KGallery
Search
K
Search

Privacy Policy

Last Updated: March 23, 2026

1. Introduction

K-Gallery ("we," "us," or "our") operates the website k-gallery.com (the "Site"). This Privacy Policy describes how we collect, use, disclose, and otherwise process personal information when you visit our Site, create an account, make a purchase, use our AI-powered features, or interact with us in any other way. By using our Site, you acknowledge that you have read and understood this Privacy Policy.

2. Information We Collect

We collect personal information that you voluntarily provide to us, including:

  • Account information — When you create an account or log in via Shopify Customer Account, we collect your name and email address.
  • Orders and purchase history — Order details, shipping addresses, and payment information are processed and stored by Shopify. We access order data to display your purchase history.
  • User-generated content — Blog posts, comments, and other content you submit to the Site.
  • Skin analysis inputs — If you use our AI Skin Analysis feature, we collect the information you provide such as skin type, skin concerns, and related preferences. These inputs are processed by AI to generate personalized recommendations.
  • Contact form submissions — Name, email address, phone number, subject, and message content submitted through our contact form.
  • Newsletter subscriptions — Email address provided when you subscribe to our newsletter or marketing communications.

3. Automatically Collected Information

When you visit the Site, we and our third-party service providers automatically collect certain information, including:

  • Device and browser information — Browser type, operating system, screen resolution, and device identifiers.
  • IP address — Your Internet Protocol address, which may indicate your approximate geographic location.
  • Usage data — Pages visited, time spent on pages, referring URLs, click patterns, and navigation paths.
  • Cookies and similar technologies — We use cookies, local storage, and similar tracking technologies to enhance your experience, remember your preferences, and collect analytics data. See Section 8 for details on cookie management.

4. Third-Party Services & Analytics

We use third-party services to operate, analyze, and improve the Site. These services fall into the following categories:

  • Website analytics — We use analytics tools to understand how visitors use the Site, including page views, session duration, user demographics, and feature usage. Some anonymous analytics data is collected without consent; full tracking (including user identification) is activated with your analytics consent.
  • Session replay and heatmaps — We use tools that record user sessions and generate heatmaps to understand how users interact with the Site. Activated with analytics consent.
  • Error monitoring — We use error tracking services that are always active to ensure Site reliability. These collect technical error data and do not collect personal information such as names or email addresses.
  • Advertising and conversion tracking — We use advertising pixels from social media and advertising platforms for conversion tracking and targeted advertising. Activated with your marketing consent.
  • Bot protection — We use security services on forms to verify that you are a real user. These may collect device and browser data during verification.
  • E-commerce platform — Our e-commerce platform handles payment processing, order management, and user authentication.

5. AI & Automated Processing

We use artificial intelligence (AI) services from third-party providers for the following purposes:

  • AI Skin Analysis — When you use the AI Skin Analysis feature, your inputs (skin type, concerns, and preferences) are sent to an AI service provider to generate personalized skincare recommendations and product suggestions. These recommendations are for informational purposes only and do not constitute medical advice. You should consult a qualified healthcare professional for medical skin concerns.
  • Content moderation — User-submitted posts and comments are screened using AI to detect and filter inappropriate, harmful, or policy-violating content before publication.
  • Product categorization — AI is used to automatically tag and categorize products (e.g., identifying skincare product types and attributes) to improve search and recommendation accuracy.

Data sent to our AI service providers is processed via their API services, which means your data is not used to train their AI models.

6. How We Use Your Information

We use the personal information we collect for the following purposes:

  • Provide and improve our services — Operate the Site, process transactions, deliver content, and develop new features.
  • Process orders and payments — Fulfill purchases, manage returns, and handle payment processing through Shopify.
  • Personalize your experience — Tailor content, product recommendations, and AI-powered features to your interests and preferences.
  • Send marketing communications — With your consent, send newsletters, promotional offers, and updates about new products or content.
  • Analytics and performance monitoring — Understand how users interact with the Site, identify technical issues, and measure the effectiveness of features and marketing campaigns.
  • Fraud prevention and security — Detect, prevent, and respond to fraud, abuse, security threats, and other harmful activity.
  • Legal compliance — Comply with applicable laws, regulations, legal processes, and governmental requests.

