GDPR, NGUYEN THE LINH LLC is the Data Controller of the information you provide. Our legal bases for processing your data include the necessity to perform a contract (fulfilling your order), our legitimate business interests (such as improving our website and preventing fraud and illegal activity), compliance with a legal obligation, and your informed consent (where required, such as for direct marketing emails). You have the following specific rights:

Right of Access: You may request confirmation as to whether we process your personal data and obtain a copy of that data.
Right of Rectification: You may request that we correct any inaccurate or incomplete personal data we hold about you.
Right of Erasure (“Right to be Forgotten”): You may request the deletion of your personal data, under certain specified conditions, such as when the data is no longer necessary for the purpose for which it was collected or when you withdraw consent.
Right to Restriction of Processing: You may request that we temporarily or permanently stop processing your personal data in certain circumstances.
Right to Data Portability: You may request to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format and to have it transmitted to another controller.
Right to Object: You may object to the processing of your personal data based on our legitimate interests, unless we have compelling overriding legitimate grounds or the processing is for legal claims. You have an absolute right to object to direct marketing.
Right to Withdraw Consent: Where we rely on your consent for processing, you may withdraw that consent at any time, without affecting the lawfulness of processing before the withdrawal.

To exercise any of these rights, please contact us with your specific request using the contact details at the end of this policy. We will respond without undue delay and within one month (with potential extensions for complex requests). We may need to verify your identity.

For Residents of California, USA (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act, as amended, grants you specific rights. NGUYEN THE LINH LLC does not sell your personal information and has not done so in the preceding 12 months. As a California consumer, you have the right to:

Right to Know: You may request, up to twice in a 12-month period, a disclosure of the categories and specific pieces of personal information we have collected, used, and disclosed about you in the prior 12 months.
Right to Delete: You may request that we delete the personal information we have collected from you, subject to certain exceptions such as completing a transaction or complying with a legal obligation.
Right to Correct: You may request the correction of inaccurate personal information we hold.
Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.

To exercise your California privacy rights, please contact us at thelinhng98@gmail.com with “California Privacy Rights Request” in the subject line. We will verify your identity using information already in our possession, such as your email and order number, and will respond within the timeframe permitted by law.

General Opt-Out Choices for All Users

Email Marketing: If you receive promotional emails from us, you can unsubscribe at any time by clicking the “unsubscribe” link at the bottom of every email. Transactional emails related to a specific order cannot be opted out of, as they are integral to the service.
Cookies: As explained, you can manage cookies through your browser settings. Our website also responds to Global Privacy Control (GPC) signals from your browser where legally required, automatically opting you out of any sale or sharing of data, although we do not sell data.

International Data Transfers

As a U.S.-based company shipping to a global audience, your information will be transferred to, processed, and stored on servers located primarily in the United States. Our production partners may also process your data in other locations, such as the European Union or Asia-Pacific, depending on your shipping destination, as described in our Shipping Policy.

When we transfer personal data from the European Economic Area, the United Kingdom, or Switzerland to a country that has not been deemed to provide an adequate level of data protection, we ensure that adequate safeguards are in place, such as standard contractual clauses approved by the European Commission and the UK’s International Data Transfer Agreement, where applicable. By placing an order on ntlinh.store and providing your information, you explicitly consent to this transfer, storage, and processing as described in this policy.

Children’s Privacy

Our services are not directed at, nor are they intended for use by, individuals under the age of 18, as stated in our Terms and Conditions. We do not knowingly collect, solicit, or process personal information from anyone under the age of 18. If we become aware that a child under 18 has provided us with personal information without verifiable parental consent, we will take immediate steps to delete such information from our systems. If you are a parent or guardian and believe your child has provided us with personal data, please contact us at thelinhng98@gmail.com immediately.

Do Not Track Signals

Your browser may offer a “Do Not Track” (DNT) signal. Currently, there is no consistent industry standard for how websites should respond to DNT signals. Consequently, our website does not currently alter its behavior based on DNT headers. We do, however, respond to the Global Privacy Control as mentioned above. We continue to monitor developments in this area and will adjust our practices as standards mature.

Third-Party Links and Services

Our website may, from time to time, link to external sites that are not operated by us (for instance, a social media page or an article about design inspiration). We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third-party sites or services. Clicking on such a link will direct you away from the protected environment of ntlinh.store, and we strongly advise you to review the privacy policy of every site you visit.

Changes to This Privacy Policy

The digital landscape and the legal frameworks that govern privacy are constantly evolving. NGUYEN THE LINH LLC reserves the right to update or modify this Privacy Policy at any time to reflect changes in our practices, new technologies, or legal requirements. When we make a material change, we will provide a prominent notification on the ntlinh.store homepage and update the “Last Updated” date at the top of this document. For significant changes that impact your rights or the way we handle sensitive data, we may also send an email to the address we have on file for you if you are a registered customer.

Your continued use of our website and services after the effective date of a revised Privacy Policy constitutes your acceptance of the changes. We encourage you to review this page periodically to stay fully informed about how we are protecting your privacy.

How to Contact Us About Your Privacy

Your privacy is managed by our dedicated data protection team, which is trained to handle your inquiries with the seriousness they deserve. If you have any questions, comments, concerns, or a complaint about this Privacy Policy, our data practices, or how we handle your personal information, please do not hesitate to reach out. We are committed to resolving any privacy concerns you may have directly and satisfactorily.

Primary Privacy Contact Email: thelinhng98@gmail.com
(Please use this email for all data access, deletion, and privacy rights requests, as well as any general privacy questions.)

Phone: +84362365830
(For urgent privacy concerns or to speak with someone directly about your data. Leave a message if necessary, and we will return your call.)

Postal Address for Formal Privacy Correspondence:
NGUYEN THE LINH LLC
Attn: Privacy Inquiry
1209 MOUNTAIN ROAD PL NE STE R
ALBUQUERQUE, NM 87110
United States of America

If you are located in the EEA, UK, or Switzerland and you believe that we have not adequately resolved a data protection concern, you have the right to lodge a complaint with the supervisory authority in your country of residence. However, we would sincerely appreciate the opportunity to address your concern directly before you approach a regulator.

Thank you for taking the time to understand our commitment to your privacy. We founded NGUYEN THE LINH LLC on the belief that a business should be a force for good, and that begins with the fundamental respect of your personal space and data. When you create with us, you are safe. Your vision is secure. Your privacy is inviolable.