Privacy policy

Effective date: September 2025

This Privacy Policy (“Policy”) explains how UNMASK (“we”, “us”, “our”) collects, uses, discloses, and protects Personal Data when you visit or purchase from [yourdomain.com] (the “Site”). We are committed to protecting your privacy and complying with applicable laws, including Israeli law and—where relevant—foreign laws for our international customers.


1) Data Controller

[Your Company Legal Name], [company number if any], [registered address], is the data controller for processing Personal Data under Israeli law and—where applicable—under the GDPR/UK GDPR and other international regimes. Contact details appear in Section 19.


2) What We Collect

Information you provide: name, email, phone, billing/shipping address, order contents, messages sent via our forms, and marketing preferences.
Payment data: processed by third-party processors (e.g., Stripe/PayPal). We do not store full card numbers.
Automatically collected: IP address, device/browser type, referral URLs, pages viewed, time stamps, approximate location, and cookie/SDK identifiers.
Optional analytics/ads data: if you consent, we may use analytics and advertising cookies or similar technologies.


3) Purposes & Legal Bases

We process Personal Data to:

  • perform our contract with you (order intake, fulfillment, shipping, customer support);
  • comply with legal obligations (tax, accounting, consumer protection, privacy/security obligations);
  • pursue legitimate interests (fraud prevention, service improvement, analytics, security); and
  • with consent (email marketing, non-essential cookies/trackers). You may withdraw consent at any time (see Section 12).

4) Lawful Processing Under Israeli Law

We follow the Protection of Privacy Law, 5741-1981 (as amended, incl. Amendment No. 13) and relevant regulations/guidelines, including transparency, purpose limitation, data minimization, security and breach response. Where required, we obtain informed consent before processing, especially for marketing or non-essential cookies.


5) Consumer Protection (Israel)

We comply with the Consumer Protection Law, 5741-1981, including clear pricing and terms, accurate product descriptions, disclosures of shipping/returns, and honoring statutory cancellation/withdrawal rights as applicable. See our Terms & Returns policy for details.


6) Cookies & Tracking

We use:

  • Essential cookies (site functionality, cart, checkout, security);
  • Analytics/Performance (to improve the Site);
  • Advertising/Retargeting (only if consented).
    You can manage cookies via our banner and your browser settings. Disabling certain cookies may impact Site functionality.


7) Disclosures & International Transfers

We share data strictly as needed with:

  • Service providers (hosting/CDN, payment processors, anti-fraud, shipping, email/SMS, analytics);
  • Professional advisors (legal, accounting) under confidentiality;
  • Authorities when required by law or to protect rights, safety, and security.

Cross-border transfers: When transferring data outside Israel/EEA/UK, we use appropriate safeguards (e.g., Standard Contractual Clauses, contractual commitments, recognized adequacy mechanisms) to ensure an adequate level of protection.


8) Data Minimization & Retention

We collect only what we need and keep it no longer than necessary:

  • Orders & invoicing: retained for statutory periods (e.g., tax).
  • Support & communications: retained as needed to manage inquiries.
  • Marketing data: retained until you opt out or until consent is withdrawn.
    When no longer required, data is securely deleted or anonymized.


9) Security

We implement organizational, technical, and physical safeguards aligned with industry standards (encryption in transit, access controls, least-privilege, logging/monitoring). No method is 100% secure; we continually improve our controls.


10) Breach Notification

If a data incident likely to pose risk occurs, we will assess and notify the Israeli Privacy Protection Authority and affected individuals in accordance with applicable laws (and GDPR/UK GDPR where relevant).


11) Your Rights (Israel)

Subject to law, you may request to review, update, or delete Personal Data about you, or object to certain processing. To exercise rights, contact us (Section 19). We will respond within statutory timeframes.








12) Marketing Preferences & Consent

  • We send commercial messages only in accordance with applicable law and your preferences.
  • You may unsubscribe at any time via the link in our emails or by contacting us.
  • Non-essential cookies/tracking operate only with your consent, which you can withdraw via our banner/settings.



13) Children’s Privacy

The Site is not intended for children under 13 (or the age of digital consent in your jurisdiction). We do not knowingly collect data from children. If you believe a child provided data, contact us to remove it.



14) GDPR / UK GDPR (EEA/UK/Switzerland)

If you are in the EEA/UK/Switzerland, the following applies:

  • Controller: [Your Company Legal Name].
  • Legal bases: contract, consent, legal obligation, legitimate interests (see Section 3).
  • Your GDPR rights: access, rectification, erasure, restriction, objection, data portability, and the right to lodge a complaint with your supervisory authority.
  • DPO: If a Data Protection Officer is required, we will provide contact details on request or in our imprint.
  • Transfers: safeguarded via SCCs/approved mechanisms.
    To exercise GDPR rights, contact us (Section 19).










15) US State Privacy (incl. California CCPA/CPRA)

For California residents (and, where applicable, other US states with similar laws):

  • You have rights to know/access, correct, delete, and to opt out of “sale”/“share” (as these terms are defined by law).
  • We do not sell Personal Data for money. If we “share” data for cross-context behavioral advertising, we will honor opt-out requests.
  • We will not discriminate against you for exercising your rights.
    To exercise rights or to opt out, contact us (Section 19). If required, we will provide a “Do Not Sell/Share My Personal Information” link.


16) Other Jurisdictions

Where we serve customers in other regions (e.g., Canada—PIPEDA; Brazil—LGPD; Singapore—PDPA), we will honor applicable local rights and requirements to the extent required by law.


17) User-Generated Content & Social

If you tag or message us on social networks or submit reviews, you understand such content may be public as per the platform’s settings. Please avoid posting sensitive personal data. We may feature your content (with attribution) in accordance with platform terms and our Terms of Service.



18) Third-Party Links

Our Site may link to third-party sites/services (payment, shipping, social, analytics). We are not responsible for their privacy practices. Review their policies before submitting data.



19) Contact & Requests

[Your Company Legal Name]
Email: hello@unmaskfaceit.com
Postal: [Full address, City, Country]
If applicable: Privacy/Protection Officer or Data Protection Officer (DPO): [Name / Contact].


20) Changes to This Policy

We may update this Policy from time to time. The “Effective date” above reflects the latest version. Material changes will be posted on the Site and, where required, notified to you.