7. Data Sharing

We share personal information with the following categories of third parties:

  • E-commerce and payment providers — For payment processing, order management, and user authentication.
  • Advertising and social media platforms — For advertising and conversion tracking via pixels, activated with your marketing consent.
  • Analytics providers — For website analytics and advertising services.
  • AI service providers — For AI-powered features including skin analysis, content moderation, and product categorization.
  • Content management providers — For storing and delivering Site content, user profiles, and user-generated content.
  • Email service providers — For transactional email delivery (e.g., contact form confirmations, account notifications).

We do not sell your personal information directly. However, we do share data with advertising partners for targeted advertising purposes. Under the California Consumer Privacy Act (CCPA/CPRA), this sharing of data with advertising partners for cross-context behavioral advertising may be considered a "sale" or "sharing" of personal information. See Section 9 for your rights regarding this activity.

8. Cookie Consent & Management

We use a tiered consent model with three categories of cookies and tracking technologies:

  • Necessary (always on) — Essential for Site functionality. Includes error monitoring and anonymous pageview analytics. These cannot be disabled.
  • Analytics (requires consent) — Helps us understand Site usage. Includes website analytics, session replay, heatmaps, and full user tracking with identification.
  • Marketing (requires consent) — Enables targeted advertising and conversion tracking via advertising pixels from social media and ad platforms.

When you first visit the Site, a cookie consent banner will appear allowing you to accept or customize your preferences. You can update your cookie preferences at any time by clicking the cookie icon in the Site footer or by clearing your browser cookies to trigger the consent banner again.

9. Your Privacy Rights — California (CCPA/CPRA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

  • Right to Know — You have the right to request information about the categories and specific pieces of personal information we have collected about you, the sources of that information, our purposes for collecting it, and the categories of third parties with whom we share it.
  • Right to Delete — You have the right to request that we delete the personal information we have collected from you, subject to certain exceptions permitted by law.
  • Right to Opt Out of Sale/Sharing — You have the right to opt out of the "sale" or "sharing" of your personal information for cross-context behavioral advertising. You can exercise this right by declining marketing cookies in our consent banner.
  • Right to Non-Discrimination — We will not discriminate against you for exercising any of your privacy rights.
  • Right to Correct — You have the right to request correction of inaccurate personal information we maintain about you.
  • Right to Limit Use of Sensitive Personal Information — You have the right to limit our use of sensitive personal information to purposes necessary to provide our services.

To exercise any of these rights, please contact us at support@k-gallery.com. We will verify your identity before processing your request and will respond within 45 days of receiving a verifiable request. You may also designate an authorized agent to make a request on your behalf.

10. Data Retention

We retain personal information for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law:

  • Account data — Retained while your account is active. You may request deletion of your account at any time.
  • Order data — Retained for tax, legal, and accounting purposes, typically for 7 years after the transaction.
  • Analytics data — Retained according to each third-party provider's own retention policies.
  • Contact form submissions — Retained for up to 1 year, then deleted unless a longer retention is necessary for ongoing correspondence.
  • Skin analysis results — Retained while your account is active and deleted upon account deletion.

11. Children's Privacy

The Site is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. You must be at least 13 years of age to create an account on the Site. If we become aware that we have collected personal information from a child under 13, we will take steps to delete that information as soon as possible. If you believe that we may have collected information from a child under 13, please contact us at support@k-gallery.com.

12. Data Security

We implement industry-standard security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction. These measures include encrypted data transmission using TLS/SSL, secure user authentication via Shopify Customer Account with PKCE (Proof Key for Code Exchange), and continuous security monitoring through Sentry. While we strive to protect your personal information, no method of transmission over the Internet or method of electronic storage is 100% secure. We cannot guarantee absolute security of your data.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will update the "Last Updated" date at the top of this page and post the revised policy on the Site. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: